Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 3 subscribers
  • Views 6487 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Browsing to: https://myutm.sophos.com or https://ebay.com

MichaelZ1

Hi there,


First time poster. Recently I have implemented a Sophos UTM VA on Hyper-V 2012 R2 in a lab.. Recently I have started noticing that certain sites (ebay.com.au) are not currently loading within the browser. Would return a sophos website timeout error. In an effort to troubleshoot the problem, I have:

- Re-installed the UTM OS - Version: 9.403-4

- Put a bare bone firewall rules (Any Host - Any Service- Any Dest)

- NATted it.

- DNS Forwarder

- DynDNS Setup.

- Enabled IPS. (All Features)

- (To Test the ISP) Plugged a laptop directly into the NTD (AUS NBN) - No Problems.

- NOTE: Web Filtering is Disabled.

I can browse all other sites, and I can nslookup these hosts. I have checked the Firewall Log, which is showing nothing. The IPS log shows nothing. I performed a tcpdump on the interface and i can see the DNS traffic.

Out of idea's and Stumped.

Michael.



This thread was automatically locked due to age.
Parents
  • 0

    Hi Michael,

    Try changing the DNS forwarders, what is the present DNS settings on UTM and the endpoint? Also, direct the ISP line on a system (bypassing UTM) and verify if the website resolves(clearing the browser cache).

    Thanks

  • 0 in reply to sachingurung

    Hi sachingurung,

    Thank you for your prompt response. My DNS configuration at the moment is:


    Client:

       Primary DNS: 8.8.8.8 (Bypassing the UTM)

       Secondary DNS: 8.8.4.4 (Bypassing the UTM)

    UTM:

      Allowed Networks for UTM DNS Resolver: (None)

      Forwarders: Google DNS (Group)

               8.8.8.8 and 8.8.4.4

    No Request Routing

    DyDNS is Configured.

    Bypassing the UTM ebay and myutm works fine.

    Kind Regards,

    Michael.

Reply
  • 0 in reply to sachingurung

    Hi sachingurung,

    Thank you for your prompt response. My DNS configuration at the moment is:


    Client:

       Primary DNS: 8.8.8.8 (Bypassing the UTM)

       Secondary DNS: 8.8.4.4 (Bypassing the UTM)

    UTM:

      Allowed Networks for UTM DNS Resolver: (None)

      Forwarders: Google DNS (Group)

               8.8.8.8 and 8.8.4.4

    No Request Routing

    DyDNS is Configured.

    Bypassing the UTM ebay and myutm works fine.

    Kind Regards,

    Michael.

Children