Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 1 subscriber
  • Views 1218 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Astaro ASG 8 and Microsoft Windows 7 Update

Fischer
Hello
I have an ASG8 and since a while the Microsoft Windows 7 Update does not work anymore. An exception for Microsoft is configured with exception on extension blocking and ssl. But it is still not working. The Firewall runs in transparent mode with "Scan HTTPS (SSL) Traffic" enabled. Do I disable the "Scan HTTPS (SSL) Traffic" then Windows Update does work. 

Although in the Exception the skip "HTTPS Scanning - SSL scanning" is activated this does not help. Only the disabling of Scan HTTPS (SSL) Traffic.

Does somebody has a solution how configure the exception without having to disabling the Scan HTTPS (SSL) Traffic.

Thanks

Fischer


This thread was automatically locked due to age.
  • 0
    If i remeber correctly in transparent mode the exceptions are not considered - but the transparent mode skip list is. So try to add targets to be skipt there and try again.

    Regards
    Manfred
  • 0
    The Exceptions should apply, Manfred.  Fischer, if you want to work on this, please post the relavant line from the Web Filtering log.  Manfred's suggestion to use the transparent mode skip list should fix you up though.

    Cheers - Bob
  • 0
    Hello Bob 
    Hello Manfred

    Thank you for the reply. But the configuraton transparent mode skip list would to configura an object my destination would be microsoft. 

    Here the logfile output
    2012:10:21-14:11:52 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="HEAD" srcip="172.1x.y.100" dstip="65.55.25.59" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0xa6cd4a0" url="http://www.update.microsoft.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211204" exceptions="av,ssl,fileextension" error="" country="United States" category="105,175" reputation="trusted" categoryname="Business,Software/Hardware" content-type="application/octet-stream"
    2012:10:21-14:11:52 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.1x.y.100" dstip="65.55.25.59" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="11928" request="0xa6cd4a0" url="http://www.update.microsoft.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211204" exceptions="av,ssl,fileextension" error="" country="United States" category="105,175" reputation="trusted" categoryname="Business,Software/Hardware" content-type="application/octet-stream"
    2012:10:21-14:11:53 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="HEAD" srcip="172.1x.y.100" dstip="157.55.240.221" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0xa6cda40" url="http://update.microsoft.com/v10/1/windowsupdate/selfupdate/wuident.cab?1210211204" exceptions="av,ssl,fileextension" error="" country="United States" category="105,175" reputation="trusted" categoryname="Business,Software/Hardware" content-type="application/octet-stream"
    2012:10:21-14:11:53 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="HEAD" srcip="172.1x.y.100" dstip="184.84.182.75" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0xa641318" url="http://download.windowsupdate.com/v9/1/windowsupdate/b/selfupdate/WSUS3/x64/Vista/wsus3setup.cab?1210211204" exceptions="av,ssl,fileextension" error="" country="United States" category="175" reputation="trusted" categoryname="Software/Hardware" content-type="application/octet-stream"
    2012:10:21-14:11:53 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.1x.y.100" dstip="178.77.122.56" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="44" request="0xa6cde78" url="http://dlarray-europ-fileblsrv091.gdatasecurity.de/" exceptions="" error="" country="Germany" reputation="neutral" category="175" reputation="neutral" categoryname="Software/Hardware" content-type="application/octet-stream"
    2012:10:21-14:11:55 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="HEAD" srcip="172.1x.y.100" dstip="184.84.182.75" user="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0xa641318" url="http://download.windowsupdate.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211205" exceptions="av,ssl,fileextension" error="" country="United States" category="175" reputation="trusted" categoryname="Software/Hardware" content-type="text/html"
    2012:10:21-14:11:55 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.1x.y.100" dstip="184.84.182.75" user="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1245" request="0xa641318" url="http://download.windowsupdate.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211205" exceptions="av,ssl,fileextension" error="" country="United States" category="175" reputation="trusted" categoryname="Software/Hardware" content-type="text/html"
    2012:10:21-14:11:56 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="HEAD" srcip="172.1x.y.100" dstip="184.84.182.66" user="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0xa641e58" url="http://download.microsoft.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211205" exceptions="av,ssl,fileextension" error="" country="United States" category="175" reputation="trusted" categoryname="Software/Hardware" content-type="text/html"
    2012:10:21-14:11:56 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="172.1x.y.100" dstip="184.84.182.66" user="" statuscode="404" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="1245" request="0xa641e58" url="http://download.microsoft.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211205" exceptions="av,ssl,fileextension" error="" country="United States" category="175" reputation="trusted" categoryname="Software/Hardware" content-type="text/html"
    2012:10:21-14:11:56 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="HEAD" srcip="172.1x.y.100" dstip="65.55.25.59" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0xa6cd4a0" url="http://www.update.microsoft.com/v9/1/windowsupdate/redir/muv4wuredir.cab?1210211205" exceptions="av,ssl,fileextension" error="" country="United States" category="105,175" reputation="trusted" categoryname="Business,Software/Hardware" content-type="application/octet-stream"
    2012:10:21-14:11:59 test httpproxy[6376]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="POST" srcip="172.1x.y.100" dstip="157.55.240.221" user="" statuscode="500" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="402" request="0xa6865d0" url="https://update.microsoft.com/v6/ClientWebService/client.asmx" exceptions="av,ssl,fileextension" error="" country="United States" reputation="trusted" category="105,175" reputation="trusted" categoryname="Business,Software/Hardware" content-type="text/xml" 


    I also found a thread about it:
    https://community.sophos.com/products/unified-threat-management/astaroorg/f/55/t/45544

    Do you have any solutions?

    Regards

    Juan
  • 0
    Again, Manfred's recommendation should fix you up.  Also, William's in that thread you found should work.

    Any luck?

    Cheers - Bob
  • 0
    Hello Bob
    Thank you very much for your answer. But could you give me a hint how to only add MS to the exception list.
    Thanks again
    Heinrich
  • 0
    Hi Heinrich,

    Add DNS Group definitions for download.microsoft.com and update.microsoft.com to 'Skip transparent mode destination hosts/nets'.

    Cheers - Bob