I have UTM 9 with firmware version 9.005-15,software version , I have a serious problem that my web proxy stop working at all.
When I disable web proxy from web admin and activate a firewall rule any-->any-->any and activating a masquerading NAT rule I can surf the web without any proplem.
-So I guessed that the problem come from web proxy.
-My web proxy work in transparent mode and ssl scanning is activated, and I use web proxy profiles
-I did not change any thing in the UTM before the problem occurred so I do not think it is a misconfiguration.
- when I enable my web proxy then open the web Filtering live log and start surfing I did not receive any output in the live log screen !!!!.
- I have a problem in updating my UTM 9 and I opened a thread regarding it and still waiting for a reply, but the updating problem started from about two weeks ago, and the web proxy problem started today.
- I flushed DNS in UTM9 but with no results.
- I changed proxy mode from transparent to standard in my profile setting with no results.
-I rebooted the system with out any results.
-I restared webproxy from shell using this command:
:/var/mdw/scripts/httpproxy restart with out any results.
- Note that I received notification through email that an update is failed as follow "this occure almost before the failure of proxy, I think this is the cause":
Firmware Up2Date installation failed: Errors during the package installation, installation failed (10)
Please check the up2date log file for detailed information.
kindly find the web Filtering log output from view log file section"not the live log" I found in the time of the problem:
2013:04:08-18:46:34 asg httpproxy[8205]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x89e7ca8" function="ssl_log_errors" file="ssl.c" line="58" message="C 192.168.10.36: 2767412080:error:14094418:SSL routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1195:SSL alert number 48"
2013:04:08-18:46:34 asg httpproxy[8205]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x89e7ca8" function="ssl_log_errors" file="ssl.c" line="58" message="C 192.168.10.36: 2767412080:error:140940E5:SSL routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:945:"
2013:04:08-18:46:34 asg httpproxy[8205]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="" srcip="192.168.10.36" dstip="" user="" statuscode="000" cached="0" profile="REF_bJTWXvAyTS (Office Web Profile)" filteraction=" ()" size="0" request="0x89e7ca8" url="199.47.217.173" exceptions="" error=""
2013:04:08-18:46:57 asg httpproxy[8205]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.10.36" dstip="91.189.89.144" user="mostafa.aly" statuscode="200" cached="0" profile="REF_bJTWXvAyTS (Office Web Profile)" filteraction="REF_ZdyHXxgkyQ (Block Staff Traffic-Work)" size="850" request="0x8b109a8" url="geoip.ubuntu.com/lookup" exceptions="av,content,url,ssl,certcheck,certdate,mime,cache,fileextension" error="" application="http"
2013:04:08-18:47:11 asg httpproxy[8205]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="confd_config_reload_func" file="confd-client.c" line="700" message="reloading config"
2013:04:08-18:47:13 asg httpproxy[8205]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="parse_address" file="util.c" line="567" message="getaddrinfo: passthrough6.fw-notify.net: Name or service not known"
2013:04:08-18:47:13 asg httpproxy[8205]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="confd_config_filter" file="confd-client.c" line="2513" message="failed to resolve passthrough6.fw-notify.net, using 2a01:198:200:680::8080"
If you have any clarification request please feel free to ask me.
Thanks,
Mostafa Aly
This thread was automatically locked due to age.
