Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 1 subscriber
  • Views 6027 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Google Playstore not open when 'HTTPS Transparent Mode' enable

Amrish
Hello,

Currently I have faced some issue to open Google playstore in Android mobile.

In Web filtering, If I tickmark "Do not proxy HTTPS traffic in Transparent Mode" (snap-1 attached), then in android mobile phone google playstore is open but if I untick "Do not proxy HTTPS traffic in Transparent Mode" and Tick "URL filtering only" (snap-2 attached), then playstore will not open in any android mobile phone.

Anyone faced this kind of issue before. I m in trouble right now...!!![:S]


This thread was automatically locked due to age.
  • 0
    Please show the line from the Web Filtering log where the Proxy blocked the traffic.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Hello BAlfson,

    Thanks for reply me, 

    Here I have attached my Web Filtering log for reference. I have found that Google Playstore block because of category is "uncategorized" but I could not understand why Google Playstore open when 'Proxy HTTPS traffic' is disable?

    Thanks,
  • 0
    If you have "Do not proxy HTTPS" then the Web Protection (the proxy) will not look at any HTTPS traffic (over port 443).  Instead you likely have a Firewall rule that says Internal -> Internet HTTPS (or "Web Browsing") is allowed.
  • 0
    Hello Michael,

    Thanks for your reply,

    I could not get your answer properly. In my case, if I have "Do not proxy HTTPS" (snap-1 attached), then Google playstore open in android mobile but if I not tick "Do not proxy HTTPS" (snap-2 attached) then Google playstore in not open.
  • 0
    Not sure what you want to achieve, but in my setup I also have allowed TCP and UDP port 5228 for various Google services, maybe you also need to allow traffic out on these ports.

    Managing several Sophos firewalls both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

  • 0
    Amrish, I realize that this may be a language/culture issue, but I asked for a single line,  not a complete file.  You should not expect that your fellow members here will search your file to find the line related to your issue - that is the job of the person looking for help.  Please show that line so that we can help you.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Thank you BAlfson for assist me to present my questions on BB,

    Here below the line which I have found in Web Filtering log,

    Line 191601: 2015:07:22-14:54:20 Swaminarayan_Aksharpith-1 httpproxy[6980]: id="0060" severity="info" sys="SecureWeb" sub="http" name="web request blocked, forbidden category detected" action="block" method="GET" srcip="192.168.25.101" dstip="" user="prakash" ad_domain="" statuscode="403" cached="0" profile="REF_HttPro25Edtp (25 - E.DTP)" filteraction="REF_HttCff25Edtp (25 - E.DTP)" size="3208" request="0x14ae9000" url="content.bookmyshow.com/.../
  • 0
    And parsing the line gives the answer:

    name="web request blocked, forbidden category detected" 
    action="block" 
    statuscode="403" 
    url="content.bookmyshow.com/.../ET00009119.jpg" 
    reason="category" 
    categoryname="Uncategorized" 

    You are blocking uncategorized, and content.bookmyshow.com happens to be uncategorized.  You can stop blocking uncat and/or go to trustedsource.org and request that site to change categories.
  • 0
    Thanks for showing that line, Amrish.

    Another option would be to:
      Go to TrustedSource - Check Single URL, as Michael suggests, and suggest a category for http://content.bookmyshow.com.  In my experience, it usually takes about four hours to take effect.
    • On the 'Websites' tab of 'Filtering Options', create a new entry that includes content.bookmyshow.com and assigns it a tag of "Temporary."
    • Create a 'URL filter' Exception for websites that you have tagged with "Temporary."
    • Occasionally, review the sites tagged "Temporary" and remove the entries where trustedsource.org has created a satisfactory categorization.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Thanks u so much BAlfson, Michael Dunn and Apijnappels for support me.
Unfiltered HTML