09-30-2019 07:43 AM
Hi All
I want to set up a rule to allow specific users access to the Twitter website. This is blocked for all other users.
I thought I had set this up correctly (and it did seem to be working), however the website now seems to be blocked again.
I noticed that twitter is a https site, so not sure if that makes any difference?
Thank you
09-30-2019 04:13 PM
Hello,
I would recommend to check the access logs and understand the tag of the block and also check if the traffic is matching the correct identity/decryption/access policy. If the traffic is https, it will matter if you have decryption enabled. Are you decrypting the twitter traffic and allow it in access policy? Or have you set the traffic to pass-through in the decryption policy.
Thanks
Ash
10-16-2019 04:44 AM
Hi Ash, thanks for coming back to me
How do I get to the access logs, can they be found within Reports?
We have a Company HTTPS Policy set up, however it is currently set to "inactive". Underneath this is a Default rule which is set to "do not inspect".
Thanks for your help
10-16-2019 03:15 PM
Hello,
You can tail the access logs using the "grep" command in the cli. Type in grep , select the number of the "access logs" and select "Y" for tailing the access logs. You can grep for the 'ip address' trying to access twitter. This way you can get the live access logs when trying to access twitter.
Thanks
Ash
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: