Proxy blocking HP Support Assistant

Hi,

I have a proxy configured in the SG230 and when I want to use the HP Support Assistant, it won't.

I Already whitelisted *.hp.com

Fiddler says it's the only address it connects to

But it doesn't work.

It only works when I turn off the Proxy in windows.

Anyone knows why?

Parents
  • Hallo,

    Please copy here the relevant block lines from the Web Filtering log.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hi and thanks for the help

    This is the part that pops up during a refresh in the software

    2021:10:21-08:43:57 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2502" request="0xd5ee2700" url="http://ocsp.pki.goog/gts1c3/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBTHLnmK3f9hNLO67UdCuLvGwCQHYwQUinR%2Fr4XN7pXNPZzQ4kYU83E1HScCEQC4L7mL%2BbzHKwoAAAABCK3S" referer="" error="" authtime="1" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="82" device="0" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions=""
    2021:10:21-08:43:57 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2502" request="0xd5ee2700" url="http://ocsp.pki.goog/gts1c3/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBTHLnmK3f9hNLO67UdCuLvGwCQHYwQUinR%2Fr4XN7pXNPZzQ4kYU83E1HScCEQC4L7mL%2BbzHKwoAAAABCK3S" referer="" error="" authtime="6" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="77" device="0" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions=""
    2021:10:21-08:43:57 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="142.250.184.227" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="472" request="0xd5ee2700" url="http://ocsp.pki.goog/gts1c3/MFIwUDBOMEwwSjAJBgUrDgMCGgUABBTHLnmK3f9hNLO67UdCuLvGwCQHYwQUinR%2Fr4XN7pXNPZzQ4kYU83E1HScCEQC4L7mL%2BbzHKwoAAAABCK3S" referer="" error="" authtime="65" dnstime="34952" aptptime="1121" cattime="45223" avscantime="715" fullreqtime="118159" device="0" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions="" category="175" reputation="trusted" categoryname="Software/Hardware" application="ocsp" app-id="835" sandbox="-" content-type="application/x-x509-ca-cert"
    2021:10:21-08:43:57 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="54.171.197.123" user="" group="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="7967" request="0xd5d52a00" url="https://sn.webrootcloudav.com/" referer="" error="" authtime="0" dnstime="3" aptptime="71" cattime="0" avscantime="0" fullreqtime="163388" device="0" auth="2" ua="" exceptions="av,auth,content,url,ssl,certcheck,certdate,mime,cache,fileextension,size"
    2021:10:21-08:43:57 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="204.79.197.203" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="33355" request="0xda618700" url="https://api.msn.com/" referer="" error="" authtime="135" dnstime="14" aptptime="179" cattime="219" avscantime="0" fullreqtime="60355820" device="0" auth="2" ua="" exceptions="" category="141" reputation="trusted" categoryname="Portal Sites" application="msn" app-id="311"
    2021:10:21-08:43:58 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2510" request="0xd05f9100" url="https://ccls.external.hp.com/" referer="" error="" authtime="1" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="105" device="0" auth="2" ua="" exceptions=""
    2021:10:21-08:43:58 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2510" request="0xd05f9100" url="https://ccls.external.hp.com/" referer="" error="" authtime="8" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="125" device="0" auth="2" ua="" exceptions=""
    2021:10:21-08:43:58 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2502" request="0xcff8f100" url="http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSnxLiz3Fu1WB6n1%2FE6xWn1b0jXiQQUdIWAwGbH3zfez70pN6oDHb7tzRcCEA3L7RsPMSItOsZfwKP0TjY%3D" referer="" error="" authtime="3" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="302" device="0" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions=""
    2021:10:21-08:43:58 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2502" request="0xcff8f100" url="http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSnxLiz3Fu1WB6n1%2FE6xWn1b0jXiQQUdIWAwGbH3zfez70pN6oDHb7tzRcCEA3L7RsPMSItOsZfwKP0TjY%3D" referer="" error="" authtime="19" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="275" device="0" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions=""
    2021:10:21-08:43:58 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="93.184.220.29" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="471" request="0xcff8f100" url="http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBSnxLiz3Fu1WB6n1%2FE6xWn1b0jXiQQUdIWAwGbH3zfez70pN6oDHb7tzRcCEA3L7RsPMSItOsZfwKP0TjY%3D" referer="" error="" authtime="99" dnstime="420" aptptime="3653" cattime="50092" avscantime="2042" fullreqtime="97046" device="0" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions="" category="175" reputation="trusted" categoryname="Software/Hardware" application="ocsp" app-id="835" sandbox="-" content-type="application/x-x509-ca-cert"
    2021:10:21-08:44:05 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2510" request="0xda61b100" url="https://sudf-api.hpcloud.hp.com/" referer="" error="" authtime="4" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="296" device="0" auth="2" ua="" exceptions=""
    2021:10:21-08:44:14 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2510" request="0xd346aa00" url="https://h20572.www2.hp.com/" referer="" error="" authtime="3" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="228" device="0" auth="2" ua="" exceptions=""
    2021:10:21-08:44:14 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2510" request="0xcff4ae00" url="https://h20572.www2.hp.com/" referer="" error="" authtime="3" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="230" device="0" auth="2" ua="" exceptions=""
    2021:10:21-08:44:14 sg230 httpproxy[5874]: id="0003" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="" user="" group="" ad_domain="" statuscode="407" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction=" ()" size="2510" request="0xd5ee5800" url="https://h20572.www2.hp.com/" referer="" error="" authtime="3" dnstime="0" aptptime="0" cattime="0" avscantime="0" fullreqtime="189" device="0" auth="2" ua="" exceptions=""
    2021:10:21-08:44:49 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.10.20.63" dstip="23.11.206.17" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="10867" request="0xda618000" url="https://assets.msn.com/" referer="" error="" authtime="143" dnstime="17050" aptptime="84" cattime="163" avscantime="0" fullreqtime="109995054" device="0" auth="2" ua="Mozilla/5.0 (Windows NT 10.0; Win64; x64; Trident/7.0; rv:11.0) like Gecko" exceptions="" category="141" reputation="trusted" categoryname="Portal Sites" application="msn" app-id="311"
    2021:10:21-08:44:57 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="93.184.221.240" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="304" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="0" request="0xd4d9fc00" url="http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcertstl.cab?142940dfceccf25d" referer="" error="" authtime="69" dnstime="191" aptptime="73" cattime="86" avscantime="0" fullreqtime="31595" device="1" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions="av,sandbox,ssl,fileextension,size" category="175" reputation="trusted" categoryname="Software/Hardware" application="winupdat" app-id="596"
    2021:10:21-08:44:57 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="93.184.221.240" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="304" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="0" request="0xd4d9fc00" url="http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab?173e0b15a12193d5" referer="" error="" authtime="0" dnstime="1" aptptime="251" cattime="323" avscantime="0" fullreqtime="20193" device="1" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions="av,sandbox,ssl,fileextension,size" category="175" reputation="trusted" categoryname="Software/Hardware"
    2021:10:21-08:44:57 sg230 httpproxy[5874]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="10.10.20.63" dstip="93.184.221.240" user="Dumelle" group="Internet_erlaubt" ad_domain="EK" statuscode="304" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_HttCffInterErlauFilte (Internet Erlaub Filter)" size="0" request="0xd4d9fc00" url="http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/pinrulesstl.cab?c5e8a7764c7f107f" referer="" error="" authtime="0" dnstime="1" aptptime="260" cattime="259" avscantime="0" fullreqtime="25241" device="1" auth="2" ua="Microsoft-CryptoAPI/10.0" exceptions="av,sandbox,ssl,fileextension,size" category="175" reputation="trusted" categoryname="Software/Hardware"

    I guess it has something to do with the status code 407 messages?

  • I guess it has something to do with the status code 407 messages?

    Might be, 407 is telling you that proxy authentication is needed, and/or the supplied credentials are incorrect.

    UTM - 9.707 | Intel i3-4150 4th Gen Processor
    16GB Memory | 500GB SATA HDD | GB Ethernet x5

  • But how do I bypass this?

    I use AD SSO for the proxy and everything else works fine

  • I don't think there's anything you can do in the UTM or with Active Directory - my guess is that this has to do with the way your PC is configured.  I have no trouble with the HP Support Assistant when working behind my lab UTM.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • I don't think there's anything you can do in the UTM or with Active Directory - my guess is that this has to do with the way your PC is configured.  I have no trouble with the HP Support Assistant when working behind my lab UTM.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data