Sophos XG Firewall (v17): Decrypt & Scan HTTPS
Вставка
- Опубліковано 19 вер 2024
- This video describes how to decrypt and scan HTTPS on the XG Firewall, otherwise known as deep packet inspection of SSL traffic.
--------------------------------------------Click Show More to view related links--------------------------------------------
HTTPS Decrypt and Scan FAQ:
community.soph...
Join our Sophos Community!
community.sophos.com
Have a suggestion for a new video? Please visit our User Assistance forum on the Community to share your idea! community.soph...
you never mentioned where we get the PEM file
how to do this for android or mobile traffic
Hello, for Mobile traffic, you would need to import the CA for HTTPS decryption,
You must import the CA into mobile devices to make sure they trust XG Firewall during HTTPS decryption. This applies to decryption using the web proxy and the DPI engine.
XG Firewall is shipped with a CA certificate used in HTTPS inspection. You can install the CA in groups of mobile devices using a Mobile Device Management (MDM) solution, such as Sophos Mobile.
However for Guest Network Mobile devices this is not really possible, to which it is recommended to create a separate network for this devices. You can read more about this on this document support.sophos.com/support/s/article/KB-000038420?language=en_US, for how to deploy the CA certificate of the XG to the mobile devices you can check this article docs.sophos.com/nsg/sophos-firewall/18.0/Help/en-us/webhelp/onlinehelp/nsg/sfos/learningContent/InstallRootCertificateUsingSophosMobileControl.html
@@SophosSupport thanks for your reply. Makes perfect sense.
pro trick : watch movies at flixzone. I've been using it for watching lots of of movies lately.
@Dean Korbin definitely, I have been using flixzone for since november myself :)
@Dean Korbin definitely, have been using flixzone for years myself :)
okk.