Web Protection
This chapter describes how to configure basic web protection features of Sophos UTM on AWS.
The following topics are included in this chapter:
The Web Protection Statistics page in WebAdmin provides an overview of the most used applications and application categories, the most surfed domains according to time and traffic as well as the top users surfing. In addition, the top blocked website categories are shown. Each of the sections contains a Details link. Clicking the link redirects you to the respective reporting section of WebAdmin, where you can find more statistical information.
Note – You can find detailed information on how the web usage data is collected and how the statistics are calculated on the Logging & Reporting > Web Protection > Web Usage Reports page.
In the Top Applications section, hovering the cursor on an application displays one or two icons with additional functionality:
- Click the Block icon to block the respective application from now on. This will create a rule on the Application Control Rules page. This option is unavailable for applications relevant to the flawless operation of Sophos UTM on AWS. WebAdmin traffic, for example, cannot be blocked as this might lead to shutting yourself out of WebAdmin. Unclassified traffic cannot be blocked, either.
- Click the Shape icon to enable traffic shaping of the respective application. A dialog window opens where you are asked to define the rule settings. Click Save when you are done. This will create a rule both on the Traffic Selectors and on the Bandwidth Pools page.Traffic shaping is not available when viewing the All Interfaces Flow Monitor as shaping works interface-based.
- Click the Throttle icon to enable traffic throttling of the respective application. A dialog window opens where you are asked to define the rule settings. Click Save when you are done. This will create a rule both on the Traffic Selectors and on the Download Throttling page. Download throttling is not available when viewing the All Interfaces Flow Monitor as throttling works interface-based.