[7.950][NOTABUG][CLOSED] Target service not allowed

Hi All

I am getting the following error on the HTTP proxy. Shouldn't that traffic being using the ftp service instead?

2010:06:22-20:26:57 **** httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="HEAD" srcip="192.168.*.*" dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="0" time="0 ms" request="0xa740a28" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21" exceptions="" error="Target service not allowed"

Thanks

Parents

0 wingman over 14 years ago

strange.I am using a wpad file and standard proxy and ftp enabled(trasparent).I've just tried to manually update and it was successful but i still got the errors below.The .pac file doesn't contain any ftp or specific to the below hosts

2010:06:22-22:06:51 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="HEAD" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="0" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21" exceptions="" error="Target service not allowed"
2010:06:22-22:06:51 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="4683" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21/.../SiteStat.xml" exceptions="" error="Target service not allowed"
2010:06:22-22:06:54 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="HEAD" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="0" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21" exceptions="" error="Target service not allowed"
2010:06:22-22:06:55 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="4749" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21/.../PkgCatalog.z" exceptions="" error="Target service not allowed"
2010:06:22-22:06:57 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="HEAD" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="0" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21" exceptions="" error="Target service not allowed"
2010:06:22-22:06:57 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="4743" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21/.../PkgCatalog.z" exceptions="" error="Target service not allowed"
2010:06:22-22:07:00 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="HEAD" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="0" time="0 ms" request="0xa95b6e0" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21" exceptions="" error="Target service not allowed"
2010:06:22-22:07:00 ****  httpproxy[5050]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.*.* " dstip="" user="" statuscode="403" cached="0" profile="REF_gTJkfSrJvf (AD Users)" filteraction="REF_PAZIrYpGAv (Local Users)" size="4743" time="0 ms" request="0xa92fa18" url="anonymous:CommonUpdater@McAfeeB2B.com@ftp.nai.com:21/.../PkgCatalog.z" exceptions="" error="Target service not allowed"

0 BrucekConvergent over 14 years ago in reply to wingman

Is the FTP protocol in the allowed services list? If so, then you may have a bug here... I'll check it out myself later this evening too. I don't use a .pac file, but that shouldn't make any difference in this case.

CTO, Convergent Information Security Solutions, LLC

https://www.convergesecurity.com

Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 BrucekConvergent over 14 years ago in reply to wingman

Is the FTP protocol in the allowed services list? If so, then you may have a bug here... I'll check it out myself later this evening too. I don't use a .pac file, but that shouldn't make any difference in this case.

CTO, Convergent Information Security Solutions, LLC

https://www.convergesecurity.com

Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries. Use the advice given at your own risk.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data