I have a user that needed internet access with no proxy server. All of my interfaces have been using ASL's web proxy so on one of the interfaces I removed the network from the HTTP Proxy 'allowed networks' and added a line in the Packet Filter to allow web traffic.
This failed to work: the user was getting regular dns traffic from the dns proxy, but no http. I changed the rule to allow All traffic from this network to Any. Still no web traffic.
I rebooted the ASL 5.2 machine to see if that would do it.
No web traffic.
So I sit with one entire network theoretically wide open to the internet (outbound) and I cannot get a http connection to www.yahoo.com or google for that matter.
There's no indication from the logs what's going on. The packet filter shows port 80 traffic making it from this network outbound, but this seems to have no effect on the functioning of the web browser.
I connected my machine to see if it was machine dependent... nope. I can't get web traffic to work either.
Finally the user left the environment to go to a place where web traffic will work leaving me looking like a fool.
So my question is this: What happened?
Web traffic was working fine through the http proxy (transparent). When I turned this off and allowed all traffic via packet filterters...(the first rule in the list)... nothing worked.
Can anyone tell me what might have happened?
Thanks
This thread was automatically locked due to age.
