Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 23 replies
  • Subscribers 0 subscribers
  • Views 15181 views
  • Users 0 members are here
Options
Suggested

[9.195][BUG] 2 websites does not open via transparent web proxy

Sascha Paris
The two websites Migros - Ein M besser and LeShop.ch, the leading Swiss online supermarket can not be opened via web proxy...will give a "Connection to server timed out". Bypassing the proxy opens the website without issues. 


2014:02:19-19:43:14 asg01 httpproxy[16705]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.16.101" dstip="146.67.140.135" user="" statuscode="504" cached="0" profile="REF_HttProContaLanclNetwo7 (SOPHOS)" filteraction="REF_HttCffSophos (Sophos)" size="2548" request="0x1501b320" url="www.migros.ch/.../Merchandising"

2014:02:19-19:43:18 asg01 httpproxy[16705]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.16.101" dstip="146.67.253.12" user="" statuscode="504" cached="0" profile="REF_HttProContaLanclNetwo7 (SOPHOS)" filteraction="REF_HttCffSophos (Sophos)" size="2559" request="0x1511c220" url="www.leshop.ch/favicon.ico" exceptions="" error="Connection to server timed out" authtime="0" dnstime="393" cattime="45211" avscantime="0" fullreqtime="60824028" device="0" auth="0" country="Switzerland" application="http" category="136" reputation="neutral" categoryname="Online Shopping"


[H]
Parents
  • 0
    If you have enabled Explicit Congestion Notification (ECN) support in your advanced QOS settings, you will experience this problem when attempting to connect to some peers that don't support ECN bits being set. The SYN packet will be dropped in this case.

    Please try disabling Explicit Congestion Notification (ECN) support (Interfaces & Routing -> Quality of Service (QoS) -> Advanced) as a workaround.

    Peter Gale | Director, Software Development, NSG
    peter.gale@sophos.com

  • 0 in reply to -pete-
    Hi Peter,
    yes, this fixed the issue [:)] Many thanks.
    regards
    mod
    If you have enabled Explicit Congestion Notification (ECN) support in your advanced QOS settings, you will experience this problem when attempting to connect to some peers that don't support ECN bits being set. The SYN packet will be dropped in this case.

    Please try disabling Explicit Congestion Notification (ECN) support (Interfaces & Routing -> Quality of Service (QoS) -> Advanced) as a workaround.
Reply
  • 0 in reply to -pete-
    Hi Peter,
    yes, this fixed the issue [:)] Many thanks.
    regards
    mod
    If you have enabled Explicit Congestion Notification (ECN) support in your advanced QOS settings, you will experience this problem when attempting to connect to some peers that don't support ECN bits being set. The SYN packet will be dropped in this case.

    Please try disabling Explicit Congestion Notification (ECN) support (Interfaces & Routing -> Quality of Service (QoS) -> Advanced) as a workaround.
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?