Panda Adaptive Defense 360 - Web blocker - Dnswatch

Currently I have DNSWatch installed on a firebox which also has the Web blocker feature activated. I have hosts with Panda Adaptive Defense 360 and some with Panda AD 360 Advanced Reporting. (I have TRD hosts installed as well.)

Dnswatch, web blocker and Panda all have content category filters. I have web blocker activated and dnswatch enabled and have not configured Panda.

Which combination of these if any would be best to use and in what configuration

Comments

  • A problem I am having is sometimes dnswatch stops something and sometimes web blocker stops something. I see this on the corresponding watchguard block web pages. And some youtube videos gives a generic block page with something like “contact your google workspace or network administrator”. I don’t know how or why it’s being blocked.

    Figuring out what is blocking certain youtube videos is my first concern.

    Currently my dnswatch enforcement is not enabled under the subscription services dnswatch tab and I have network\configuration\win/dns set to enable dns forwarding. (It’s easy to forget that dnswatch still works with the Enable Dnswatch checkbox unchecked!)

    I’m thinking of disabling the webblocker and going with dnswatch alone.

    Any recommendations on troubleshooting the youtube issue or category content setup with multiple services are appreciated.
  • I think I put too many specifics into this thread.

    To narrow it down, I’d like to simply ask what people’s thoughts are with both Webblocker and Dnswatch on the same firebox? thanks
  • Many use both, including me.
    Each serves a different purpose IMO, and has a different source of data which could effect a block.

    Some sites block selected categories in WebBlocker, which one really can't do in DNSWatch.
    DNSWatch can block things which WB really can't do.
    And there is DNSWatchGo for endpoint devices.

    Some benefits of WB (from an old list):
    https://www.watchguard.com/training/fireware/80/httppr12.htm

  • edited February 2021

    @Bruce_Briggs said:
    Many use both, including me.
    Each serves a different purpose IMO, and has a different source of data which could effect a block.

    Some sites block selected categories in WebBlocker, which one really can't do in DNSWatch.
    DNSWatch can block things which WB really can't do.
    And there is DNSWatchGo for endpoint devices.

    Some benefits of WB (from an old list):
    https://www.watchguard.com/training/fireware/80/httppr12.htm

    If panda is also a is web proxy like your screenshots say’s his question is legit. You can only have only 1 web proxy because both proxy don’t be are aware off each other. Your suggestion is use both is technical impossible:-) dns watch go will over rules panda web proxie or pandas will over rule dns watch. Depending on the the dns hijack location of both services. the dns request wil go to panda or dns watch. Not both!

    Dns watch is is not forwarding to panda and panda is not forwarding to dns watch! that is something you really don’t want because you get a infinity delay/loop

Sign In to comment.