Press "Enter" to skip to content

Stormshield: url filtering https without decryption

0

Presentation

In this tutorial, we’ll see how to set up https url filtering (SSL) without needing to decrypt and therefore deploy the stormshield certificate.

This solution does not display a blocking page, users will have a blank page.

Implementing https URL filtering

1. Log in to your Stormshield.
Stormshield : filtrage url https

2. In the menu on the left, go to SECURITY POLICY 1 then SSL filtering 2 and click on Add rules by category 3.
Politique SSL

3. All categories 1 on your Stormshield should be added to the filter policy.
Liste des catégories

4. You must now for each category 1, modify the action. To block, you must put the Block without decryting action and pass Pass without decryting.
Choix de l'action par catégorie

5. Check that the last line is the category any 1. Depending on the desired policy, modify the action. Then click Apply 2 to save.
Parametrage du any

6. Go to Filtering – NAT 1, add a new SSL inspection rule 2.
Ajout d'une règle

7. Configure source and destination 1, select the SSL profile you just made 2, and click Finish 3 to add the rules.
Configuration de la regle

8. Two rules are created, you can see at the level of the first application filtering. Click Save and apply 1 to apply the changes.
Visualisation des regles


Related Post

Redirect HTTP to HTTPS over IIS In this tutorial, we'll see how to automatically redirect http requests to https under IIS. Prerequisites : Valid configuration of your site wit...
SOPHOS XG: clientless access Clientless access presentation Client-free access to Sophos XG firewalls allows connections to corporate servers without a VPN client by going direct...
Sophos XG: secure emails Introduction In this tutorial, we will see how to secure emails with a Sophos XG firewall. The firewall offers two modes of operation for filterin...
Kemp: solve the problem of mixed content If you use Kemp to dump to pass an internet site in HTTPS, it is possible that part of the content of the site (images, css, js) does not appear, the ...

Leave a Reply

Your email address will not be published. Required fields are marked *

It looks like you're using an adblocker.
We use ads to keep our content free. Please support us by turning off your adblocker.