|
Title: 2.3 Backup with 2.3 RC1 Proxy blocks everything Post by: AAAAA on Thursday 17 December 2009, 11:44:20 pm After a new installation with release 2.3 and a backup from 2.3 rc1 the proxy blocks everything. Furthermore havp is down. Thers is no chance to get the proxy running, no matter if transparent or non-transparent mode is used and no matter if whitelist/blacklist are available in /var/efw/havp/.
Solution: Don`t backup 2.3 with 2.3 rc1. Configure everything again and the proxy works fine. Setup: transparent mode, port 8080, Clients are configured to use proxy wit port 8080 or use proxy-url "http://<IP-Endian-Green-Zone>/proxy.pac" Title: Re: 2.3 Backup with 2.3 RC1 Proxy blocks everything Post by: gyp_the_cat on Friday 18 December 2009, 09:02:36 pm Hi AAAA, is this something similar to:
I had the same issue with 2.2 final. I ended up fixing it by unchecking the "Activate antivirus scan" box under CONTENT FILTER tab in HTTP proxy. Then make sure DEFAULT POLICY tab, it says "content filter only" and is enabled for all day long. I think this is a bug with Endian. or This is a Bug in HAVP service on Endian 2.2 Final, to solve this problem you need fix two broken symbolic links: /etc/havp/whitelist and /etc/havp/blacklist # touch /var/efw/havp/whitelist # touch /var/efw/havp/blacklist # chown nobody.nobody /var/efw/havp/whitelist # chown nobody.nobody /var/efw/havp/blacklist # reboot After restart you can use Antivirus module, hi is working again ;) ps: i'm not speak english...sorry my bad english :-\ Or a seperate issue altogether? Title: Re: 2.3 Backup with 2.3 RC1 Proxy blocks everything Post by: AAAAA on Friday 18 December 2009, 09:43:04 pm Hi,
i think it's a seperate issue, because the solutions from "Ryudo" and "The EricHarris" did not solve my problem, only a completley new setup of 2.3 solved my problem. Title: Re: 2.3 Backup with 2.3 RC1 Proxy blocks everything Post by: tnol2 on Monday 28 December 2009, 10:52:42 pm The problem persist. Two solutions posted above not work. My Endian is 2.3, configured from zero, but the http proxy block all. Any idea?
Title: Solved... Post by: tnol2 on Wednesday 30 December 2009, 02:56:35 am Use tcpdump on its output interface, and check with which IP you are going to the Internet when the proxy is enabled. And then create a NAT to translate this address to a valid IP on the Internet.
In my case the command I used was (without the quotes): "tcpdump-i eth1 dst 200.154.56.80" Then my computer I tried to access the IP 200.154.56.80 by the browser, there desconbri my IP output. And I saw that the IP, although valid, was not configured on the router. So I created a NAT for this IP, converting it to the IP that was used for direct, before the use of Proxy. |