Thread Info
Options
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

port forward for http traffic cuts url

alex85
Hello!
my actual network setup for http traffic is the following:
Intranet –> Gateway (PFSense)--> Squid Proxy -> Internet
All Port 80 Traffic will be forwarded from the PFSense to the Squid by a NAT Port Forward rule. So the Squid is working transparent for the users.
I tried to replace the Squid proxy by the Sophos UTM (Intranet –> Gateway (PFSense)--> Sophos UTM -> Internet). 
If I set the Sophos UTM as proxy in the browser everything works very well but if I try to make a NAT Port Forward for HTTP traffic to the Sophos UTM I get the following error in the browser:
“An error occurred while handling your request
While trying to retrieve the URL:
/topic/325236-pfsense-and-nat 
The content could not be delivered due to the following condition:
Received invalid request from Client 
Your cache administrator is:”

The logs files said the following:

2014:01:05-16:44:30 *** httpproxy[4824]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.2.1" dstip="" user="" statuscode="400" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction=" ()" size="2631" request="0xdfd31b0" url="/local-language-forums/german-forum/46099-proxy-auto-config-funktioniert-nicht.html" exceptions="" error="Received invalid request from Client"

Very interesting is, that if I open the same website with the proxy set in the browser I get the following:

2014:01:05-16:47:50 *** httpproxy[4824]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.2.110" dstip="85.115.22.9" user="" statuscode="200" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="19178" request="0xdfd3330" url="www.astaro.org/.../46099-proxy-auto-config-funktioniert-nicht.html" exceptions="" error="" content-type="text/html"

It seems that something cuts the domain of the url….
Have anyone an idea how to fix this?

Regards
Alex


This thread was automatically locked due to age.