Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 1 reply
  • Subscribers 5 subscribers
  • Views 3169 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Bug Certificate for End-User Pages passthrough.subdomain.domain.com.au

StealthyM

Hi all,

 

So I installed our wildcard certificate for our Sophos UTM, and applied it to the Web Protection  > Filtering Options > Misc "Certificate for End-User Pages"

 

I have a warning set when files that have an extension like .exe is attempted to be downloaded. As soon as I click proceed, it attempts to take me to passthrough.subdomain.domain.com and it fails with DNS error (site not found). Of course this does not exist.

 

I am not sure if its just wild card certificates causing this issue, or if its any certificate (I assume it would be).



This thread was automatically locked due to age.
Parents
  • +1

    I just looked through help and it looks like I must have a sub domain for pass-through

     

    The Hostname specified is the base domain for the certificate you are using. The UTM will then prepend passthrough. or passthrough6. to that domain. The certificate must be valid for passthrough (and passthrough6) as a Common Name, Subject Alternate Name, or most commonly as a wildcard certificate, so you can prepend any host at the domain. In addition, you must set up DNS for passthrough and passthrough6 to external IP addresses. If you use the UTM as your DNS server this is done automatically. By default, UTM uses the IP address 213.144.15.19. If you are using an alternate DNS server you must create those entries there.

Reply
  • +1

    I just looked through help and it looks like I must have a sub domain for pass-through

     

    The Hostname specified is the base domain for the certificate you are using. The UTM will then prepend passthrough. or passthrough6. to that domain. The certificate must be valid for passthrough (and passthrough6) as a Common Name, Subject Alternate Name, or most commonly as a wildcard certificate, so you can prepend any host at the domain. In addition, you must set up DNS for passthrough and passthrough6 to external IP addresses. If you use the UTM as your DNS server this is done automatically. By default, UTM uses the IP address 213.144.15.19. If you are using an alternate DNS server you must create those entries there.

Children
No Data