I've got a content filter rule for an HTTPS that seems to work some of the time using transparent mode proxy. My other explicit blocks seem to work ok. The only category blocked is Web Ads (which also didn't catch doubleclick, which was moderately surprising). I do have the Home Proxy CA installed on the machine.
The explicit block rule is pretty simple: doubleclick\.net
Successful blocks look as you would expect in the log:
2009:03:18-20:17:56 zzzz httpproxy[31582]: id="0062" severity="info" sys="SecureWeb" sub="http" name="web request blocked, forbidden url detected" action="block" method="GET" srcip="***.***.***.***" user="" statuscode="403" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="2413" time="5822 ms" request="0x82c1b78" url="fls.doubleclick.net/activityi;src=2062732;type=gener014;cat=priva106;ord=1;num=6476383581247.924
Failed blocks throw the following error in the proxy log:
2009:03:18-20:19:01 zzzz httpproxy[31582]: [ 0x8174aa8] ssl_log_errors (ssl.c:41) C: 31582:error:140ED0E5:SSL routines:SSL23_PEEK:ssl handshake failure:s23_lib.c:165:
I've got Bluecoat K-9 Web Protection installed locally on the machine, which winds up catching the request when it passes through the Astaro box.
I'm probably missing something simple, but any help or thoughts would be appreciated.
This thread was automatically locked due to age.
