Weird things with Web Filtering Policies WM4
|
Logged in as: Guest
|
|
Users viewing this topic:
none
|
|
Login  | |
|
RE: Weird things with Web Filtering Policies WM4 - 10.Oct.2007 7:16:55 AM
|
|
|
Juan Carlos
Posts: 59
Joined: 14.Jan.2004
From: Madrid (Spain)
Status: offline
|
I have the same issue too.
Issue : Web Filter policies doesn’t Works fine using Groups.
Fox example. You can create a group with two users and allow them to see Sports or Pornography pages….
It doesn’t work. Appear the messages:
Access for 192.168.1.42 ISOFOTON Juan Carlos Calvo was denied by GFI WebMonitor for ISA Server.
Details:
Default Web Filtering Policy Blocked site category:pornography,nudity
But If you add the name of the users works fine. “Please check policy Groups”.
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 12.Oct.2007 5:36:51 AM
|
|
|
justme
Posts: 78
Joined: 23.Aug.2004
From: Raamsdonksveer, The Netherlands
Status: offline
|
Ok, I've found a fix for my problem. I have created a local group on the server running ISA2004 and WM4 (the server is a member server). Next I added the domain group internet access to the local group and configured a policy for the local group and all of a sudden the rule works just fine. Is this a "by design" feature or is this somewhat of an error? I would like to think that the rules should work for domain groups as well because it does so for domain users!
Does GFI have any idea what could be causing the problem?
< Message edited by justme -- 17.Oct.2007 4:20:38 AM >
_____________________________
Another day, another challenge
Paul Storm van Leeuwen
Systems Manager Holmatro
http://www.holmatro.com/
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 21.Oct.2007 7:05:30 PM
|
|
|
enzob
Posts: 1
Joined: 21.Oct.2007
Status: offline
|
Hi,
I'm having the same issue too, but i have issue also with ip range (for example 192.168.0.1 - 192.168.0.100).
...
_____________________________
Enzo Bastianello
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 22.Oct.2007 2:13:00 AM
|
|
|
justme
Posts: 78
Joined: 23.Aug.2004
From: Raamsdonksveer, The Netherlands
Status: offline
|
I haven't tested the IP-feature. In our case that would be to much to do since we are running several ip-ranges. It does point out however that the webfiltering policies feature is far from finished for the developers.
_____________________________
Another day, another challenge
Paul Storm van Leeuwen
Systems Manager Holmatro
http://www.holmatro.com/
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 22.Oct.2007 4:33:59 AM
|
|
|
Patrizia
Posts: 8474
Joined: 18.Aug.2003
From: Malta
Status: offline
|
Hi,
Thanks to all for your feedback. We are currently investigating this issue further and will keep you informed.
_____________________________
Patrizia Caruana
GFI Software - www.gfi.com
Messaging, Content Security & Network Security Software
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 19.Nov.2007 6:43:49 AM
|
|
|
bertiebassett
Posts: 1
Joined: 19.Nov.2007
Status: offline
|
quote:
ORIGINAL: Patrizia
Hi,
Thanks to all for your feedback. We are currently investigating this issue further and will keep you informed.
Is there an update on this problems as I have the same issue...
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 7.Dec.2007 8:37:31 AM
|
|
|
mikecel79
Posts: 3
Joined: 6.Dec.2007
Status: offline
|
I have just downloaded a trial of this and am having the same problem. However from your post I think I know what the problem could be. Are you starting the GFI WebMonitor service as a local user account? If so it would only be able to read local user accounts and groups. It would not be able to read users and groups from Active Directory.
To me this is a bug since during the install it would not allow me to specify a domain user account to start the service. Only a local user account.
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 7.Dec.2007 8:59:38 AM
|
|
|
mikecel79
Posts: 3
Joined: 6.Dec.2007
Status: offline
|
Well I switched the service to run as a domain account and that did not help. It still will not use AD groups to do filtering. If this product can't do AD groups then it's useless to me since I am not going to create more groups on the local machine.
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 4.Jan.2008 2:52:11 AM
|
|
|
sesel
Posts: 1
Joined: 4.Jan.2008
Status: offline
|
can anybody help me with that WM4 for dealing with the group policy stuff, for me also doesnt work with domain group, and i hve try with the local group also n same result.
The guys at GFI what can be done to fix the problem, is there a patch for it that i can download. let me know.
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 7.Jan.2008 10:16:06 AM
|
|
|
Patrizia
Posts: 8474
Joined: 18.Aug.2003
From: Malta
Status: offline
|
Hi all,
Thanks for your feedback.
This issue will be fixed in the next build of GFI WebMonitor.
_____________________________
Patrizia Caruana
GFI Software - www.gfi.com
Messaging, Content Security & Network Security Software
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 11.Jan.2008 11:39:24 AM
|
|
|
WayneEx
Posts: 1
Joined: 11.Jan.2008
Status: offline
|
Hi
I am rather disappointed with:
a. the new version - because as mentioned above the group functionality does not work
b. with the response - that it will be fixed in the new build
For me this is a critical issue. I have just sold Web Monitor to a client and am busy with the deployment of it and ISA 2006. Both will be replacing an existing solution and does not reflect well on GFI products (or me) when before the client is even using it we are having issues. We did our testing and pilot on the previous version not on WM4. I have now been struggling with the groups problem for the past two days when I found this post.
I have been unable to get the local groups fix to work - and thus now have to add each user to each policy (as far as I know you cannot multi-select in the WM console. This means I have to add 160 users to each policy - which takes three clicks and I have to give the helpdesk (who create new users) access to the ISA box or GFI to add new users to the policy (which is a security risk).
I would appreciate a bit more help from GFI on this issue - perhaps a work-around on how to get the local groups to work (at least then I can multi-select) or a hotfix.
Also does this groups issue apply to the download policies as well or just the Web Filtering policies?
I also recieve an error when adding a user to second policy. Why is this? What if I want certain users to have access to certain sites during office hours and other sites after hours - thus two policies. Am I doing something wrong?
Any advice would be appreciated.
Regards
Wayne
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 13.Feb.2008 9:07:18 AM
|
|
|
N-Rico
Posts: 3
Joined: 30.Aug.2005
Status: offline
|
We are planning to buy Webmonitor for use in our hosting environment. However we really need the AD groups to work! Is there any sight on when the new build will be released?
Or could Justme maybe explain how he/she got the local group work-around working? I only see domain groups listed in the console, no local groups.
Please advise :)
Kind regards,
Enrico Klein
ApplicationNet
|
|
|
|
|
RE: Weird things with Web Filtering Policies WM4 - 15.Feb.2008 5:27:58 AM
|
|
|
jonboy
Posts: 2
Joined: 13.Feb.2008
Status: offline
|
Thanks for the reply, any idea when the update is due out?
|
|
|
|
 New Messages |
 No New Messages |
 Hot Topic w/ New Messages |
 Hot Topic w/o New Messages |
 Locked w/ New Messages |
 Locked w/o New Messages |
|
 Post New Thread
Reply to Message
Post New Poll
Submit Vote
Delete My Own Post
Delete My Own Thread
Rate Posts |
|
|
Printable Version
Weird things with Web Filtering Policies WM4 - 
). If I let the user browse to 
! If I remove the DOMAIN\gfitest group from the rule and put only the user DOMAIN\test in the rule he is blocked as he should be 
. I don't think this is the idea of the mechanism and I don't really feel like adding every user (about 150) seperately in the rule. 
