This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

My skype can't connect

HEY please advice how i can allow skype through the astaro firewall. funny enough i have allowed no control on skype and still cant connect

help guys!!

cheers!!

This thread was automatically locked due to age.

0 muddassirahmed over 14 years ago

@chamku421 : The default port for SOCKS is 1080. Almost all clients have implemented this default port setting, so it normally does not have to be configured.

@Claudio :
on ASTARO , To configure the SOCKS proxy:

go to Network Security Tab > Advanced > SOCKS proxy tab >

On the SOCKS Proxy tab, enable the SOCKS proxy with either the enable button or the traffic light switch (status icon).

The status icon turns green and the SOCKS Proxy Options area becomes editable.

Make the following settings:
Allowed Networks: Select the networks that should be allowed to use the
SOCKS proxy.
Enable User Authentication: If you select this option, users must provide a
username and password to log in to the SOCKS proxy.
Without user authentication, the SOCKS proxy can be used with both
the SOCKS 4 and SOCKS 5 protocols. When user authentication is selected,
only SOCKS 5 will work.
Because only SOCKS 5 supports user authentication, SOCKS 4 is automatically disabled.
Allowed Users: Select the users or groups that should be allowed to use
the SOCKS proxy.

Click Apply.
Your settings will be saved.

Hope this was helpful :-)
Cancel
Vote Up 0 Vote Down

Cancel
0 weeds_67 over 11 years ago

Hi Sir/Maam,

I am a newbie on Astaro UTM, and seeking your help since skype is not working in transparent mode https enabled. I've already tried using socks5 both on ASG and skype but to no avail user cannot sign in.

Thanks in advance.

BR,
Francis
Cancel
Vote Up 0 Vote Down

Cancel
0 weeds_67 over 11 years ago

Hi Sascha,

My I inquire if in ASG320 http/s deep scanning enabled will skype configured socks5 will worked?

BR,
Francis
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 11 years ago

You should not have an issue if you configure as in the attached screencap:

Cheers - Bob

PS I notice that you asked this same question on two other threads, so I deleted those duplicate posts for you.

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 weeds_67 over 11 years ago

Sir Bob,

Still skype is not connecting. Below is my setup and socks log:

ASG320 act as SPAN device which is in access mode for UTM only
firewall is any any
disabled IPS for testing
configured socks on both ASG320 and skype

2013:11:12-02:14:54 asg320-2 sockd[6559]: dante/server v1.1.19 running
2013:11:12-02:14:54 asg320-2 sockd[6566]: created new iochild
2013:11:12-02:14:54 asg320-2 sockd[6564]: created new requestchild
2013:11:12-02:14:54 asg320-2 sockd[6562]: created new requestchild
2013:11:12-02:14:54 asg320-2 sockd[6561]: created new negotiatorchild
2013:11:12-02:14:54 asg320-2 sockd[6565]: created new requestchild
2013:11:12-02:14:54 asg320-2 sockd[6563]: created new requestchild
2013:11:12-03:00:16 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4321 -> 172.20.2.36.1080
2013:11:12-03:00:16 asg320-1 sockd[28903]: pass(4): udp/udpassociate [: 0.0.0.0.4319 -> 0.0.0.0.0
2013:11:12-03:00:16 asg320-1 sockd[29358]: created new requestchild
2013:11:12-03:00:20 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4325 -> 172.20.2.36.1080
2013:11:12-03:00:20 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4325 -> 157.56.52.29.40027
2013:11:12-03:00:20 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4325 -> 157.56.52.29.40027: Connection refused
2013:11:12-03:00:23 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4330 -> 172.20.2.36.1080
2013:11:12-03:00:23 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4330 -> 157.55.235.155.40031
2013:11:12-03:00:23 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4330 -> 157.55.235.155.40031: Connection refused
2013:11:12-03:00:26 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4335 -> 172.20.2.36.1080
2013:11:12-03:00:26 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4335 -> 157.55.130.174.40003
2013:11:12-03:00:26 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4335 -> 157.55.130.174.40003: Connection refused
2013:11:12-03:00:29 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4340 -> 172.20.2.36.1080
2013:11:12-03:00:29 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4340 -> 64.4.23.155.40012
2013:11:12-03:00:29 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4340 -> 64.4.23.155.40012: Connection refused
2013:11:12-03:00:33 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4345 -> 172.20.2.36.1080
2013:11:12-03:00:33 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4345 -> 157.55.56.157.40019
2013:11:12-03:00:33 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4345 -> 157.55.56.157.40019: Connection refused
2013:11:12-03:00:36 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4350 -> 172.20.2.36.1080
2013:11:12-03:00:36 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4350 -> 111.221.74.42.40011
2013:11:12-03:00:36 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4350 -> 111.221.74.42.40011: Connection refused
2013:11:12-03:00:39 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4355 -> 172.20.2.36.1080
2013:11:12-03:00:39 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4355 -> 157.55.56.147.40029
2013:11:12-03:00:39 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4355 -> 157.55.56.147.40029: Connection refused
2013:11:12-03:00:42 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4360 -> 172.20.2.36.1080
2013:11:12-03:00:42 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4360 -> 111.221.77.170.40006
2013:11:12-03:00:42 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4360 -> 111.221.77.170.40006: Connection refused
2013:11:12-03:00:46 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4365 -> 172.20.2.36.1080
2013:11:12-03:00:46 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4365 -> 157.55.235.173.40014
2013:11:12-03:00:46 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4365 -> 157.55.235.173.40014: Connection refused
2013:11:12-03:03:24 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4373 -> 172.20.2.36.1080
2013:11:12-03:03:24 asg320-1 sockd[28903]: pass(4): udp/udpassociate [: 0.0.0.0.4371 -> 0.0.0.0.0
2013:11:12-03:03:37 asg320-1 sockd[28902]: pass(1): tcp/accept [: 172.20.4.14.4377 -> 172.20.2.36.1080
2013:11:12-03:03:37 asg320-1 sockd[28903]: pass(4): tcp/connect [: 172.20.4.14.4377 -> 157.56.52.29.40027
2013:11:12-03:03:37 asg320-1 sockd[28903]: pass(4): tcp/connect ]: 172.20.4.14.4377 -> 157.56.52.29.40027: Connection refused
2013:11:12-03:03:37 asg320-1 sockd[28898]: sockdexit(): terminating on signal 15
2013:11:12-02:22:28 asg320-2 sockd[6559]: sockdexit(): terminating on signal 15

Thanks in advance and sorry for the duplicate post.

Francis
Cancel
Vote Up 0 Vote Down

Cancel
0 weeds_67 over 11 years ago

Hi All,

I finally figured it out how it works. I had to open ports on the perimeter firewall. Still want to thank you Sir Bob
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 11 years ago

I had to open ports on the perimeter firewall.

Thanks, Francis, for posting your solution. That will help the next person with the same lines in their Socks log.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel
0 dcorep over 9 years ago in reply to chamku421

Created rule :
Any -------> SIP over SSL (5061) and SIP (5060) --------> Any

Issue resolved. [:)]
Cancel
Vote Up 0 Vote Down

Cancel