Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 8631 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Airmail 2 on OS X not blocked. How do I enable?

KHagberg

So I typically use Airmail 2 on Mac OS X for email client. I cannot get it to update or pull in new messages when behind the firewall. I know I'm receiving emails as they still come up on my phone, but Airmail won't update. I looked in firewall log and it appeared to be blocking a number of ports. I opened the ports and now I'm no longer receiving any blocked packets under the firewall log. It appears whatever is being blocked is due to the webfilter. It is preventing connection to Apple servers but not sure how to fix. I tried creating exception in Web Protection > Filtering options. I made exception for apple.co and icloud.com, but it doesn't seem to help. Following is from web filter log:

2015:11:16-19:32:16 sophos httpproxy[4766]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.17.10.104" dstip="17.110.240.40" user="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="5816" request="0x9c88b800" url="p28-keyvalueservice.icloud.com/" referer="" error="" authtime="0" dnstime="13078" cattime="0" avscantime="0" fullreqtime="310571" device="0" auth="0" ua="" exceptions="auth,content,url,mime,cache,fileextension,size,patience"
2015:11:16-19:32:18 sophos httpproxy[4766]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.17.10.104" dstip="17.110.240.40" user="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="5736" request="0xa02be000" url="p28-keyvalueservice.icloud.com/" referer="" error="" authtime="0" dnstime="13" cattime="0" avscantime="0" fullreqtime="288983" device="0" auth="0" ua="" exceptions="auth,content,url,mime,cache,fileextension,size,patience"
2015:11:16-19:32:53 sophos httpproxy[4766]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.17.10.104" dstip="23.194.141.20" user="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="5815" request="0xa12b000" url="configuration.apple.com/" referer="" error="" authtime="0" dnstime="16204" cattime="0" avscantime="0" fullreqtime="151814" device="0" auth="0" ua="" exceptions="av,auth,content,url,mime,cache,fileextension,size,patience" application="apple" app-id="621"
2015:11:16-19:32:53 sophos httpproxy[4766]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.17.10.104" dstip="17.249.187.246" user="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="5805" request="0xa152c000" url="api.smoot.apple.com/" referer="" error="" authtime="0" dnstime="16338" cattime="0" avscantime="0" fullreqtime="172080" device="0" auth="0" ua="" exceptions="av,auth,content,url,mime,cache,fileextension,size,patience" application="apple" app-id="621"
2015:11:16-19:32:54 sophos httpproxy[4766]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="CONNECT" srcip="10.17.10.104" dstip="17.173.66.150" user="" ad_domain="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="10448" request="0x9c2ef000" url="play.itunes.apple.com/" referer="" error="" authtime="0" dnstime="14149" cattime="0" avscantime="0" fullreqtime="269341" device="0" auth="0" ua="" exceptions="av,auth,content,url,mime,cache,fileextension,size,patience" application="apple" app-id="621"


This thread was automatically locked due to age.
Parents
  • 0
    All of these entries say action="pass" and error="". Are there any relevant entries that show blocks or errors? Here's how to check. Make certain that as many programs as possible on the OS X are not running. Now, On the UTM, in Webadmin, Open up the Web Filtering Live Log and in the upper left corner, populate the Filter with the IP address of the OSX system to filter out anything else. Now, open up AIrmail and try to get mail. Just in case, also check the Intrusion Prevention log.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
Reply
  • 0
    All of these entries say action="pass" and error="". Are there any relevant entries that show blocks or errors? Here's how to check. Make certain that as many programs as possible on the OS X are not running. Now, On the UTM, in Webadmin, Open up the Web Filtering Live Log and in the upper left corner, populate the Filter with the IP address of the OSX system to filter out anything else. Now, open up AIrmail and try to get mail. Just in case, also check the Intrusion Prevention log.
    __________________
    ACE v8/SCA v9.3

    ...still have a v5 install disk in a box somewhere.

    http://xkcd.com
    http://www.tedgoff.com/mb
    http://www.projectcartoon.com/cartoon/1
Children
  • 0 in reply to Scott_Klassen
    I noticed they all said pass, which was why I was so confused. There is nothing in the firewall log as I've passed the necessary ports and all lines in the web filter log say "pass" so it must be something else. I will check the Intrusion Prevention log next. Thanks for the help.
Unfiltered HTML