Astaro User Bulletin Board
Go Back   Astaro User Bulletin Board > Astaro Gateway Products > Web Security: HTTP/HTTPS/FTP, IM/P2P, Web Filtering and Antivirus
Reload this Page Site blocked but should not be... I think
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Welcome to the Astaro User Bulletin Board.
If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 07-02-2009, 07:59 PM
Junior Member
  
Join Date: Jun 2009
Posts: 4
Default Site blocked but should not be... I think
I am fairly new to Astaro, I looked around the forums for similar problems, tried a few solutions mentioned and have had no success. The site below is blocked but i have this users IP on every exception list I can find and the site in every white list I can find. Still it get blocked. Live log shows this message:

2009:07:02-14:51:34 firewall httpproxy[7549]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.0.96" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="2399" time="62103 ms" request="0xb38d3430" url="https://iol.bah.com/iol/invoice/po/upload.cfm?ctype=CPFF&ponum=93246CBS17&release_num ber=%20%202&invoice_number=800118R&mode=" exceptions="av,auth,content,url,certcheck,certdate ,mime" error="Connection to server timed out"

How do I get the Astaro to let "pass" this traffic?
Reply With Quote
  #2 (permalink)  
Old 07-02-2009, 08:49 PM
Senior Schall und Rauch Member
  
Join Date: Nov 2008
Posts: 259
Default
Do you have https scanning enabled? If the answer is yes, you may have to add the Signing-CA of the WebSite's Certificate to the Proxies' trusted CA-List.
__________________
"Datenautobahn: Einrichtung zur schnellen Übertragung großer Datenmengen (z.B. über das Telefonnetz)" (DUDEN, 21. Auflage)

Mario Schmidt
QA Engineer
Astaro AG
Reply With Quote
  #3 (permalink)  
Old 07-02-2009, 11:09 PM
Super Moderator
  
Join Date: Feb 2009
Location: In a galaxy far far away
Posts: 857
Default
it seems that the connection times out. Are you able to connect without the HTTPS scanning checked?
__________________

Running Astaro ASG virtual appliance | Home power user 100 IP license
Intel Dual Core 2.4GHz (800MHz) | 4GB (2 x 2GB) PC2-6400 800Mhz 5-5-5-18 | WD 160GB |3 x Intel Pro/1000
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT. The time now is 06:53 PM.

 
Contact Us - Astaro User Bulletin Board - Archive - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2010, Jelsoft Enterprises Ltd.


These pages are specifically maintained for the discussion of firewall issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases. issues within the Open Source community, and might already reflect new alpha/beta releases under development. Please refer to our product specifications for the functionality of the actual release. Discussions of new/enhanced functionality does not constitute a commitment of Astaro, to integrate this functionality into future releases.