Cannot Connect to App Store Since Upgrading to iOS v11

Hi guys!

I can confirm, I have the VERY same issue. iPhones can connect to the Apple App Store (most of the time), but iPad's can not!
What I can say is: Switching off Intrusion Prevention allows the iPads to connect. I was unable to find either what exactly is being blocked nor which hosts/networks to define to create exceptions for the iOS devices. Does anyone have the app-store domains? 
My workaround to update all the apps is a pain, I temporarily log in to another access point which is DMZ, outside the UTM Firewall --> works. I then log out of that AP again, back into my network. I have given up finding the issue since I ran out of ideas months ago after spending several evenings without success. So please, any hints?! :)

regards
Andreas

Hi folks,

I will try again, must have pressed a wrong button because the post just vanished.

The fail message indicates that the Mac cannot connect to App store error 1201 or similar which is sort like a DNS issue, unresolved maybe, something blocking it. I do also note that there a tcp rst messages in the logviewer about the same time.  I have increased the timeout to 80,000 but does not seem to have had any affect.

About two days ago my Mac books and the ipad failed to connect to the App store again. I suspect that was an update to the various patterns and some-ones comment about disabling the IPS could be the clue because all of a sudden I have a series of blocked reports in the IPS which doesn't normally happen.

All Macs could reconnect after each one was restarted, I have tried this before without success, the ipad didn't. I have a rule which I enable and disable when the Macs fail to connect, it does have IPS and the Mac's IP addresses. At this stage the ipad was not part of this rule.

The results might seem a bit confusing and inconclusive, they are.

Ian

These observations are on an XG, but the issue appears to be very similar.

Updated iOS on both of our iPads today. Once again, cannot connect to the App Store. 

Has anyone been able to grab a log entry for the failed connection from their Sophos gateway?

Hi,

one of the guys on the XG forum who is having the same issue added *.apple.com.au in his exceptions and my case and apple devices started talking again, he has many.

Ian

Adding the following URL to the Antivirus / Sandstorm / Extension blocking / URL Filter exception list did not resolve the issue for me.

^https?://([A-Za-z0-9.-]*\.)?apple\.com\.au/

Hi busthead,

are you located in Australia? I was saying add *.apple.com.au or even apple.com.au with the suffix being your country.

Ian

v9.509-3 appears to have resolved this issue.

I have similar problem.

I fixed the problem by adding "ocsp.digicert.com" to "Skip Transparent Mode Destination Hosts/Nets".

busthead said:

v9.509-3 appears to have resolved this issue.

 

Hi,

slightly different to you, my iPad and iPhones are all connecting quite happily, but the MAC Book Pro isn't. The error message indicates a DNS issue, which more than likely means apple have added another url to the update list which is not *.apple.com.

Ian