Endpoint Protection

I was testing this ability today and here is my issue:

We are behind a proxy first of all

I added a rule to allow *.symantec.com via IE and moved it to the top

I added a rule to block * via IE and moved it underneath the allow rule

After updating the policy, all websites were blocked

Then I added both proxy servers to the allow rule

Now I could to symantec.com but I could also browse any website I wanted to. So it seems like it's one or the other.

I'm not sure how to proceed now.

Any ideas?

Have a look to this , see if that helps

http://www.symantec.com/business/support/index?page=content&id=TECH92097&locale=en_US

That is what I did, however it doesn't seem to support proxies

Check this Video or this article with screenshots

https://www-secure.symantec.com/connect/videos/allow-and-block-websites-using-symantec-endpoint-protection-firewall

https://www-secure.symantec.com/connect/articles/how-block-internet-address-sep-manager-firewall-rule

Well if you are using proxy then you can block the websites from the proxy server itself..

I followed the video step for step but again, it seems to be because we are behind a proxy

What it looks like to me is it's because of the proxy and the SEP firewall can't differentiate between proxied and non-proxied traffic.

If I don't add the proxies as an exception, everything is blocked. If I add them, everything is allowed because, well, the proxy server itself it allowed and that's what it going thru first to hit a website, regardless if that site is blocked or not. The first piece is allowed so everything after is allowed as well.

I would recommend investing in a webfilter product.  They are designed to do this and add another layer of security which is very helpful at times.   Personally I recommend websense with the security suite add on as it keeps users from going to malicious sites and helps protect your network.

I have also seen it, that  blocking websites through sepm, does not work, if behind a proxy