Why can Microsoft Edge get through the blocked URI character.ai but other browsers can't.
MKeith37
Newbie ✭
I put "character.ai" on my blocked uri list on an older TZ350 model firewall we have with gateway advance security license. Everything works like it should with any combination of website I want to be blocked and browser being used execpt for the website "character.ai". Using Chrome or Firefox it pulls up my custom message saying its block. However if anyone uses Edge on any computer to go the site it goes straight through without being blocked. I have added both IP addresses of the website to the uri list also with no change. We do not use Edge but students might use it to get around certain Chrome or Google Workspace restrictions. Maybe it has something to do with it being character.ai instead of .com? But then why wouldn't it block the ip adresses for the site in Edge only also? Don't know. Looking for help with this.
Answers
You might be affected by this: https://learn.microsoft.com/en-us/deployedge/microsoft-edge-security-cert-verification
This is all assuming you are doing DPI-SSL but you didn't state that.
This is a little above my knowlege leve. I went to check if I had DPI-SSL on or and try changing the three options one at a time to see if that would fix the issue, however after following instuctions from sonic wall I cant find those toggle switchs. I run bothe the cloud/browser and normally loging straight to the device. I am attaching pictures of both platforms. Can you help to redirect me to the toggle switches for on/off dpi-ssl and the other two options in the articla I have attached a screen shot view. (FYI, my knowlegeof certificates and DPI-SLL is a over my knowlege base.
You are not using DPISSL so don't worry about it.
In your screenshots in the original post, notice that in Firefox you are going to the HTTP site, while Edge is going to the HTTPS site. It's possibly Edge is automatically trying HTTPS instead of HTTP. Have you enabled 'HTTPS Content Filtering' in your Content Filtering settings?
https://www.sonicwall.com/support/knowledge-base/how-can-i-block-https-websites-in-cfs4-0-sonicos-6-2-6-and-above/170505900217724/
Note that enabling 'HTTPS Content Filtering' without DPI-SSL will not result in a blocked page, the browser will simply fail to connect to the website.