Hi, Folks
A big trouble here, I'm in a middle of a POC and the Astaro is moving another Fortinet [:D] but I configure the Asg to synchronize with the AD after this, I turn on the web filter with authentication on browser, for my surprise with some clients works perfect but with another no [:(] so the error in the web browser was:
The connection has timed out in the address bar says:
http://passthrough.fw-notify.net/static/auth_transparent.html?return=http://google.com
I try to resolve the domain and point to the ASG, to make sure of this, I put in the DHCP server that the first dns was the ASG, the DC, in the dc I create a DNS conditional forwarder to that domain to point to the asg, in the computers with this problem if you ping to the domain the ASG answer, but the error continue, the client cant navigate, so I try to put manually the proxy server on the web browser pointing to the ASG ip with the default port and works fine, but if I clear this no working again, some one with an idea to solve this?
BTW: The lan is 192.168.0.0/23, in the packet filter for testing I put from internal to any any, just for test now, al the lan traffic is nated, the application control was turn off for testing and no work, I turn on again because here the torrent downloaders are so many, cheers.
Update: I look in the packet filter log and this is happend
16:26:45 Default DROP HTTP 192.168.1.57 : 51752 → 192.168.0.241 : 80
[SYN] len=48 ttl=64 tos=0x00 srcmac=x dstmac=x
So the packet its dropped, but the packet filter have's the rule from lan to any any :s now what?
Update2: I'm gone to use the wpad file to solve this temporally, I hope some one can give me a solution with this
This thread was automatically locked due to age.
