Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 18 replies
  • Answers 1 answer
  • Subscribers 29 subscribers
  • Views 1733 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Blocked ISP's app from the firewall

HUSQA

Hello Gents,

Good Day!

I am new to the Sophos firewall, just upgraded last month to XG210. everything working fine except the billing app from our ISP called "Billexpress Client". I have provided below a download link to test it. when testing, if you get the login page that means it's working.

http://www.ooredoo.qa/portal/OoredooQatar/billxpress

I have allowed ISP's URL: ocbc.ooredoo.qa and ooredoo.com with this format  ^([A-Za-z0-9.-]*\.)?ocbc\.ooredoo\.qa\.?/ & ^([A-Za-z0-9.-]*\.)?ooredoo\.qa\.?/ in new exception list and also allowed them from URL Group. still, it reverts back with an error message before the login page. I have tested without a firewall network and it works fine, the login window simply comes up. it is blocking from the firewall but could not find where it is blocking from. could someone please help me to find the fix for it.

Thanks

Bibash Saud



This thread was automatically locked due to age.
  • 0

    Can you screenshot the error you have and post it here?  (Drag the screenshot into the text window, don't link it).  I clicked on the link, changing nothing in my UTM and it worked.

  • 0 in reply to Amodin

    Hi Amodin,

    Thanks for your reply.

    Please install the app then open it from the desktop. when I try it gives me the below error message.

  • 0 in reply to HUSQA

    There are two places I would check:

    1. Windows Firewall.  Disable it, then try.  If it works, it's at the PC level, and you know where to look.  If not, go to #2.

    2. Log into the UTM, and open your Web Filtering Live log.  Once both of your live logs are open, try to open the app.  The Web Filtering log will show you if you have another site that is being blocked that may be in addition to the two sites you unblocked.  You will often have third-party sites that are required to be connected for some applications and they will generate an error.

    If you aren't seeing anything being blocked in Web Filtering, I would check your Network Protection Live log and see if there is a port that is being blocked.  Make sure you know your PC IP address so you know what traffic to look at.

  • 0 in reply to Amodin

    Hi Amodin,

    Good Day!

    I have disabled it but still the same error message. for sure this is not the windows firewall blocking it.

    Sorry, I could find the exact log setting called "Web Filtering Live log" in the firewall. is that the log viewer as below screen?

    Checking these report and add filter source IP as my system IP, it doesn't show any blocked address or IP when i open the Billexpress Client.

    it worked fine with a open network (without Firewall).

  • 0

    Hi Bibash and welcome to the UTM Community!

    Yes, UTM, not XG, so I've moved your thread to the XG Firewall Community where you'll find a lot of folks with answers for yourquery.

    Cheers - Bob

  • 0 in reply to HUSQA

    Can you show us your Firewall Rule, which is used from Client to Internet(WAN)? 

  • 0

    Hello Husqa,

    Additionally to what has been suggested, please confirm if you’re using DPI or Web Proxy? Please share what is selected in the Firewall Rule that is passing this traffic.

    Regards,

  • 0 in reply to LuCar Toni

    Hi LuCar,

    Thanks for the reply.

    Sorry for the delay in reply due to the time difference between us. is this the one you want to check? please let me know if you need any additional details, please.

  • 0 in reply to emmosophos

    Thank you for reply. Sorry for the delay in reply due the time difference between us. Please find below screenshot.