Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 4401 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Use Web Filtering only to proxy HTTP and HTTPS in Standard SSO Mode

ReinisTropins

Hello! 

Curious DNS configuration, local workstations cannot resolve any DNS names (intended), but only Proxy server (UTM) can resolve them using a specific DNS server. 
I was wondering if it's possible to proxy only HTTP and HTTPS requests, since users mostly use browsers, but use Firewall for everything else. 

For example, we don't want to proxy SSH traffic, FTP traffic and so on. (Blocked by default Target services), but use only firewall to manage the connections. It is understandable, that only IP addresses will be used for these types of connections. 

Is this a viable option on UTM? Or once Web Filtering is enabled, everything gets proxied?



This thread was automatically locked due to age.
  • 0

    You're actually asking several different questions here, so let me give just a general explanation...

    In Transparent mode, only HTTP is proxied unless you select to also transparently intercept HTTPS.

    In Standard mode, the Proxy doesn't intercept anything - it's the browser that sends requests directly to the Proxy.  In this case, the 'Allowed target services' on the 'Advanced' tab are proxied.  If a service port is not listed in 'Allowed target services', the Proxy blocks the request.  SSH and FTP used by applications other than browsers will not have their traffic proxied.

    If that doesn't give you the information you need, please explain your situation in more detail.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML