Hi all,
I'm now using the proxy with the users authenticated by a radius server in the internal LAN. This works fine. When I create a surf protection rule for one categorie,internal lan and no user specified, it is not possible anymore to connect to any website. It looks like that this simple protection rule blocks everything. I get the user/password dialog from the proxy and the user is authenticated by radius but then: nothing!
If I disable the protection rule everthing works fine again. I
I understand that ASL is checking the requested URL against a database somewhere (not on the ASL box). Therefore the following question: should I add extra packet filter rules to allow ASL check the URL to the database? Should I specify users in the users field of the surf protection rule although I am using Radius?
Details about the configuration:
Internal Lan - ASL - external, also DMZ connected to the ASL box. ASL is configured to work with a parent proxy.
Packet filter rule active to allow internal clients to surf the external internet. Without the surf protection rule everything works fine. I've read the 'known issue's' doc and the Surf_protection_user_authentication pdf doc. Do I miss something??
Regards,
Jan
This thread was automatically locked due to age.
