orange
10-30-2008, 08:46 AM
Hey after locking down the network somewhat I suspect one of my users has decided to use an https proxy site. I turned on SSL and TLS logging to hopefully see what proxy sites are being used. (correct me if this is not a valid approach or if there is an easier way)
Well my network has a particular box that connects through SSL to the outside world non stop for backup purposes and thats ok. However it spams the log and makes it difficult to weed through. Is there a way I can white list either the source or destination IP so that they dont show up in the log?
Also, has anyone had any experience logging everything in Protocol Control? Would this have any negative effect on my untangle box? Thanks
Well my network has a particular box that connects through SSL to the outside world non stop for backup purposes and thats ok. However it spams the log and makes it difficult to weed through. Is there a way I can white list either the source or destination IP so that they dont show up in the log?
Also, has anyone had any experience logging everything in Protocol Control? Would this have any negative effect on my untangle box? Thanks