Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 12 replies
  • Subscribers 0 subscribers
  • Views 4185 views
  • Users 0 members are here
Options
Suggested

[9.165][BUG] WAF - site path routing - URL gets scrambled

scorpionking
I seem to have a problem with one of my site path routing sites...

   
(The 3rd screenshot shows the real server for the site path.)

When I type "secure.mydomain.com/sub_site" in the browser, I get an error "site not found".
The URL gets scrambled like this:
secure.mydomain.com^/(_login|_logout|_form|))sub_site/

 is the configured Realm of the first Reverse Authentication profile.

I do NOT use reverse authentication for this site path!

This is only happening with this site path, might be the underscore!?

The only relevant line in the WAF log looks like this:
2013:11:07-15:22:20 vpn reverseproxy: srcip="" localip="" size="199" user="-" host="" method="GET" statuscode="302" reason="-" extra="-" exceptions="-" time="18867" url="/sub_site" server="secure.mydomain.com" referer="-" cookie="JSESSIONID=1waf7jw6nitts1157bl23ixsso; _cookie=BQS9gkeyEeOw2YNglQNkjpRo3jVDNgmp1oH3xY3Trl1A+/AnmraXH2QhoHhWKs3PB1V3hk6LNFQE7b6VBIM2o/n23E1EQafS+2xlXJGu/C/eK1Uyoe/ACH1l1J2eSxNO; 508d626f7872f=51k3rolaauurptdtfajo8j5276; PHPSESSID=gmcl11cv5v0ufcjcuhma4kfvr2" set-cookie="-"


What's going wrong here?
Parents
  • 0
    I forgot to say: even if I select "No Profile" in the Virtual Server, the URL gets scrambled. So it doesn't depend on the firewall profile...

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Reply
  • 0
    I forgot to say: even if I select "No Profile" in the Virtual Server, the URL gets scrambled. So it doesn't depend on the firewall profile...

    ----------
    Sophos user, admin and reseller.
    Private Setup:

    • XG: HPE DL20 Gen9 (Core i3-7300, 8GB RAM, 120GB SSD) | XG 18.0 (Home License) with: Web Protection, Site-to-Site-VPN (IPSec, RED-Tunnel), Remote Access (SSL, HTML5)
    • UTM: 2 vCPUs, 2GB RAM, 50GB vHDD, 2 vNICs on vServer (KVM) | UTM 9.7 (Home License) with: Email Protection, Webserver Protection, RED-Tunnel (server)
Children
No Data
Unfiltered HTML