Trouble with Web Filtering.. maybe

Without knowing what your running your proxy as, transparent/standard etc etc and even if your wireless is surfing through the proxy? I'd check to see if the port is allowed via the target services

Web protection - Filtering Options - Misc

Add 8081 and see if that works. But there should be a log entry. I'd also try running that through the policy helpdesk and see if it tells you  "Target service not allowed"

Thanks for the reply. I have tested it and the domain is allowed and the actual URL link to the file is allowed. I have no proxy configured, (or don't know where to look) just took the setup wizard with no content filtering enabled.

I don't know where else to look to try and find what could be blocking the file. 

TIA

statuscode="302" is a redirect isnt it? Might not be the URL you think it is, either way a log is somewhere telling you whats going on

The website we log into is a Flash site, then we click the shipment we want to view, then click BOL. This should pull in a new window.

I enabled the firewall rules like you said.

I turned off content filtering and tried, failed.

I created a "firewall off" rule, ( ANY Source using ANY service to ANY destination). Set it at top. Did not work.

The Wireless is setup on a different IP scheme than Hard Wired. 

Here is Web filter log.

2017:01:12-23:31:39 bonesafety httpproxy[9397]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="pass" method="GET" srcip="192.168.2.12" dstip="23.96.6.76" user="" group="" ad_domain="" statuscode="302" cached="0" profile="REF_DefaultHTTPProfile (Default Web Filter Profile)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="213" request="0xd592000" url="tms.eshipmanager.com/.../printdocument.cfm referer="tms.eshipmanager.com/index.cfm error="" authtime="0" dnstime="0" cattime="465" avscantime="5806" fullreqtime="33723501" device="0" auth="0" ua="Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36" exceptions="" category="105" reputation="neutral" categoryname="Business" application="flash" app-id="1128" sandbox="-" content-type="text/plain"

Weird. Thanks again.

With the wifi and hardwire being on different subnets, that is probably your key. Does each one use the same DNS? Different? Are Each one of these subnets listed under the Allowed networks for your default web filter profile? Your web exception was content filtering only? What about antivirus, extensions filtering? Test everything. Again, this is more than likely your setup but you've yet to state anything about your proxy setup and your default web profile. 

rsenio said:

With the wifi and hardwire being on different subnets, that is probably your key.

Does each one use the same DNS? Different?

Other than the pic below where would I see specific DNS entries for these networks?

Are Each one of these subnets listed under the Allowed networks for your default web filter profile?

No only the Internal Network. I have disabled the Web Filtering and it will still not work.

Your web exception was content filtering only?What about antivirus, extensions filtering?

  

Test everything. Again, this is more than likely your setup but you've yet to state anything about your proxy setup

 

and your default web profile. Don't know where to find that info sry

 

Basic networking here. DNS is given out to your PC's via DHCP which you setup I assume? The first screenshot you provided shows what network is allowed to use the UTM as a DNS server, not at all what we're asking about. So each hardwired and wifi use the same DNS settings? They both use the UTM as a gateway, and both use the UTM as DNS? What is providing DHCP for your hardwired clients? What is providing DHCP for your wifi? Give us the DHCP scope info for both.

If you disabled web filtering, then you were on the exact screen that shows what networks are allowed to use the proxy and how your proxy is setup. The last screenshot has nothing to do with what we're asking, nor does it have to do with web filtering/proxy.

DHCP is provided by the UTM for both the Internal and Wireless networks.

Just tell me what you would like to see.

What IP is 172.16.28.1? Also according to your screenshot, only the internal network is allowed to use the proxy (I assume the "internal network" definition is the 192.168.2.X subnet)

rsenio said:

What IP is 172.16.28.1? WLAN0

Also according to your screenshot, only the internal network is allowed to use the proxy (I assume the "internal network" definition is the 192.168.2.X subnet)

Correct, everything was done via wizard.

 

So hardwire is using the proxy and wireless isn't? Which would make sense since wifi works from what you say. Especially since it's a guest network, I would think it segregates the two so that your internal network isn't exposed. I've never used the wizard, I'm not sure what it sets up and what it doesn't. Something is filtered somewhere, either web filtering or firewall for your internal network. Again, there's gotta be a log telling you

This worked before you installed the utm?

This worked before you installed the utm?