Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 2 replies
  • Answers 1 answer
  • Subscribers 2 subscribers
  • Views 5268 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Only Block Facebook chat please

azepeda1984

I have Sophos utm 9.4 I need to block only facebook chat
I search in application control and it does not appear the option facebook chat
Try blacklisted sites but always appears active

Attach Captures

 

cureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="1" cattime="202" avscantime="2251" fullreqtime="50073321" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:23:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="96" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="72" avscantime="1671" fullreqtime="110963" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:24:12 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="1" cattime="256" avscantime="2146" fullreqtime="50073152" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:24:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="96" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="88" avscantime="1682" fullreqtime="114685" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:25:02 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="137" avscantime="2782" fullreqtime="50074349" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:25:11 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="89" request="0xe1169200" url="www.facebook.com/.../newsfeed_count referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="55" avscantime="1735" fullreqtime="131079" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:25:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="97" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="70" avscantime="1749" fullreqtime="112606" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:25:52 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="195" avscantime="2143" fullreqtime="50071967" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:26:42 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="172" avscantime="2316" fullreqtime="50074145" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:26:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="97" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="107" avscantime="4626" fullreqtime="190469" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:27:32 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="154" avscantime="3215" fullreqtime="50074575" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:27:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="96" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="92" avscantime="1697" fullreqtime="107673" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:28:22 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="192" avscantime="2182" fullreqtime="50071633" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:28:22 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="273" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="137" avscantime="5055" fullreqtime="113594" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:28:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="96" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="58" avscantime="1959" fullreqtime="387371" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:29:12 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="1" cattime="187" avscantime="3755" fullreqtime="50077571" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:29:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="96" request="0xe1169200" url="www.facebook.com/.../bz" referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="53" avscantime="1664" fullreqtime="107813" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:30:02 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.16.5.20" dstip="31.13.73.1" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="28" request="0xe0258400" url="4-edge-chat.facebook.com/pull referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="125" avscantime="3522" fullreqtime="50075315" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="text/plain"
2017:01:17-00:30:11 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="130" request="0xe1169200" url="www.facebook.com/.../ referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="54" avscantime="1495" fullreqtime="117213" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:30:11 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (LNB PERFIL)" filteraction="REF_HttCffFullnochat (FULL_NOCHAT)" size="89" request="0xe1169200" url="www.facebook.com/.../newsfeed_count referer="https://www.facebook.com/" error="" authtime="0" dnstime="0" cattime="89" avscantime="1735" fullreqtime="117524" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="195" reputation="neutral" categoryname="Social Networking" application="facebook" app-id="147" sandbox="-" content-type="application/octet-stream"
2017:01:17-00:30:49 sglnb httpproxy[11640]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.16.5.20" dstip="31.13.73.36" user="mclaros" group="FULLNOCHAT" ad_domain="LNB" statuscode="200" cached="0" prof


This thread was automatically locked due to age.
Parents
  • 0

    There is a 'Chat' sub-category available.  Just add it to the custom Category you have created for your business.

    If that doesn't work, search in the Web Filtering log for chat.facebook.com and see if there are any other FQDNs that you need to block in addition to 4-edge-chat.facebook.com.  On the 'Websites' tab of 'Web Filtering Options', assign those FQDNs to a category "Chat."

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0

    There is a 'Chat' sub-category available.  Just add it to the custom Category you have created for your business.

    If that doesn't work, search in the Web Filtering log for chat.facebook.com and see if there are any other FQDNs that you need to block in addition to 4-edge-chat.facebook.com.  On the 'Websites' tab of 'Web Filtering Options', assign those FQDNs to a category "Chat."

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
Unfiltered HTML