For some reason any http traffic that doesn't originate in a browser is 100% blocked. For example I'm trying to run the online eset scanner on a pc without internet explorer so it has you download and run a program that attempts to download virus definitions from the web over HTTP. I can download the program just fine, but once I execute the program it just sits there for forever and the instant I turn off web filtering the definitions will download. I haven't created any special profiles, the only one in effect is the default filter action.
Global Web Filtering is set to transparent.
Single Anti-virus scanning is turned on.
I'm blocking by default but when I changed it to allow by default it had no effect.
both internal networks have been added to the allowed networks.
default filter action:
Default content filter
Mode: Whitelist
Allowed SP Categories
CommunityEducationReligion
EntertainmentCulture
FinanceInvesting
GamesGambles
IT
InformationandCommunication
JobSearch
Lifestyle
Locomotion
Medicine
Ordering
Blocked Sites rss2search
File extensions bat, vbx, hta, inf, jse, wsh, vbs, vbe, lnk, chm, pif, reg, scr, cmd
Content removal Embedded
Antivirus scanning Single Scan
below is the output from the live log.
2013:08:28-21:47:06 admin-1 httpproxy[5561]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="x.x.x.10" dstip="91.228.167.11" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0x11c76c80" url="download.eset.com/.../octet-stream" application="eset"
This thread was automatically locked due to age.
