Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 13 replies
  • Subscribers 0 subscribers
  • Views 7620 views
  • Users 0 members are here
Options
Suggested

astaro.org certificate

teched_01
The current astaro.org wildcard certificate will expire in a few hours.

SSL Server Test: astaro.org (Powered by Qualys SSL Labs)


Server Key and Certificate #1
Common names *.astaro.org
Alternative names *.astaro.org astaro.org
Prefix handling Both (with and without WWW)
Valid from Mon Mar 24 21:38:38 PDT 2014
Valid until Fri Mar 27 19:55:08 PDT 2015 (expires in 10 hours and 31 minutes)
Key RSA 2048 bits (e 65537)
Weak key (Debian) No
Issuer RapidSSL CA


Also, administrator(s) please include any intermediate CA certificates required by a newer certificate.
Parents
  • 0
    With the new cert I get "Unable to get local issuer certificate" with SSL scanning enabled:


    What's wrong here?

    Webfilter log entries: 
    2015:03:31-12:11:35 vpn-1 httpproxy[5935]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="" dstip="85.115.22.9" user="" ad_domain="" statuscode="302" cached="0" profile="REF_HttProInternalde (Internal_Default)" filteraction="REF_HttCffInterConteFilte (Internal content filter action)" size="235" request="0xabb8000" url="www.astaro.org/.../html"

    2015:03:31-12:11:35 vpn-1 httpproxy[5935]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="" dstip="85.115.22.9" user="" ad_domain="" statuscode="403" cached="0" profile="REF_HttProInternalde (Internal_Default)" filteraction="REF_HttCffInterConteFilte (Internal content filter action)" size="3903" request="0xe0a22000" url="www.astaro.org/.../Business Forums"

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Reply
  • 0
    With the new cert I get "Unable to get local issuer certificate" with SSL scanning enabled:


    What's wrong here?

    Webfilter log entries: 
    2015:03:31-12:11:35 vpn-1 httpproxy[5935]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="" dstip="85.115.22.9" user="" ad_domain="" statuscode="302" cached="0" profile="REF_HttProInternalde (Internal_Default)" filteraction="REF_HttCffInterConteFilte (Internal content filter action)" size="235" request="0xabb8000" url="www.astaro.org/.../html"

    2015:03:31-12:11:35 vpn-1 httpproxy[5935]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="" dstip="85.115.22.9" user="" ad_domain="" statuscode="403" cached="0" profile="REF_HttProInternalde (Internal_Default)" filteraction="REF_HttCffInterConteFilte (Internal content filter action)" size="3903" request="0xe0a22000" url="www.astaro.org/.../Business Forums"

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Children
No Data
Unfiltered HTML