Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 20 replies
  • Subscribers 1 subscriber
  • Views 31221 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Logmein Issues

wingman
Hi All

I am using HTTPS scanning on my 7.501 and when I launch logmein to control a client the java fails indicating a possible "man-in-the-middle" attack. Does anyone know how to resolve this/experienced this problem before?

Ports TCP port 443 and 80 are opened as per logmein document

Thanks


This thread was automatically locked due to age.
Parents
  • 0
    Since you're running in transparent mode, I'd agree that the easiest thing to do is to add the SSL IP ranges to the Skiplist

    74.201.74.0/23
    216.52.233.0/24
    69.25.20.0/23
    64.94.18.0/24
    77.242.192.0/23

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Since you're running in transparent mode, I'd agree that the easiest thing to do is to add the SSL IP ranges to the Skiplist

    74.201.74.0/23
    216.52.233.0/24
    69.25.20.0/23
    64.94.18.0/24
    77.242.192.0/23

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    Since you're running in transparent mode, I'd agree that the easiest thing to do is to add the SSL IP ranges to the Skiplist

    74.201.74.0/23
    216.52.233.0/24
    69.25.20.0/23
    64.94.18.0/24
    77.242.192.0/23

    Cheers - Bob


    Hi,
    For those running in SSO with ADirectory there is no choice but to add *.logmein.com to you proxy filter bypass rules in internet explorer, firefox, etc. We also had the same problem using gotoassist.com for remote troubleshooting our users desktop machines and bypass that as well. You just need to make sure your ASG/firewall unit has the correct packetfilter rules.
    Julio