pirateghost
Unintelligible Geek
- Joined
- Feb 29, 2012
- Messages
- 4,219
I will snag some application Control settings tomorrow
Having read this topic I think it is a good idea to utilize some additional security - primarily for the kids.
Sweeeeet... This is a really nice feature, will make sure to check it out.As you get more familiarity with the product, you can create multiple web filtering profiles. For example, the profile for your IP might allow a broadened range of categories, whereas the kids might get a smaller subset of them.
Configure/enable the daily (or others) reports and look at the reporting data. You might discover that a good portion of your bandwidth is being consumed by a few advertising sites.
I appreciate it and gmail is one of my offenders plus hotmail (using "Exchange Activesync") so I may take you up on your offer but I will at least give it a shot myself first, it's the best way to learn it at least once. I'm sure I'll forget all about it later in about 6 months.The email scanning and setting up gmail was the hardest part of the whole configuration I did a few years back. Don't feel bad if you get stuck on email stuff and need help. Just ping me here and I will do my best to help out. I have had to help a couple of others out on setting that up too.
I'm really not one to give advice just yet about firewall rules but where is the rule located? Since it's a drop rule I would think it should be at the top of the list, rule #1.
I think the other thing is knowing if the issue is coming from one specific computer on your network (you have malware maybe) or if someone is trying to access your system. Maybe some extra info would help but that is what I'd be looking at myself.
When creating rules, you can select where in the list it shows up (drop down with rule numbers), and I always turn logging on in my LAN->internet rule so I can log everything.I should really read the manual, this sounds like a good idea. Of course being a newly created firewall rule it's at the bottom of the list.
A whois search on the IP address shows it to be assigned to a company that runs lots of servers for other companies, a "server house" I think is the term. My feeling is that this IP was formerly assigned to server.gutterclutterbuster.com and is now assigned to another company/organization but the server house didn't update their whois record. With the amount of traffic going to it, it could be a weather server I'm sending weather data to...another hobby.
I have to get familiar with reading the logs. I'm not sure where everything is and since this traffic is passing through and not being blocked, it may not be in the logs.
I'm getting much better with the logs and it will come with time. As for not knowing where everything is, Sophos does have that one issue, it's a real pain to figure out where many settings are. Yesterday it took me about 10 minutes to locate the A/V scan file size limit and then finding it was 30MB, I left it alone for now, I'm not certain lowering it to 20MB will make any real impact on a home system.I have to get familiar with reading the logs. I'm not sure where everything is and since this traffic is passing through and not being blocked, it may not be in the logs.
Okay I give up! Setting up email protection for a GMAIL account is kicking my butt. I got POP3 working for a normal POP3 account, tested message blocking and being able to release it, but GMAIL is IMAP/SMTP. So far it looks like I may need to setup my own exchange server or something, my brain hurts! I also understand that my Hotmail accounts are not supported at all, well yet, so at least I don't have to spend more time on that effort.The email scanning and setting up gmail was the hardest part of the whole configuration I did a few years back. Don't feel bad if you get stuck on email stuff and need help. Just ping me here and I will do my best to help out. I have had to help a couple of others out on setting that up too.
I've been <popcorn> this thread since I'm going to head down this road by the end of the year. Your problems with Sophos so far would also be my problems and therefore a show stopper. I must have Netflix, Gmail and Hotmail running and yet protected. I would also need Amazon Prime and Hulu access as well as Emby. It makes me wonder if pfSense would be an easier setup even though it's more complex.