+ Post New Thread
Results 1 to 7 of 7
Internet Related/Filtering/Firewall Thread, SmoothWall and Proxy Sites in Technical; Hiya All! We're currently having an issue with Proxy sites being used by the kids, where is it in the ...
  1. #1
    mmoseley's Avatar
    Join Date
    Apr 2007
    Location
    Birmingham
    Posts
    757
    Thank Post
    109
    Thanked 105 Times in 80 Posts
    Blog Entries
    2
    Rep Power
    44

    SmoothWall and Proxy Sites

    Hiya All!

    We're currently having an issue with Proxy sites being used by the kids, where is it in the smoothwall filter setup to block proxy sites? i cant seem to find it!!.....

    Ive also tried to use reporting on the one kid who's apparently been using proxy sites but i really cant get the reporting side to work!!!

    Cheers Mart

  2. #2

    Sylv3r's Avatar
    Join Date
    Jul 2005
    Location
    Co. Durham
    Posts
    3,256
    Thank Post
    377
    Thanked 386 Times in 342 Posts
    Rep Power
    149
    Off the top of my head I can't remember where it is - but their is an option to block non-signed SSL certificates, I would imagine these are the sort of proxy sites you are coming up against. Do a search on the site I am sure it will have been mentioned several times.

  3. #3
    mmoseley's Avatar
    Join Date
    Apr 2007
    Location
    Birmingham
    Posts
    757
    Thank Post
    109
    Thanked 105 Times in 80 Posts
    Blog Entries
    2
    Rep Power
    44
    Right...I think ive found out whats going on...

    All students are in 1 group called "Student Users" which i thought was fine, now further looking into it some students are being mapped as "Default Users" right...so the default users have almost no policy against them...

    Strange the only difference i can see is the "Primary group" in active directory, if there set to the smoothwall student group they are mapped as default users BUT if there primary group is "Students" (another one of our group in AD) then they are mapped to the proper Students group in the smoothwall...

    If that makes sence...

    WIERD!!

  4. #4

    john's Avatar
    Join Date
    Sep 2005
    Location
    London
    Posts
    10,426
    Thank Post
    1,532
    Thanked 1,066 Times in 931 Posts
    Rep Power
    305
    Quick Fix, map the Default Users group to No Proxy / interet etc that will stop them and then you need to suss out why the students are not getting into that group.

  5. #5
    mmoseley's Avatar
    Join Date
    Apr 2007
    Location
    Birmingham
    Posts
    757
    Thank Post
    109
    Thanked 105 Times in 80 Posts
    Blog Entries
    2
    Rep Power
    44
    Quote Originally Posted by john View Post
    Quick Fix, map the Default Users group to No Proxy / interet etc that will stop them and then you need to suss out why the students are not getting into that group.
    Was my way of thinking and i did do that at first, but i would say that 3/4 of the pupils arent getting mapped to the right group, so i had about 30 knocks on the door within a space of 5 mins!! so ive applied some rules to the Default Group now for a temporary fix!!

    Cheers, Mart

  6. #6

    rob_f's Avatar
    Join Date
    May 2008
    Location
    Leeds
    Posts
    232
    Thank Post
    16
    Thanked 76 Times in 58 Posts
    Rep Power
    26
    Hi guys, sorry for the delay getting back to you on this.

    If users are getting mapped to "default users" in usually means that the lookup to active directory hasn't returned any groups that are mapped on the SW. This may also in rare cases be because you have the user mapped to multiple SW groups that are conflicting in some way.

    Best way to sort is to make sure that each user is in only one group that is mapped on the SW. Most people will facilitate this by making sw_staff, sw_year7, sw_year8 etc groups in AD, and then map one-to-one on the SW itself. Makes things a bit easier to manage.

    As for blocking proxies, it does sound like there isn't a blocking issue per se but more of a group assignment problem. Just to summarise anyway, to block proxies:

    - ensure the "web proxies" category is ticked to be blocked on the content and url filter.
    - ensure on the "per group settings" page that you are blocking invalid HTTPS certificates for the required groups.
    - it will help if you also have "deep URL inspection" turned on on the per group settings page.
    - when you get the FP2 update next week, turn on "SSL Interception" and push out the certificate of the SmoothWall via AD/zenworks/manually to do all the usual filtering rules on HTTPS content.

    Any problems, please feel free to give us a call.

    Thanks,


    Rob.

  7. Thanks to rob_f from:

    mmoseley (27th March 2009)

  8. #7
    mmoseley's Avatar
    Join Date
    Apr 2007
    Location
    Birmingham
    Posts
    757
    Thank Post
    109
    Thanked 105 Times in 80 Posts
    Blog Entries
    2
    Rep Power
    44
    Hi Rob,

    Thanks for the reply, it will certainly help, i will give it a go over easter!!!

    Cheers and all the best!

    Mart



SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 14
    Last Post: 2nd January 2009, 03:05 PM
  2. Proxy sites
    By whatwherewhen in forum Links
    Replies: 33
    Last Post: 28th October 2008, 04:14 PM
  3. proxy bypass sites
    By bishopsgarthstockton in forum Links
    Replies: 77
    Last Post: 7th December 2006, 12:29 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •