Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 3 subscribers
  • Views 6855 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

problem with time definitions dont block sites in browsers

soportetecnico

Problem with Web filter and hours of time

It has the following transparently with Active Directory SSO

It has an action time blocking web mail category mails gmail, yahoo, hotmail
The problem occurs when the user is logged in gmail page for example when entering the action of time lock the user is in the blocked sites and consumes traffic only if you close your browser completely this is blocking the opposite may be hours and hours with access to blocked sites after the action time

and the certificate was installed and tested in the 3 firefox browsers chrome edge



This thread was automatically locked due to age.
  • 0

    Yeah, that phenomenon has been around since the beginning.  The only workaround I know of is to force a Proxy restart every day at the end of the allowed period. This would result in 10 to 20 seconds of blocked Internet for everyone unless you have a firewall rule that allows browsing to continue while the Proxy restarts.  In any case uploads and downloads would need to be restarted.

    Let's say your restricted period begins at 1PM.  You would add the following line to /etc/crontab-static:

    0 13 * * * root /var/mdw/scripts/httpproxy restart

    After that, do something to get WebAdmin to re-generate /etc/crontab.  I change a setting in 'Management >> Up2Date', [Save], change back and [Save].

    Is that something you can work with?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    If you are not doing HTTPS Decryption this will occur because the UTM only sees the start of the SSL connection and none of the traffic inside.  The browser can continue to make requests within that tunneled connection.  By default browsers will I think close SSL connections if idle for ~5 minutes.

    For normal HTTP this should work correctly.

    For HTTPS, if you are doing decryption...  I would expect this would work, but I'm not sure.

  • 0 in reply to Michael Dunn

    Good day I have installed the certificate and scanning the https and still not activate the time lock until I close the browser

Unfiltered HTML