Hi Peter and welcome to the UTM Community! The only way to block p0rn selectively is to have the traffic transit Web Filtering. If you need to handle ports other than HTTP/S, I would put the Default Profile in Transparent and really lock it down and then create a Web Filtering Profile in Standard where the Proxy can enforce filtering rules on HTML accesses using ports other than TCP 80/443. I think you have to ban apps that can bypass Web Filtering. You might start looking here with a Google on: site:community.sophos.com/products/unified-threat-management/f/web-protection-web-filtering-application-visibility-control school Cheers - Bob
↧
