Thread: [7.460][QUESTION][OPEN] Connection refused on shared resources
View Single Post
  #7 (permalink)  
Old 06-27-2009, 07:52 PM
wingman wingman is offline
Super Moderator
  
Join Date: Feb 2009
Location: In a galaxy far far away
Posts: 857
Default
Quote:
Originally Posted by Billybob View Post
Routing is probably getting confused since more than likely dmz is allowed to surf via http proxy also. But the error in the logs would indicate that the proxy is blocking it which doesn't make sense. Do you have packet filter rule allow LAN-->http to dmz by any chance?
If you do, as a work around, try putting 172.16.1.2 in transparent skiplist under http/s-->advanced-->Transparent mode skiplist. Also uncheck the box Allow HTTP traffic for listed hosts/nets after you add the IP. I am assuming you are using transparent proxy and see if it works.
It still might be a bug though in http proxy. HTTP proxy was fine in 7.450 but is not the stablest thing in 7.460 in my opinion.
i have a rule that only allows specific (netbios,ping etc) trafic to DMZ and is on the top of the rules. When I enable the logging for this rule I can see the traffic allowed but still traffic is blocked by the proxy.
__________________

Running Astaro ASG virtual appliance | Home power user 100 IP license
Intel Dual Core 2.4GHz (800MHz) | 4GB (2 x 2GB) PC2-6400 800Mhz 5-5-5-18 | WD 160GB |3 x Intel Pro/1000