Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 1 subscriber
  • Views 18219 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

website declined to show this webpage - HTTP 403 Forbidden

Kingbuzzo
Hi Fellas:

I have a user who cannot connect to the following site:

CRPA-ACRP Web Site: News

They just get the  error message.

We have an ASG425 using e-Dir SSO.

This is all I can see in the log:

2009:09:02-10:49:13 rastro1-2 httpproxy[22709]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.18.118.166" user="TEdwards" statuscode="200" cached="0" profile="REF_DpNJnpEFpS (Research)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1" time="400 ms" request="0x878f378" url="8.17.248.22/.../x-fcs" 
2009:09:02-10:49:14 rastro1-2 httpproxy[22709]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.18.118.166" user="TEdwards" statuscode="200" cached="0" profile="REF_DpNJnpEFpS (Research)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1" time="473 ms" request="0x878f378" url="8.17.248.22/.../x-fcs" 
2009

This site seems to be using some-sort of authentication but the user cannot even reach the root page to login.

The link seems to work fine thru BordumManger and ForeFront TMG however.

Thanks!


This thread was automatically locked due to age.
  • 0
    Yesh, I added it to the exception list with no luck.

    I never thought of that but it is happening on any pc that is using the ASG as a proxy.

    All my other proxies work!
  • 0
    Do the other proxies do AV scans?
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    BordumMangler no, Forefront TMG yesh!
  • 0
    Hmmm... Well, when I watched the HTTP live log, all I saw were accesses of pages on  crpa-acrp.ca.  Have you tried clearing the Astaro HTTP cache?  The DNS cache?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    I tried clearing the HTTP cache before but not the DNS cache.

    Is there any risk in clearing the DNS cache in production?
  • 0
    No danger that I know of.  If you're really unsure, put in a temporary 'Internal (Network) -> DNS -> Any : Allow' packet filter rule.  Just empty 'Allowed Networks' in the DNS Proxy, hit [Apply] and then put the same items(s) back and [Apply] again.  Then delete/disable the DNS rule if you even bothered with it.

    In V7.5, there will be a [Flush DNS] button.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA