Welcome, Guest. Please login or register.
Did you miss your activation email?
Friday 06 December 2024, 06:24:38 am

Login with username, password and session length

Visit the Official Endian Reference Manual  HERE
14261 Posts in 4377 Topics by 6517 Members
Latest Member: Sandro
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  EFW SMTP, HTTP, SIP, FTP Proxy Support
| | |-+  PROXY is available from RED
0 Members and 1 Guest are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: PROXY is available from RED  (Read 16581 times)
alex_t
Full Member
***
Offline Offline

Posts: 15


« on: Tuesday 03 May 2011, 02:13:06 am »

Hi
I have a problem. I'v noteced that proxy is available from RED interface, inspite of all restrictions on firewall.
Even if  I deny system access to port 8080 (proxy port), i see string
INPUTFW:ALLOW:2:l3    eth1    KEY_TCP     70.37.165.109    56118    ff:ff:14:00:03:00     193.85.. 8080
where 193.85.. is my red interface.
It's a big security breach. Does anybody have suggestions?
Logged
alex_t
Full Member
***
Offline Offline

Posts: 15


« Reply #1 on: Saturday 07 May 2011, 02:32:57 am »

and silence  Huh  Sad
Logged
bkarankar
Full Member
***
Offline Offline

Posts: 33


« Reply #2 on: Friday 13 May 2011, 10:00:21 pm »

not sure,

but you can try this

create new access rules,
zone "any"
destination "give ur internet network IP"

deny this.

then u need to modify firewall rule
disable all access with firewall (if not required to bypass proxy) and only allow dns and ping/icmp
now, create another rule in firewall to block all incoming request on 8080, 3128 and 8080

let me know if you find any issue
Logged
Alishba
Full Member
***
Offline Offline

Posts: 12


« Reply #3 on: Monday 16 May 2011, 08:07:31 pm »

Dashquid
fatlossprofessional.co.uk
fatlossprofessional
mobilehelper
securetrip
whichpetcover
google
abc
facebook
craigslist
Logged

alex_t
Full Member
***
Offline Offline

Posts: 15


« Reply #4 on: Monday 13 June 2011, 11:46:12 pm »

2 bkarankar:
which firewall do you mean? outgoing traffic?
I've tried, but - same result, so proxy is available from RED.
But I've noticed, when I switch proxy on, system makes system rule in system access section GREEN->RED:8080 Allow.

Logged
Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.094 seconds with 18 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com