Due to some URLs and Domains that the Facebook & FB Messenger mobile applications use, it sometimes might fail when trying to connect through a Smoothwall Filter. You need to configure the Smoothwall Filter to Allow the Facebook & FB Messenger mobile applications to work through a Smoothwall using MiTM HTTPS decryption. The two applications are not separable due to sharing network requests.
Procedure
- Make sure that your blocklist is up-to-date, see Viewing and managing licenses and subscriptions.
-
Create an allow web filter policy with the Facebook category:
- Who: "Everyone, or the relevant user or groups to apply this policy to."
- What: "Facebook App"
- Where: "Everywhere, or the relevant location to apply this policy to."
- When: "Always, or the relevant time slot to apply this policy to."
- Action: "Allow"
- To keep the Facebook site blocked on desktop but allowed on mobile devices, move the policy above the other Core Blocked Content Block policy in the Web filter policies table.
-
Create a do not inspect HTTPS inspection policy with these settings:
- Who: "Everyone, or the relevant user or groups to apply this policy to."
- What: "Facebook App"
- Where: "Everywhere, or the relevant location to apply this policy to."
- When: "Always, or the relevant time slot to apply this policy to."
- Action: "Do Not Inspect"
- Make sure this policy is above any other Decrypt & Inspect policy in the HTTPS inspection policies table.