Thread Info
  • State Not Answered
  • Replies 3 replies
  • Subscribers 0 subscribers
  • Views 900 views
  • Users 0 members are here
Options
Suggested

[7.891][BUG][OPEN] HTTPS scanning error

RFCat_vk_01
Hi,
I have been trying to workout why MSN live won't work with https scanning enabled, yet quite happily works without it.
The following error occurred while watching the http/s log (content filter) and trying to connect with msn.

Ian M

2010:03:20-18:49:29 fw1-on-house httpproxy[8673]:  id="0003"  severity="info" sys="SecureWeb" sub="http" request="0xf0642700"  function="ssl_log_errors" file="ssl.c" line="40" message="C:  8673:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake  failure:s3_pkt.c:838:

Looks like it isn't an issue, no comments.

I have found if I restart and attempt to login I get the error. If I disable https scanning, login to msn, start https scanning, signout of msn, then sign in I don't get the error.
  • 0 
    Astaro Beta Report
    --------------------------------
    Version: 7.891
    Type: BUG
    State: OPEN
    Reporter: RFCat_vk
    Contributor:  
    MantisID: 
    Target version: 
    Fixed in version: 
    --------------------------------

  • 0
    same Problem on my installation. I have multiple https sites which are blocked. 
    Test through a 7.404 works perfect.

    Log entgries:

    2010:04:01-22:06:05 home-asg httpproxy[9583]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.178.31" dstip="85.183.249.137" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="43" time="127 ms" request="0xa65a2b18" url="www.etracker.de/cnt_links.php
    2010:04:01-22:06:09 home-asg httpproxy[9583]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.178.31" dstip="85.183.249.137" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="43" time="130 ms" request="0xa65a2b18" url="www.etracker.de/cnt_links.php
    2010:04:01-22:06:10 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05196b0" function="ssl_connect" file="ssl.c" line="961" message="ssl_handshake: Connection timed out"
    2010:04:01-22:06:10 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05196b0" function="ssl_log_errors" file="ssl.c" line="40" message="C: 9583:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number:s3_pkt.c:284:
    2010:04:01-22:06:10 home-asg httpproxy[9583]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.178.31" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" time="0 ms" request="0xb05196b0" url="188.17.220.243" exceptions="" error="Connection timed out"
    2010:04:01-22:06:13 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05192f0" function="ssl_log_errors" file="ssl.c" line="40" message="S: 9583:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:s23_clnt.c:585:
    2010:04:01-22:06:13 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05192f0" function="ssl_connect" file="ssl.c" line="961" message="ssl_handshake: Input/output error"
    2010:04:01-22:06:13 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05192f0" function="ssl_log_errors" file="ssl.c" line="40" message="C: 9583:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number:s3_pkt.c:284:
    2010:04:01-22:06:13 home-asg httpproxy[9583]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.178.31" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" time="0 ms" request="0xb05192f0" url="91.89.121.2" exceptions="" error="Input/output error"
    2010:04:01-22:06:14 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05ac610" function="ssl_connect" file="ssl.c" line="961" message="ssl_handshake: Connection refused"
    2010:04:01-22:06:14 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xb05ac610" function="ssl_log_errors" file="ssl.c" line="40" message="C: 9583:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number:s3_pkt.c:284:
    2010:04:01-22:06:14 home-asg httpproxy[9583]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.178.31" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" time="0 ms" request="0xb05ac610" url="188.187.10.30" exceptions="" error="Connection refused"
    2010:04:01-22:06:14 home-asg httpproxy[9583]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="CONNECT" srcip="192.168.178.31" dstip="" user="" statuscode="400" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="4564" time="0 ms" request="0xa6573260" url="91.89.121.2:443" exceptions="" error="Received invalid request from client"
    2010:04:01-22:06:18 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xa6521d88" function="ssl_connect" file="ssl.c" line="961" message="ssl_handshake: Connection timed out"
    2010:04:01-22:06:18 home-asg httpproxy[9583]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0xa6521d88" function="ssl_log_errors" file="ssl.c" line="40" message="C: 9583:error:1408F10B:SSL routines:SSL3_GET_RECORD:wrong version number:s3_pkt.c:284:
    2010:04:01-22:06:18 home-asg httpproxy[9583]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.178.31" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" time="0 ms" request="0xa6521d88" url="95.150.82.138" exceptions="" error="Connection timed out"
    2010:04:01-22:06:23 home-asg httpproxy[9583]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.178.31" dstip="85.183.249.137" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="43" time="118 ms" request="0xa65a2b18" url="www.etracker.de/cnt_links.php
    2010:04:01-22:07:00 home-asg httpproxy[9583]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.178.31" dstip="85.183.249.137" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="43" time="167 ms" request="0xa65a2b18" url="www.etracker.de/cnt_links.php
    2010:04:01-22:07:04 home-asg httpproxy[9583]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.178.31" dstip="85.183.249.137" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="43" time="118 ms" request="0xa65a2b18" url="www.etracker.de/cnt_links.php
    2010:04:01-22:07:07 home-asg httpproxy[9583]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.178.31" dstip="" user="" statuscode="403" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="6342" time="0 ms" request="0xa6521d88" url="193.227.192.229" exceptions="" error="unable to get local issuer certificate"
  • 0
    sorry - i forgot, i have the problem with 7.900 !!!!
Cookie Information Banner