Sophos XG Firewall Web Interface Reference and Admin Guide v16.5

Firewall implements a single pane of management to secure all enterprise applications using configuration templates for various rule types.

Traffic Shaping

on page 465

URL Groups

URL groups contain one or more URLs that you can use in web policies to block or allow access to websites.

Add URL Group

1. Go to Protect > Web > URL Groups and click Add.

2. Type a name.

3.

Type a URL in the Search/Add text box and click the Add button ( ).

| Protect | 142

Figure 153: Add URL Group

Exceptions

With exceptions, you can override protection settings for web traffic that matches the specified criteria. For example, you can create an exception to skip HTTPS decryption for sites that contain confidential data. The default set of exceptions specifies some common override behaviors.

Override behaviors now include Sandstorm.

Note: Existing exceptions that skip malware scanning now also skip Sandstorm analysis.

Add Exception

1. Go to Protect > Web > Exceptions and click Add Exception.

2. Type a name.

3. Specify web traffic criteria.

Note: The firewall evaluates all types of criteria specified using the ‘AND’ operator. For example, if you specify URL patterns and website categories, both types must return true in order to match traffic.

However, within each category, criteria are evaluated using ‘OR’.

URL pattern matches

Match web traffic according to the specified URL or pattern, for example, example.com. Regular expressions are allowed here. For example, ^([A-Za-z0-9.-]*\.)?example\.com/ matches all subdomains of example.com.

Note: You must specify pattern matches using ASCII characters. For information about converting non-ASCII characters, refer to

RFC 3490, Internationalizing

Domain Names in Applications

.

Website categories

Match web traffic according to the specified web categories.

Source IP addresses