Due to some URLs and Domains that the Facebook & FB Messenger mobile applications use, it sometimes might fail when trying to connect through a Smoothwall Filter. You need to configure the Smoothwall Filter to Allow the Facebook & FB Messenger mobile applications to work through a Smoothwall using MiTM HTTPS decryption. The two applications are not separable due to sharing network requests.
Procedure
- Make sure that your blocklist is up-to-date, see our help topic, Viewing and managing licenses and subscriptions.
- Create an allow web filter policy with the Facebook category, see our help topic, Creating web filter policies
- Who: "Everyone, or the relevant user or groups to apply this policy to."
- What: "Facebook App"
- Where: "Everywhere, or the relevant location to apply this policy to."
- When: "Always, or the relevant time slot to apply this policy to."
- Action: "Allow"
- To keep the Facebook site blocked on desktop but allowed on mobile devices, move the policy above the other Core Blocked Content Block policy in the Web filter policies table, see our help topic, Managing web filter policies.
- Create a do not inspect HTTPS inspection policy, with these settings, see our help topic, Managing HTTPS inspection policies:
- Who: "Everyone, or the relevant user or groups to apply this policy to."
- What: "Facebook App"
- Where: "Everywhere, or the relevant location to apply this policy to."
- When: "Always, or the relevant time slot to apply this policy to."
- Action: "Do Not Inspect"
- Make sure this policy is above any other Decrypt & Inspect policy in the HTTPS inspection policies table, see out help topic, Managing HTTPS inspection policies.