This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Web Filter not behaving as expected - interfering with streaming video - Allows ads to pop up new windows

Previously I was using an AdTrap and it did everything I wanted in the fashion I wanted. Unfortunately my AdTrap died and the company is evidently in a zombie/out of business state, so I've switched UTM's web filtering on and done some minimal configuration.


I have two issues. The first is that instead of simply preventing ads from displaying on rendered pages I get an annoying UTM Content Blocked "ad" that displays in its place taking up screen space to display the offending URL and its category along with telling me to contact my admin if I believe I've received this message in error. Not only do I get these messages from UTM embedded in rendered web pages, but I also get new windows opening up that display the UTM Blocked Content message. The former is annoying, but the latter is egregious. Is there a way to disable the UTM Blocked Content notification from being displayed? Here's an example of what I think causes the new window to open with the UTM Blocked Content message:

2016:07:10-17:17:06 dikobraz httpproxy[5648]: id="0060" severity="info" sys="SecureWeb" sub="http" name="web request blocked, forbidden category detected" action="block" method="GET" srcip="10.8.26.86" dstip="" user="" group="" ad_domain="" statuscode="403" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="3318" request="0xe011e000" url="syndication.exoclick.com/favicon.ico" referer="syndication.exoclick.com/splash.php error="" authtime="0" dnstime="0" cattime="0" avscantime="0" fullreqtime="1022" device="0" auth="0" ua="Mozilla/5.0 (Linux; Android 5.0.1; SM-N910T Build/LRX22C) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/51.0.2704.81 Mobile Safari/537.36" exceptions="" overridecategory="1" overridereputation="1" reason="category" category="154" reputation="malicious" categoryname="Web Ads"


The other issue I have is the web content filter interfering with the proper playback of streaming videos. I can start a video, and I can pause a video, but I can't restart it once I've paused it. Here is the line I that calls the streaming video:

2016:07:10-17:16:59 dikobraz httpproxy[5648]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.8.26.86" dstip="123.456.789.10" user="" group="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="5327018" request="0xab39200" url="ofcoursethisisaninnocentanimalvideo.com/into_the_wild_big.mp4 referer="" error="" authtime="0" dnstime="1235" cattime="307" avscantime="0" fullreqtime="736764450" device="0" auth="0" ua="Samsung SM-N910T stagefright/Beyonce/1.1.9 (Linux;Android 5.0.1)" exceptions="sandbox,auth,content,mime,cache,fileextension" category="149" reputation="unverified" categoryname="IrrelevantToMyQuestion" country="United States"



Any insight into how I can resolve these issues is appreciated.




This thread was automatically locked due to age.
Parents Reply Children
  • Hi, Sean, and welcome to the UTM Community!

    You're new here, so don't be surprised that your question was asked in a way that made your problem difficult to understand by anyone not having it - and that's apparently almost all of us.

    Please insert a picture of what you're seeing.  Also, show the relevant lines from the Web Filtering log file, explaining what you expected to happen and showing us a picture of the relevant configuration in WebAdmin.

    Cheers - Bob

    PS Many years ago, fellow member Wingman posted a link that I and others have found helpful: How To Ask Questions The Smart Way.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA