Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 4301 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connecting Nest

SalishSwede
I'm trying to connect my Nest thermostat and having trouble.
I've added firewall rules and a web profile and got certificate errors.
I then created an exception for the certificate errors and now get the follwoing in the web log:


[FONT=monospace]2014:06:05-03:39:58  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x8b6bc40" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4127779696:error:14094418:SSL  routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1256:SSL alert  number 48" [/FONT]
[FONT=monospace]2014:06:05-03:39:58  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x8b6bc40" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4127779696:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:989:" [/FONT]
[FONT=monospace]2014:06:05-03:39:58  ravenna httpproxy[5698]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x8b6bc40"  url="174.129.5.148" exceptions="certcheck" error="" [/FONT]
[FONT=monospace]2014:06:05-03:40:42  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x236b06b0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4077349744:error:14094418:SSL  routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1256:SSL alert  number 48" [/FONT]
[FONT=monospace]2014:06:05-03:40:42  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x236b06b0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4077349744:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:989:" [/FONT]
[FONT=monospace]2014:06:05-03:40:42  ravenna httpproxy[5698]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x236b06b0"  url="174.129.5.148" exceptions="certcheck" error="" [/FONT]
[FONT=monospace]2014:06:05-03:42:28  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x23a769b0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4081552240:error:14094418:SSL  routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1256:SSL alert  number 48" [/FONT]
[FONT=monospace]2014:06:05-03:42:28  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x23a769b0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4081552240:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:989:" [/FONT]
[FONT=monospace]2014:06:05-03:42:28  ravenna httpproxy[5698]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x23a769b0"  url="23.23.203.186" exceptions="certcheck" error="" [/FONT]
[FONT=monospace]2014:06:05-03:43:41  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x23339918" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4066843504:error:14094418:SSL  routines:SSL3_READ_BYTES:tlsv1 alert unknown ca:s3_pkt.c:1256:SSL alert  number 48" [/FONT]
[FONT=monospace]2014:06:05-03:43:41  ravenna httpproxy[5698]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x23339918" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4066843504:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:989:" [/FONT]
[FONT=monospace]2014:06:05-03:43:41  ravenna httpproxy[5698]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x23339918"  url="23.23.203.186" exceptions="certcheck" error=""

[/FONT]


It's still not connecting to the mother ship.

Any thoughts?


This thread was automatically locked due to age.
  • 0
    Can you post the IPS log, firewall log, application control log, and maybe a bit more of the web filter log(Related lines),
    it could be, that those components block it.
    maybe it fails because of missing DNat, or an IPS rule blocking everything
  • 0
    Have you tried skipping the proxy for that traffic?

    Cheers - Bob

    Sorry for any short responses.  Posted from my iPhone.
  • 0
    seems somewhat the same as I had with other traffic, last night.. Bob's solution worked for me, an it might do the job for you also
  • 0 in reply to FrankBarmentlo
    IPS Log is empty for same time
    Firewall

    [FONT=monospace]/var/log/http.log:2014:06:18-11:18:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x36351360" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4126464880:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:18:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x36351360" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4126464880:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:18:10  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x36351360"  url="23.23.108.163" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:18:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x36351e18" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4124363632:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:18:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x36351e18" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4124363632:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:18:10  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x36351e18"  url="54.235.199.118" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:26:23  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3680b380" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4071832432:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:26:23  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3680b380" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4071832432:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:26:23  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x3680b380"  url="23.23.108.163" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:26:23  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x367f1980" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4069731184:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:26:23  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x367f1980" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4069731184:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:26:23  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x367f1980"  url="204.236.228.7" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:28:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3644f380" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4122262384:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:28:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3644f380" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4122262384:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:28:10  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x3644f380"  url="23.23.108.163" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:28:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3644fb28" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4120161136:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:28:10  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3644fb28" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4120161136:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:28:10  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x3644fb28"  url="204.236.228.7" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:30:11  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3682c9b8" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4082338672:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:30:11  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3682c9b8" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4082338672:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:30:11  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x3682c9b8"  url="23.23.203.186" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:30:11  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x364d8b18" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4080237424:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:30:11  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x364d8b18" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4080237424:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:30:11  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x364d8b18"  url="54.235.199.118" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:34:59  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x364db338" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4115958640:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:34:59  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x364db338" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4115958640:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:34:59  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x364db338"  url="23.23.108.163" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:34:59  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x364dbae0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4113857392:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:34:59  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x364dbae0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4113857392:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:34:59  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x364dbae0"  url="204.236.228.7" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:37:57  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x368144d0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4090743664:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:37:57  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x368144d0" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4090743664:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:37:57  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x368144d0"  url="23.23.203.186" exceptions="certcheck" error="" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:37:57  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3680b818" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4088642416:error:1409442E:SSL  routines:SSL3_READ_BYTES:tlsv1 alert protocol version:s3_pkt.c:1275:SSL  alert number 70" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:37:57  ravenna httpproxy[5696]: id="0003" severity="info" sys="SecureWeb"  sub="http" request="0x3680b818" function="ssl_log_errors" file="ssl.c"  line="103" message="C 10.1.6.2: 4088642416:error:140940E5:SSL  routines:SSL3_READ_BYTES:ssl handshake failure:s3_pkt.c:1008:" [/FONT]
    [FONT=monospace]/var/log/http.log:2014:06:18-11:37:57  ravenna httpproxy[5696]: id="0001" severity="info" sys="SecureWeb"  sub="http" name="http access" action="pass" method="" srcip="10.1.6.2"  dstip="" user="" statuscode="000" cached="0" profile="REF_HttProNest  (nest)" filteraction=" ()" size="0" request="0x3680b818"  url="54.235.199.118" exceptions="certcheck" error="" [/FONT]


    Application Control  Note; The 74.x.y.z addresses are Google

    2014:06:18-07:59:36 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x2276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.25.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="45235" dstport="443" tcpflags="ACK PSH"  2014:06:18-07:59:36 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x2276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.25.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="45236" dstport="443" tcpflags="ACK PSH"  2014:06:18-07:59:42 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x3276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.25.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="49477" dstport="5228" tcpflags="ACK PSH"  2014:06:18-09:42:14 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x3276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.28.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="56167" dstport="5228" tcpflags="ACK PSH"  2014:06:18-09:42:33 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x3276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.28.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="56183" dstport="5228" tcpflags="ACK PSH"  2014:06:18-09:42:56 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x3276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.28.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="56200" dstport="5228" tcpflags="ACK PSH"  2014:06:18-10:09:27 ravenna ulogd[4775]: id="2017" severity="info" sys="SecureNet" sub="packetfilter" name="AFC Alert" action="log" fwrule="3" outitf="ppp0" mark="0x3276" app="630" srcmac="0:0:2f:a2:37:f7" srcip="10.1.4.0" dstip="74.125.129.188" proto="6" length="477" tos="0x00" prec="0x00" ttl="63" srcport="36620" dstport="5228" tcpflags="ACK PSH"  2014:06:18-10:23:11 ravenna afcd[5632]: _afc_cfg_file_plugin_parse: 1211 protocols registered 2014:06:18-10:23:13 ravenna afcd[5632]: loaded plugin '/var/sec/chroot-afc/lib/afc/vineyard.so' 2014:06:18-10:23:13 ravenna afcd[5632]: _afc_cfg_file_plugin_parse: 1211 protocols registered 2014:06:18-10:23:13 ravenna afcd[5713]: AFC ready.
  • 0
    do you have https scanning on?  If so turn it off see if that helps.