Web Protection: Allow Users to request unblocking of sites via submission form
We would like the ability to either have greater control of the block pages i.e. fully customisable block pages or to have a form inbuilt to allow the end user to request for the site to be unblocked.
The form would prefill with the url, reason for block, username and a box for the explanation to why it should be unblocked. On submitting it would then go to the cache administrator for actioning or to a portal within utm for review
It would help increase acceptance of the system. Not all sites that fall within a blocked category necessarily warrant blocking and there may be a good reason to unblock. Simply specifying the email address of the administrator isnt very end user friendly and it can lead to missing information if they were to manually send an email
With the Sophos classic Web Appliance, there is a feature to allow users who hit a blocked page to submit a reason for re-categorization. This will be received in a section on the web UI where the Admin can review them and be alerted when submissions are received.
Gerry Kilperat commented
great idea, please bring it to us in the next update, sounds fantastic!!
Emily R commented
Something like this really needs to be implemented. The admin may become inundated with requests so some kind of limitation should be implemented.
For example, each user is restricted to "XX" requests per hour/day.
Something like this is already available on the Sophos Web Appliance, and we use this a lot. However, we would like to replace the web appliance with the web filtering from the UTM. This feature would be much appreciated.
الحجب كاسر commented
I've been using this VPN https://www.waselpro.com/en/ for quite a while now, never used another vpn because I've not had a seconds trouble with them. The account is unlimited.No downtime and very helpful support, very fast replies. It is not easy to find a real good VPN provider.
In many environments, systems like this cause the admin to basically get inundated with requests, often without them ever saying "no". We have a system on the UTM which allows users to override the URL filter using their credentials (if allowed) which will let them bypass only that feature. (Not for example anti-virus).
We then fully log the details of the override (who, what site, when etc..) and their reason they entered (via a field on the override form) and provide that as a report you can audit at will to identify abuse or questionable overrides.
Would that solve your problem, or you still would like to manually process override requests?
Robbie Wallis commented
This would probably require this feature so it can be achieved