Block YouTube App

[sy]

Hi Tomsauy,

Just released a DB. Some Google Services and Apps updated and added with 1.6.20201209014859 AppDB. Looking forward your feedback.

[ittk]

Hi Tomsauy,

Just released a DB. Some Google Services and Apps updated and added with 1.6.20201209014859 AppDB. Looking forward your feedback.

Just updated the DB manually.

1. But why there is still no real auto-update for the DB?
2. This Opnsense Forum is completly blocked on report detected as Online Utility --> OPNSENSE, but within App Controls it is fully allowed! Web Controls are set to "High Control". Only lowering it to Moderate Control. Will workaround on it. So why does Report promtit as an APP being detected and blocked, when the issue maybe lies within the web control part and having selected the "High control" profile?

Its just after the full opnsense unit reboot, where this forum can be accessed for a while, but i guess when all sensei services and modules enignes are fully loaded, it will be blocked.

[sy]

Hi @ittk,

1- If it is enabled from the Configuration - Updates & Health, it updates automatically.
2- Web and AppDB are different. In High control, Blogs are also blocking and forum.opnsense.org category is "Blogs" in Web DB.

[ittk]

Hi @ittk,

1- If it is enabled from the Configuration - Updates & Health, it updates automatically.
2- Web and AppDB are different. In High control, Blogs are also blocking and forum.opnsense.org category is "Blogs" in Web DB.

Hi,

thanks,

1) But why is is there not in detail view which module an site was blocked, the reason for it? If its caused by web control rules (and which one) or by app controls, blocked app name rule in detail?

In Live session view it just says (classified) as blocked application Online Utility --> OPNSENSE.
Or do i miss something to get the better view which modules (web or app controls and which exact rule of it) blocked it?

2) Here you go: but it's ticked all on:

Updates and Support   full help
Check For Updates Automatically:
Last Update Check: 11/07/2020 12:35   
Automatically update Databases And Threat Intelligence Data:
Last Updated: 12/10/2020 06:07

Whats the update und auto-install invervall? Maybe longer ranged, so i was before it run?

This morning i have to manually check for the APP DB update und installed and reloaded it by hand, as it was not yet installed.

[sy]

Hi @ittk,

You can view details of the blocked session in Live Session Explorer by keeping the cursor on the blocked line, or Live Blocked Sessions Explorer.

The update time interval is in every hour. So you loaded the new version on Viewversions or with check updates?

[ittk]

Hi @ittk,

You can view details of the blocked session in Live Session Explorer by keeping the cursor on the blocked line, or Live Blocked Sessions Explorer.

The update time interval is in every hour. So you loaded the new version on Viewversions or with check updates?

With check Updates...

[ittk]

Hi @ittk,

You can view details of the blocked session in Live Session Explorer by keeping the cursor on the blocked line, or Live Blocked Sessions Explorer.

True, but when only the blocked actions come from web controls action, the website warning page "blocked for reasons xyx" should be display to the user, as when you try to acesss adult content webpages. here when trying to access the opnsense forum, it's nothing displayed on the web browser (pahe just won't open), so it's having the same effect, like it is accessed when just the app control signatures have been applied.

[sy]

Hi @ittk,

Yes, The landing page works for HTTP connections yet. In early 2021 it will work for HTTPS sites as well.

[mb]

Adding to @sy's comment:

Along with the new landing page support, we will be providing "access pin" feature, with which you'll be able to create a PIN that will allow temporary/permanent access to a blocked connection.

We think this will be helpful in the sense that you'll be able to do whitelisting without having to visit the Sensei administration interface.

[Anael]

that PIN option sounds amazing !