Hi,
We have been using Astaro now for over 1yr, and up until this point I have been able to taylor Astaro to our needs. Recenty an external website our company accesses updated the site and now requires 9080-9081 to be open (ex. http://website.com:9080). I believe they host the site on an IBM using WebSphere, though I am not certain.
I have tried the following to resolve this issue:
1. Call to ISP to verify ports open, confirms ports open
2. Disable Intrusion Detection *Fail*
3. Packet Filter Rule (#1) to allow full logged access to entire Destination CIDR Network Range, any port *Fail*
4. Access site by IP (ex. http://123.456.789) *Fail*
5. Access site by name (ex. http://website.com:9080) *Fail*
6. Disable Windows Firewall *Fail*
7. Try from different pc's *Fail*
8. Disable Firewall on PC *Fail*
9. Packet Filter rule to permit traffic inbound & outbound to & from CIDR range
10. Masq rule to permit traffic inbound & outbound to & from CIDR range
11. Review Packet Filter Live Log, IDS Log - No violations
12. Try using Astaro Proxy *Fail*
13. Add ports 9080 & 9081 to Proxy *Fail*
14. Off Proxy *Fail*
15. Access other websites *Success* (Astaro in production throughout as I have been working on this for 5 days now, no connectivity issues except this one)
16. ByPass Astaro, directly connect to router *Success* - by host name, also ip address. This confirms Astaro is the problem
17. Disable & Bypass DNS Proxy *Fail*
18. Packet filter rule to permit any to any on ports 9080-9081 *Fail*
Astaro is blocking ports 9080-9081, though the log files do not indicate this. Full logging is enabled, and logging for all rules.
I also queried all traffic from local pc & destination, Astaro logs show traffic passing through. I have confirmed for certain Astaro is the problem, but look for suggestions & any help to resolve.
Any help is appreciated,
Alan
This thread was automatically locked due to age.
