Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 3 subscribers
  • Views 9402 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HTTP / HTTPS traffic does not pass the proxy

Lightflasher

Hello everyone,

I have the problem that traffic from two applications does not pass the proxy. The proxy runs in transparent mode without authentication. The proxy is configured for HTTP / HTTPS. The traffic is not visible in the proxy log, the traffic appears directly in the firewall log and is blocked here.

Services etc. have already been re-started. Does anyone else have an idea?

greetings
Kevin



This thread was automatically locked due to age.
  • +1

    Hi Kevin,

    Check in the packetfiler.log which provide more details about the drop. Alongside, capture http.log for the source and destination IP to check if it is dropped due to any inside filter.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Hi Sachin,

     

    first thanks for your replay.

     

    But the question is why the traffic does not pass the proxy (web-protection). Web protection is configured for the whole /24 network for 443,80 and more, so why it will direct go to the packet filter und not to the web proxy?

     

    Why the traffic is blocked by the normal packet filter is not the question, here is no rule to allow http or https traffic.

     

    Greetings

  • +1 in reply to Lightflasher

    I think there is a misunderstanding, that traffic you are seeing blocked is because the UTM does not see those packets as part of the current connection/session. You only seeing sync packets being dropped not the actual connection through the http proxy.

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Lightflasher

    Hi, and welcome to the UTM Community!

    Ian's probably right, but without the additional info Sachin requested, we can't help you understandwhat's happening or how to troubleshoot other problems with your configuration of the UTM.

    Alone among the logs, the Firewall Live Log presents abbreviated information in a format easier to read quickly.  Usually, you can't troubleshoot without looking at the corresponding line from the full Firewall log file.  Please post one line corresponding to one of those above.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • +1

    Thanks sachingurung, rfcat_vk and BAlfson,

    I checked all settings again and found the problem. There was I match in the transparent-mode-skip-list the encountered this error. After I remove the IP-Range to skip from Akamai AS the applications are working without an error.

    Thanks.

Unfiltered HTML