Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 13 replies
  • Subscribers 1 subscriber
  • Views 6886 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Windows Update

MikeRM275
Hello,
  While I was using the trial version, Windows Update would work.  The moment I switched over to a licensed version of UTM 9, I am unable to get Windows Update to work on any computer.  They all give the same error about being blocked (error code 80072EFE).  I have checked the exceptions and it seems to be set up correctly.  Can anyone see what I might have wrong?  The computers are running Windows 2008 R2, 2012 R2, and 7.  So it is a mix, not just one type.


Microsoft Windows Update [Allows Windows Update without content scanning side effects.] 
 

Skipping: Authentication / Caching / Block by download size / Antivirus / Extension blocking / MIME type blocking / URL Filter / Content Removal / SSL scanning / Certificate Trust Check / Certificate Date Check 
 

Matching these URLs: ^https?://([A-Za-z0-9.-]*\.)?windowsupdate\.com/
^https?://([A-Za-z0-9.-]*\.)?microsoft\.com/
^https?://64\.4\.18\.19
^https?://157\.56\.134\.97


This thread was automatically locked due to age.
Parents
  • 0
    That's confusing, Mike.  There really are only two sets of two lines in there that aren't normal, statuscode="200" and are related to the Microsoft update:
    2014:01:20-19:36:55 MRM2Sophos httpproxy[4992]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1b2f3398" function="send_request_headers" file="request.c" line="184" message="write() on AF 2 socket to 157.56.96.80 failed: Broken pipe" 
    2014:01:20-19:36:55 MRM2Sophos httpproxy[4992]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1b2f3398" function="ssl_raw_read" file="ssl.c" line="610" message="SSL_ERROR_SYSCALL: ret=-1 error=Connection reset by peer"

    2014:01:20-19:36:56 MRM2Sophos httpproxy[4992]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.0.22" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x1b5ff7d8" url="157.56.96.59" exceptions="" error="Failed to verify server certificate" 
    2014:01:20-19:37:07 MRM2Sophos httpproxy[4992]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.0.22" dstip="65.55.53.190" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="44" request="0x1b2bd1b0" url="watson.microsoft.com/.../Unmanaged.htm

    Have you loaded the HTTPS cert with msc into each PC?

    Cheers - Bob
Reply
  • 0
    That's confusing, Mike.  There really are only two sets of two lines in there that aren't normal, statuscode="200" and are related to the Microsoft update:
    2014:01:20-19:36:55 MRM2Sophos httpproxy[4992]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1b2f3398" function="send_request_headers" file="request.c" line="184" message="write() on AF 2 socket to 157.56.96.80 failed: Broken pipe" 
    2014:01:20-19:36:55 MRM2Sophos httpproxy[4992]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x1b2f3398" function="ssl_raw_read" file="ssl.c" line="610" message="SSL_ERROR_SYSCALL: ret=-1 error=Connection reset by peer"

    2014:01:20-19:36:56 MRM2Sophos httpproxy[4992]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="" srcip="192.168.0.22" dstip="" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="0" request="0x1b5ff7d8" url="157.56.96.59" exceptions="" error="Failed to verify server certificate" 
    2014:01:20-19:37:07 MRM2Sophos httpproxy[4992]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.0.22" dstip="65.55.53.190" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="44" request="0x1b2bd1b0" url="watson.microsoft.com/.../Unmanaged.htm

    Have you loaded the HTTPS cert with msc into each PC?

    Cheers - Bob
Children