Hello,
I run WebSense Security 7.8.4.
I don't want to block all file extensions since they are allowed at the moment, but how can I block certain .exes, dlls, etc.
I read on File Blocking and File Type and it talks about blocking extensions, but I only want to block certain exe and not all exe (i.e. pwdump7.exe, lsahook.dll) from download. Not sure if this is possible or not? If I it is, can someone point me in the right direction?
Thanks in Advance,
Joey
I have a rather unique and difficult situation. My client uses Google for mail, drive, etc but not Hangouts. The client now insists the must use Hangouts as well but at the same time we have to retain policy controls on other google domains in order to protect limited Bandwidth in various geographical locations, most notably Youtube which if not controlled can render any entire Business Units internet access inoperable.
Does anyone have any good ideas? I know that google IP ranges can be very dynamic and the FQDN is not always used in the web requests.
We have recently purchased the cloud web filtering solution and are having trouble with authentication bypasses. Some of them seem to work and others don't, some seem to work temporarily and then stop again. The configuration of bypasses says:
We are using wildcards i.e *.salesforce.com for a majority but also trying URL's and domains without wildcards.
One particular example is a problem i am having installing sales force chatter. When doing this a box pops up prompting for authentication. I can see in transaction viewer that na4.salesforce.com:443/ is requiring authentication. I have added this specific URL and *.salesforce.com domain, with and without the user agent header. But we still got prompted.
There seems to be a lot of variables on how to configure the bypass to get it working. Watare peoples experiences using this feature? Do you have a rule that works for everything or most auth bypasses?
Thanks in advance.
Just wanted to write this up for anyone else in the future.
After deploying Endpoint to many machines we started noticing that we couldn't activate Windows 7 / Office anymore. The error was pretty obvious about it being a connectivity issue with Websense. Found it was trying to go to https://activation.sls.microsoft.com so I added "activation.sls.microsoft.com" into the SSL Decryption Bypass list and that fixed our problem.
I cannot send mails to Hotmail via Triton all mails are stocked in the delay messages
" Reason for Delay Exception delay 2 (lost connection with mx1.hotmail.com[65.55.37.72] while sendi...)"
although i can send mails to gmail
then when i telnet to mx1.hotmail.com display the below
220 BAY004-MC1F51.hotmail.com Sending unsolicited commercial or bulk e-mail to M icrosoft's computer network is prohibited. Other restrictions are found at http: //privacy.microsoft.com/en-us/anti-spam.mspx. Sun, 11 Oct 2015 04:37:33 -0700
my domain and IP are not listed
My question has to do with the support of filtering servers at 20+ sites.
Assuming I complete the upgrade of the Triton server, Log server and Policy broker machine, will I be able to enable the Enterprise SQL database and jobs to support logging from the other 20+ filtering servers until I can get them upgraded?
I am new to Websense and looking at my mail security server to make sure it is up to snuff. Currently I am running 7.3 with hotfix 8 (just upgraded from HF6.) What is the upgrade path from here, if any? Or is this basically a dead end product and I should be looking elsewhere for an alternate solution.
Thx
Websense is able to restrict access to the main youtube website. However when a user clicks on an specific video url websense identifies it as google and lets the traffic go through.
any idea how to fix this.
Word mentioning i have not allowed specific youtube urls or recategorized it. I am also able to block https traffic from other restricted sites such as facebook.
For some reason this morning any URL that I check with the URL Category link in the Toolbox returns the category as 'Miscellaneous'. It does not matter if the URL is being filtered by the Master Database, or if it is in one of our User Defined categories. However our block screen is showing the correct category and reports are showing correctly. Has anyone seen anything like this?
We are running version 7.5 as a Stand Alone on a Windows Server.
Dear community,
when I try to install web security 7.6 I'm getting an error 1720.
What I've founded in the log file (%temp%): MSI (s) (F0:5C) [13:36:15:626]: Product: EIP Infra -- Error 1720. There is a problem with this Windows Installer package. A script required for this install to complete could not be run. Contact your support personnel or package vendor. Custom action SetupPostgreSQL script error -2147022676, : Line 58, Column 1
Everytime I used google and websense website for looking to a solution.
I tought this would fixing my error: http://kb.websense.com/pf/12/webfiles/Webinars/WebinarDocs/Quick%20Install%20Check%20List%20for%20v7.6.pdf
I installed the server 2008 r2 totally new, then i changed the settings as it is written down in this check-list.
But still the same error.
Some addional information: all updates are installed, the install-user is the domain-admin, the installation is started on the console (not rdp), sql-server is separete, for the sql-settings i set the sa user.
Thank you in advance for your help...
Best regards from switzerland,
Patrick
I am trying to find out all of the names of the URL's that I have recategorized, but there are so many, making the job of listing them very tedious. Is there some sort of file download or an export into an .xls or .txt file that I can do that will list all of my recategorized URL's and what category I have put them?
Thanks in advance,
gurlatwurk
Hi Team !!!
I'm facing a problem with Skype. Takes too long to connect successfully, the user needs to click several times at "Login" to connect, the only error it's that Skype could not connect.
At Proxy it's already at tunnel mode.
And the filter ""Internet Telephony" and "Uncategorized" it's Allow.
Can you guys help me please!! Thanks.
This has been driving me crazy. I have noticed that some users will browse the web just fine with their correct policy for a period of time, then for whatever reason, they are handed out a (username)@xxxx.nosuchdomain.autoregistration.proxy account within the portal and will receive our default policy (which blocks them from most everything). It isn't until I go in to the "end users" section and delete the @nosuchdomain.autoregistration.proxy account and they close out of their browsers until they receive the correct policy again.
Has this happened to anyone else? Can anyone shed any light on this? The best I can tell is that for whatever reason they aren't recognized in the portal and are given a temporary account. Thanks in advance.
Hi,
I'm testing Windows 10 Ent. I install Websense Endpoint but the Websense icon does not display in the System tray. Result log in credential does not pass through the Websense Web AP.
I guess this is because Websense Endpoint does not support on Windows 10. Is anyone experience this issue? any suggestion is much appreciated.
Peter.
We are running web security build 7.8.1 and was wondering is there is a way to configure websense to get the user info from the tablet instead of prompting the user for their credential's?
Greetings all ,,,
i have a question about websense P1 interface IP settings, do i need to setup public ip address on this interface or just any IP address which can reach the internet through my router ( Private IP ) ?
I have one PC user who receives this message and can find nothing on it in the knowledge base. When they open IE it shows up about 80% of the time.
Any insight would be helpful.
Thanks,
Rick
Hi everyone;
Inside Triton AP-Email VA 7.8, I cannot see“Policies/Filters/Action/Filter Condition” based on ZIP file . In other words, I want to deliver emails with ZIP attachments to Message Queues so that Admin can manually release them for end users. I have thoroughly explored Filter Conditions/Actions but could not find at all. I can see attributes like “Sender IP Address, Envelope Sender,…,etc.”
This feature was available out-of-the-box in Websense Email Security v6.x. OR am I missing something altogether?
Thanks
I just want to start a thread here on an issue that happened several weeks ago where our users are being prompted for authentication credentials with a pop-up, when things have been fine for over two years for us. I've opened a case, #01783640, and they are working on this issue. If you have a similar issue, open a case and be vocal about them working on a solution. So far they have not identified the issue.
The case has been escalated to the back line without word as to whats causing this. I heard that it could be part of the server farm upgrade they are doing, I've also heard it could have been a Microsoft update from several weeks ago. Regardless, they need to help us!
Hi there,
I've setup Websense Webfilter paired with a Cisco ASA 5520 (8.03). I've set up filtering rules for HTTP and HTTPS on the ASA to pass the traffic to the Websense machine. HTTP filtering works fine and as expected but HTTPS does not. A site that is blocked when accessed via HTTP isn't blocked when accessed via HTTPS. If I run "Test filtering" it says that it is/was blocked. What could be wrong?
HTTP and HTTP is set up the same way and I've read and reread the docs, searched the KB and forums. Still no go. Any tips?
Thanks.