This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

web request blocked in error

I have an issue with our web proxy. I have an internal site that is accessible by a select range of external IPs. They work without issue. I have an internal VLAN that should be able to access the site as well, but when attempting to using the transparent proxy, I get the following message:

2016:03:09-11:15:47 commerce httpproxy[21669]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="10.100.X.XXX" dstip="EXTERNAL IP" user="" ad_domain="" statuscode="502" cached="0" profile="REF_HttProPubliAcces (Public Access)" filteraction="REF_HttCffPubliAcces (Public access)" size="2494" request="0xd40aa000" url="http://public.dns.com/mu" referer="" error="Connection refused" authtime="0" dnstime="953" cattime="0" avscantime="0" fullreqtime="2136" device="0" auth="0" ua="Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.1; WOW64; Trident/7.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; Media Center PC 6.0; .NET4.0C; .NET4.0E)" exceptions="av,auth,content,url,mime,cache,fileextension,size,patience"

Disabling the proxy allows the site to load properly from the VLAN. Clients are getting the "An error occurred while handling your request" message saying the connection was refused.

Any ideas on how to get deeper into the process to diagnose it? I have added exceptions to the site, added it to the list of exceptions to the transparent proxy list, etc. Nothing I do seems to get it accessible.

Thanks

Adam



This thread was automatically locked due to age.
Parents Reply
  • Then you need the part about the Full NATs for traffic originating inside your LAN.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data