Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 3 subscribers
  • Views 9407 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

HTTP / HTTPS traffic does not pass the proxy

Lightflasher

Hello everyone,

I have the problem that traffic from two applications does not pass the proxy. The proxy runs in transparent mode without authentication. The proxy is configured for HTTP / HTTPS. The traffic is not visible in the proxy log, the traffic appears directly in the firewall log and is blocked here.

Services etc. have already been re-started. Does anyone else have an idea?

greetings
Kevin



This thread was automatically locked due to age.
Parents
  • +1

    Hi Kevin,

    Check in the packetfiler.log which provide more details about the drop. Alongside, capture http.log for the source and destination IP to check if it is dropped due to any inside filter.

    Thanks

    Sachin Gurung
    Team Lead | Sophos Technical Support
    Knowledge Base  |  @SophosSupport  |  Video tutorials
    Remember to like a post.  If a post (on a question thread) solves your question use the 'This helped me' link.

  • 0 in reply to sachingurung

    Hi Sachin,

     

    first thanks for your replay.

     

    But the question is why the traffic does not pass the proxy (web-protection). Web protection is configured for the whole /24 network for 443,80 and more, so why it will direct go to the packet filter und not to the web proxy?

     

    Why the traffic is blocked by the normal packet filter is not the question, here is no rule to allow http or https traffic.

     

    Greetings

  • +1 in reply to Lightflasher

    I think there is a misunderstanding, that traffic you are seeing blocked is because the UTM does not see those packets as part of the current connection/session. You only seeing sync packets being dropped not the actual connection through the http proxy.

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • +1 in reply to Lightflasher

    I think there is a misunderstanding, that traffic you are seeing blocked is because the UTM does not see those packets as part of the current connection/session. You only seeing sync packets being dropped not the actual connection through the http proxy.

    XG115W - v20.0.2 MR-2 - Home

    XG on VM 8 - v21 GA

    If a post solves your question please use the 'Verify Answer' button.

Children
No Data
Unfiltered HTML