Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 1 subscriber
  • Views 18217 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

website declined to show this webpage - HTTP 403 Forbidden

Kingbuzzo
Hi Fellas:

I have a user who cannot connect to the following site:

CRPA-ACRP Web Site: News

They just get the  error message.

We have an ASG425 using e-Dir SSO.

This is all I can see in the log:

2009:09:02-10:49:13 rastro1-2 httpproxy[22709]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.18.118.166" user="TEdwards" statuscode="200" cached="0" profile="REF_DpNJnpEFpS (Research)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1" time="400 ms" request="0x878f378" url="8.17.248.22/.../x-fcs" 
2009:09:02-10:49:14 rastro1-2 httpproxy[22709]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.18.118.166" user="TEdwards" statuscode="200" cached="0" profile="REF_DpNJnpEFpS (Research)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1" time="473 ms" request="0x878f378" url="8.17.248.22/.../x-fcs" 
2009

This site seems to be using some-sort of authentication but the user cannot even reach the root page to login.

The link seems to work fine thru BordumManger and ForeFront TMG however.

Thanks!


This thread was automatically locked due to age.
Parents
  • 0
    No danger that I know of.  If you're really unsure, put in a temporary 'Internal (Network) -> DNS -> Any : Allow' packet filter rule.  Just empty 'Allowed Networks' in the DNS Proxy, hit [Apply] and then put the same items(s) back and [Apply] again.  Then delete/disable the DNS rule if you even bothered with it.

    In V7.5, there will be a [Flush DNS] button.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    No danger that I know of.  If you're really unsure, put in a temporary 'Internal (Network) -> DNS -> Any : Allow' packet filter rule.  Just empty 'Allowed Networks' in the DNS Proxy, hit [Apply] and then put the same items(s) back and [Apply] again.  Then delete/disable the DNS rule if you even bothered with it.

    In V7.5, there will be a [Flush DNS] button.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data