Hi,
I hope someone can solve this very easily for me, a small but frustrating issue. I am currently setting up our new UTM525 for a cut over from our existing Microsoft TMG. Have been running through the configuration step by step while reading the admin guide. Has been a fairly pain free process until this particular step.
I have configured Firewall and Web Protection so that when I put the UTM address manually into the browser configuration and tell it to 'bypass for local addresses' as well as these addresses (*.local;*.top.level.domain;192.168.*) it all works as expected, no problems.
However, we have internal laptops that come and go from our network and therefore these manual settings will cause problems when the users go off-site. To alleviate this we use an auto config wpad file in DHCP and DNS. Currently, I cannot change the live file that is hosted by TMG but am pointing the browser to the file hosted on the UTM by way of the 'automatic configuration script' box. The address I am using is 'fq.h.name:8080/wpad.dat'.
Using this, browsing to external sites works fine. Browsing to a URL that is part of the banned categories is blocked fine. When I browse to our Intranet though I am prompted with an authentication prompt, this is also the case for other internally hosted websites. Anyone know why?
For your reference here is what I have entered into the PAC section on the UTM, pretty basic I would have thought.
function FindProxyForURL(url, host) {
if (isPlainHostName(host)) { return “DIRECT”; }
if (isInNet(host, “192.168.0.0″, “255.255.255.0″[;)]) { return “DIRECT”; }
if (shExpMatch(host, “www.top.level.domain”)) { return “DIRECT”; }
if (shExpMatch(host, “intranet.top.level.domain”)) { return “DIRECT”; }
if (shExpMatch(host, “*.top.level.domain”)) { return “DIRECT”; }
return “PROXY fq.h.name:8080”;
}
Thanks in advance,
Brendan
This thread was automatically locked due to age.
