Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 13 replies
  • Subscribers 1 subscriber
  • Views 2076 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HTTP Profiles not working since 7.304 upgrade

BigBen
For some reason since we upgraded to 7.304 the HTTP Profiles have stopped working. 

All http traffic is in transparent mode. If I disable the HTTP Proxy then no web traffic gets through (blocked via packet filter).

The standard filter set works. (Blocking ****ography and such)

However I have several HTTP Profiles setup for internal blocks of IPs set to always active.  These Profiles have a much more strict set of filters on them. Their fall back is to the standard filter set. 

Since the upgrade to 7.3.04 though, these IPS can get to all sites except for those in the standard filters.

Any thoughts?
Thank you,
Ben


This thread was automatically locked due to age.
Parents
  • 0
    Same problem here. 
    After upgrading to 7.304 the HTTP profiles no longer work, only standard filters.
    It seems that Astaro has something to fix ...
  • 0 in reply to tulip913
    So, it worked fine under 7.303, or did you upgrade from 7.202?  Were these automatic upgrades, or reloads from scratch?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Everything worked fine under 7.302 (I skipped 7.303) and it was a usual "semi-automatic" upgrade.
    The ASG downloads it automatically but I have to install it by clicking the update-button.
    I wonder if I should go back to 7.302. Can I trust those backups ? I never tried it before.
  • 0 in reply to tulip913
    That just doesn't sound right.  Do you have a maintenance contract that gets you support from Astaro?  If so, I'd suggest that you submit a support request.

    About the only thing I might try would be to disable then enable the Proxy to see if that causes it to reset itself.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    I have to agree with Bob - first try restarting the ASG.

    Greets
    Andi
  • 0 in reply to aglauser
    I already did that before posting here.
    I completely rebooted the ASG. No change.
  • 0 in reply to tulip913
    Also no change with disable - enable?
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to tulip913
    It worked fine under 7.303. I did a normal upgrade to 7.304. Watching what is happening, it seems that when a pattern update is taking place then the filters stop all together. But once the update is done the filters start working again..

    I have submitted a ticket. It was just closed and never looked at....
  • 0 in reply to BigBen
    I hadn't been using HTTP Profiles before 7.304, but have just begin using them. Just one profile. To apply filtering for a specific internal host (kids computer). They seem to be working well.
    But my daily executive report shows all zero values in the SMTP/Mail section. I hadn't made any changes to the SMTP proxy, or to any of the reporting options. Just HTTP Profiles.
    I've rebooted ASG so we'll see what happens tomorrow.

    Under Reporting-->Web Security, nothing shows up in the "Blocked Usage" tab. I know I had blocks during testing. Why do they not show up here? Where else would I view blocked sites?

    Under Reporting-->Mail Security, nothing shows up under "MAil Usage" or "Blocked Mail"

    Lots of errors in my system logs.
    2008:11:12-00:32:02 (none) postgres[20433]: [4-1] ERROR:  could not open relation 16969/16519/16534: No such file or directory
    2008:11:12-00:32:02 (none) postgres[20433]: [4-2] STATEMENT:  SELECT ip2country(ip_saddr) as src_country,int2ip(ip_saddr) as src_ip,transform_common(CAST(sum(flow_count) AS
    2008:11:12-00:32:02 (none) postgres[20433]: [4-3]  BIGINT)) as cnt_flow_str,sum(flow_count) as cnt_flow_int,transform_SI(CAST(sum(raw_in_pktlen+raw_out_pktlen) AS BIGINT),1) as
    2008:11:12-00:32:02 (none) postgres[20433]: [4-4]  sum_tra_total_str,sum(raw_in_pktlen+raw_out_pktlen) as
    2008:11:12-00:32:02 (none) postgres[20433]: [4-5]  sum_tra_total_int,transform_common(CAST(sum(raw_in_pktcount+raw_out_pktcount) AS BIGINT)) as
    2008:11:12-00:32:02 (none) postgres[20433]: [4-6]  sum_pktcount_str,sum(raw_in_pktcount+raw_out_pktcount) as sum_pktcount_int FROM accounting_data WHERE dayabs = 733358 GROUP BY
    2008:11:12-00:32:02 (none) postgres[20433]: [4-7]  ip_saddr ORDER BY sum_tra_total_int DESC,cnt_flow_int DESC

    I just checked... This type of error goes back to Nov-5 2008. Nothing like this before that.

    Thoughts?
  • 0 in reply to JimmyM
    JimmyM, your problem sounds like a well-know one: your PostgreSQL reporting database is broken.  Search on the forums for instructions on deleting the database files so that the Astaro can rebuild them.  The only downside is that you will lose existing logfiles, so be sure to copy off whatever you need.  If you have a lot of them, search here for 'WinSCP'.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to JimmyM
    JimmyM, your problem sounds like a well-know one: your PostgreSQL reporting database is broken.  Search on the forums for instructions on deleting the database files so that the Astaro can rebuild them.  The only downside is that you will lose existing logfiles, so be sure to copy off whatever you need.  If you have a lot of them, search here for 'WinSCP'.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    JimmyM, your problem sounds like a well-know one: your PostgreSQL reporting database is broken.  Search on the forums for instructions on deleting the database files so that the Astaro can rebuild them.  The only downside is that you will lose existing logfiles, so be sure to copy off whatever you need.  If you have a lot of them, search here for 'WinSCP'.

    Cheers - Bob

    Thanks, Bob. I'll look into it.