Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 29 replies
  • Answers 1 answer
  • Subscribers 9 subscribers
  • Views 43852 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cannot Connect to App Store Since Upgrading to iOS v11

busthead

Ever since upgrading our iOS devices to v11 they "Cannot Connect to App Store" when the connection is through our UTM. We are not experiencing any issues connecting these devices to the App Store through other non-UTM Internet connections.

There are no blocked packets in the Firewall logs and no blocked connection attempts in the Web Protection logs.

The "Apple Update [Allows Apple Update without content scanning side effects.]" Web Protection exception is enabled.

I'm running UTM v9.415-1 (and not interested in upgrading to v9.5 so please don't suggest that as a fix unless this is a known issue with v9.4).

Adding iOS devices to the "Skip Transparent Mode Source" list resolves the issue but is obviously a less than desirable solution.

I can't be the only one experiencing this issue. Please help.



This thread was automatically locked due to age.
Parents
  • 0

    Like to add another wrinkle here. It seems Mojave 10.14 will not authenticate with FaceTime or the App store through the firewall. Messages works fine, and all necessary ports are open. It looks like it might be a 2 factor authentication issue, as I can reliably log into both on older Apple desktop OSes. The only solution I've found so far has been to turn off IPV6 or put it in Link-Local on Mojave. Connection is fine  and works once that is done. Anybody else experiencing this or know a workaround?

  • 0 in reply to John Barry

    In May of 2018 I added DNS host 'ocsp.digicert.com' to Web Protection->Filtering Options->Misc-Skip Transparent Mode Destination Hosts/Nets, and haven't had an issue since.

     

    Thx

  • 0 in reply to busthead

    I'm on an XG. Added it to exceptions and still having same issue. 

  • 0 in reply to John Barry

    John, I'll guess that your Exception has an error, but the best place for you to pursue that will be in the XG Firewall Community.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0 in reply to John Barry

    John, I'll guess that your Exception has an error, but the best place for you to pursue that will be in the XG Firewall Community.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML