Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 2 subscribers
  • Views 19502 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

User Portal - access not possible from internal lan

AndiS
We can connect to the user portal from the WAN.The attempt to connect from the internal LAN is not working

The firewall log shows: 
13:54:11 WebAdmin connection attempt TCP 188.11.12.23 : 49176  → 188.11.12.23 : 443  [SYN] len=60 ttl=64 tos=0x00 srcmac=0:0:0:0:0:0 

13:54:12 WebAdmin connection attempt TCP 188.11.12.23 : 49176  → 188.11.12.23 : 443  [SYN] len=60 ttl=64 tos=0x00 srcmac=0:0:0:0:0:0
 


Webadmin is contigured to port 4444


The user portal definition:

Network settings:
Listen Address: The WAN interface address 188.11.12.23
Port: 443
 

We run the standard proxy on the host 188.11.12.23. The web filtering log shows: 

2013:06:06-15:49:43 vpn03-2 httpproxy[14835]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.71.200" dstip="188.11.12.23" user="yyyy" statuscode="504" cached="0" profile="REF_HttProAssurfhttp (A_Surf_Https-Scan-Test)" filteraction="REF_HttCffSurffree (Surf_Free)" size="2411" request="0xec691e8" url="vpn03.domain.de/.../A" category="105" reputation="neutral" categoryname="Business"



The packet is received by the proxy, but not forwarded to the external WAN interface. is it necessary to define some nat rules ?


This thread was automatically locked due to age.
Parents
  • 0
    Hi Balfson,

    thank you for your quick answer. Until now i didn't know, that there is a difference between Live-Log und the "Normal"-Log. Quite don't understand =D

    But here is my log:

    Live-Log:
    08:25:07  WebAdmin-Verbindungsversuch  TCP 
    192.168.2.254  :  24993
    → 
    192.168.2.254  :  443

    Normal-Log:
    [SYN]  len=60  ttl=64  tos=0x00  srcmac=0:0:0:0:0:0

    2013:11:13-08:25:07 utm-1 ulogd[24290]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60005" outitf="lo" srcmac="0:0:0:0:0:0" srcip="192.168.2.254" dstip="192.168.2.254" proto="6" length="60" tos="0x00" prec="0x00" ttl="64" srcport="24993" dstport="443" tcpflags="SYN" 


    Hint [:)] My UTM is 192.168.2.254
Reply
  • 0
    Hi Balfson,

    thank you for your quick answer. Until now i didn't know, that there is a difference between Live-Log und the "Normal"-Log. Quite don't understand =D

    But here is my log:

    Live-Log:
    08:25:07  WebAdmin-Verbindungsversuch  TCP 
    192.168.2.254  :  24993
    → 
    192.168.2.254  :  443

    Normal-Log:
    [SYN]  len=60  ttl=64  tos=0x00  srcmac=0:0:0:0:0:0

    2013:11:13-08:25:07 utm-1 ulogd[24290]: id="2001" severity="info" sys="SecureNet" sub="packetfilter" name="Packet dropped" action="drop" fwrule="60005" outitf="lo" srcmac="0:0:0:0:0:0" srcip="192.168.2.254" dstip="192.168.2.254" proto="6" length="60" tos="0x00" prec="0x00" ttl="64" srcport="24993" dstport="443" tcpflags="SYN" 


    Hint [:)] My UTM is 192.168.2.254
Children
No Data