LOGIN PAGE FOR A WEBSERVER CONFIGURED IN WEBAPPLICATION FIREWALL DOES NOT WORK

Please tell us more from your problem.

- you don't see the initial logon page?

- you don't see the page after successfull logon?

- you got a message?

- redirect before/after logon is not working?

... looks as the request redirection send the user to a private IP. This URL is send to users browser. This browser must reach the URL.

Hi Dirk, thanks for the reply, answering your questions, I don't see the initial logon page, which is suppose to be the WAF logon page before enter the website. When I browse the address I go directly to the web page, withouut asking for any user and password.

An immediate guess is that you have a NAT rule connecting traffic directory to your web server, bypassing UTM.

WAF is a standard-mode proxy:   Clients connect to the WAF on a UTM address, UTM creates a slave session between itself and the webserver.   External clients should not have any direct access to the back-end webserver.   

For my attempt to explain standard and transparent mode, and which ports are used for each, see this post:

https://community.sophos.com/products/unified-threat-management/f/general-discussion/100848/how-to-understand-utm-port-usage

As stated by DouglasFoster ...

Seems you have WAF Settings for your webserver and DNAT at the same time.

With WAF you can't have DNAT to these server, because DNAT is used before WAF.

Hi Douglas, many thanks to you, that just solve the problem. I just disabled the DNAT rule and the WAF works fine.

It seems to me to be an noob missunderstanding that I made, but I am glad to all of you experts.

Olá Antonio,

Dirk and Doug got you on track.  You also might want to be aware of #2 in Rulz (last updated 2019-04-17).

Cheers - Bob

Olá Antonio,

Dirk and Doug got you on track.  You also might want to be aware of #2 in Rulz (last updated 2019-04-17).

Cheers - Bob