Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 23 replies
  • Subscribers 0 subscribers
  • Views 15111 views
  • Users 0 members are here
Options
Suggested

[9.195][BUG] 2 websites does not open via transparent web proxy

Sascha Paris
The two websites Migros - Ein M besser and LeShop.ch, the leading Swiss online supermarket can not be opened via web proxy...will give a "Connection to server timed out". Bypassing the proxy opens the website without issues. 


2014:02:19-19:43:14 asg01 httpproxy[16705]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.16.101" dstip="146.67.140.135" user="" statuscode="504" cached="0" profile="REF_HttProContaLanclNetwo7 (SOPHOS)" filteraction="REF_HttCffSophos (Sophos)" size="2548" request="0x1501b320" url="www.migros.ch/.../Merchandising"

2014:02:19-19:43:18 asg01 httpproxy[16705]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.16.101" dstip="146.67.253.12" user="" statuscode="504" cached="0" profile="REF_HttProContaLanclNetwo7 (SOPHOS)" filteraction="REF_HttCffSophos (Sophos)" size="2559" request="0x1511c220" url="www.leshop.ch/favicon.ico" exceptions="" error="Connection to server timed out" authtime="0" dnstime="393" cattime="45211" avscantime="0" fullreqtime="60824028" device="0" auth="0" country="Switzerland" application="http" category="136" reputation="neutral" categoryname="Online Shopping"


[H]
Parents
  • 0
    I'm doing transparent and not having an issue.  Perhaps you could specify more details. 

    2014:02:19-19:35:23 utm-g1 httpproxy[5544]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.21.4.19" dstip="146.67.140.135" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="16553" request="0xd538660" url="www.migros.ch/.../html" 

    2014:02:19-19:37:09 utm-g1 httpproxy[5544]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.21.4.19" dstip="146.67.253.12" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="14430" request="0xd50eee0" url="www.leshop.ch/.../html" 
Reply
  • 0
    I'm doing transparent and not having an issue.  Perhaps you could specify more details. 

    2014:02:19-19:35:23 utm-g1 httpproxy[5544]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.21.4.19" dstip="146.67.140.135" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="16553" request="0xd538660" url="www.migros.ch/.../html" 

    2014:02:19-19:37:09 utm-g1 httpproxy[5544]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.21.4.19" dstip="146.67.253.12" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="14430" request="0xd50eee0" url="www.leshop.ch/.../html" 
Children
  • 0 in reply to geneC
    And they both work here as well, no issues in Australia.

    AD SSO in Transparent Mode with URL Filtering Only on SSL.

    However, I do notice that your log output has an additional field country="Switzerland"; do you have any country blocking?  but I guess you don't seeing as everything works if you bypass the www filter.

    id=0002 means a general failure with client IP, USERNAME, URL, size of request or method...  and 502 error is "Bad Gateway"... hmmm, the plot thickens.. 


    2014:02:20-14:21:30 utm-work httpproxy[5571]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.5.20" dstip="146.67.253.12" user="SOPHOS\Administrator" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (AD SSO for WORKSTATION)" filteraction="REF_HttCffAaronPermiMost (Aaron permit Most)" size="62571" request="0xf9e8660" url="www.leshop.ch/.../html" application="http"

    2014:02:20-14:21:31 utm-work httpproxy[5571]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.5.20" dstip="146.67.140.135" user="SOPHOS\Administrator" statuscode="200" cached="0" profile="REF_HttProContaInterNetwo (AD SSO for WORKSTATION)" filteraction="REF_HttCffAaronPermiMost (Aaron permit Most)" size="107956" request="0xa1529dc0" url="www.migros.ch/.../html" application="http"

    ==

    When in doubt, Script it out.

Unfiltered HTML