Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 13 replies
  • Subscribers 1 subscriber
  • Views 7319 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

WAF - statuscode="302" reason="-" extra="-" { Issue since upg to 9.003 }

ffaucher
Hello,

Since I upgraded to 9.003, one of my four internal https sites does not work anymore. Here is what I see in the log :

2012:10:29-14:34:56 fw reverseproxy: srcip="***.***.***.***" localip="zzz.zzz.zzz.zzz" size="91" user="-" host="***.***.***.***" method="GET" statuscode="302" reason="-" extra="-" time="13812" url="/" server="aaa.bbb.com" referer="-" cookie="_filetransfer_session=a0b98b431e960b318fc554c111cf5c29" set-cookie="-" 

This is the error message I got from the browser 

The page isn't redirecting properly  
Firefox has detected that the server is redirecting the request for this address in a way that will never complete.

( Yes, I tried with other browser, same issue, and yes I clean all the cache in every test configuration )

I tried all the option in the WAF, still the same result. 
It was working perfectly until I performed the upgrade to 9.003.

Thanks for your excellent product. I'm with you since 5 years.


This thread was automatically locked due to age.
Parents
  • 0
    Thanks for the response.  I will post as soon as possible as the lab has closed up for the night.
  • 0 in reply to SLGizmo
    Please find attached the configuration settings that I have setup for WAF and let me know your thoughts.

    I made some changes and I am no longer getting the 302 error but now I am getting the following with the attached configuration

    2013:04:08-05:19:17 hallfwpp001v reverseproxy: [Mon Apr 08 05:19:17 2013] [error] [client 192.0.2.214] Hostname in HTTP request (192.168.4.2) does not match the server name (www.hal.edu)

    2013:04:08-05:19:17 hallfwpp001v reverseproxy: srcip="192.0.2.214" localip="10.10.70.3" size="179" user="-" host="192.0.2.214" method="GET" statuscode="403" reason="-" extra="-" time="723" url="/" server="www.hal.edu" referer="-" cookie="-" set-cookie="-"

    Ok so last but not least I modified my test machine's local host file so that 192.168.4.2 = www.hal.edu and I get the default webpage.  So do I set some static DNS entry for 192.168.4.2 on the FireWall?
    waf.zip
Reply
  • 0 in reply to SLGizmo
    Please find attached the configuration settings that I have setup for WAF and let me know your thoughts.

    I made some changes and I am no longer getting the 302 error but now I am getting the following with the attached configuration

    2013:04:08-05:19:17 hallfwpp001v reverseproxy: [Mon Apr 08 05:19:17 2013] [error] [client 192.0.2.214] Hostname in HTTP request (192.168.4.2) does not match the server name (www.hal.edu)

    2013:04:08-05:19:17 hallfwpp001v reverseproxy: srcip="192.0.2.214" localip="10.10.70.3" size="179" user="-" host="192.0.2.214" method="GET" statuscode="403" reason="-" extra="-" time="723" url="/" server="www.hal.edu" referer="-" cookie="-" set-cookie="-"

    Ok so last but not least I modified my test machine's local host file so that 192.168.4.2 = www.hal.edu and I get the default webpage.  So do I set some static DNS entry for 192.168.4.2 on the FireWall?
    waf.zip
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?