Welcome, Guest. Please login or register.
Did you miss your activation email?
Friday 21 February 2020, 10:37:27 am

Login with username, password and session length

Visit the Official Endian Reference Manual  HERE
13974 Posts in 4258 Topics by 6055 Members
Latest Member: remu
Search:     Advanced search
+  EFW Support
|-+  Support
| |-+  EFW SMTP, HTTP, SIP, FTP Proxy Support
| | |-+  HTTPS filtering NOT working on Proxy NON transparent
0 Members and 0 Guests are viewing this topic. « previous next »
Pages: [1] Go Down Print
Author Topic: HTTPS filtering NOT working on Proxy NON transparent  (Read 6079 times)
Full Member
Offline Offline

Posts: 14

« on: Wednesday 04 February 2015, 01:12:56 am »

Here is my problem.

I have an endian firewal 2.5.1 running on an HP Server Xeon Quad core, 8GB RAM

Suddenly HTTPS filtering no longer works.

For instance, i can't browse http://youtube.com but I CAN browse https://youtube.com

Some more information:

- Port 443 is blocked in firewall, allowed in proxy configuration just like Port 80
- Originally worked as intended. It means something changed and now it doesn't filter https anymore
- There are multiple profiles, some people is allowed to do so, so blocking it with DNS proxy or hosts file is not possible.
- I have another setup very similar to this one, on another site, and works as intended ( filters both http and https versiones of the same website if it's blacklisted)
- I have read other threads with similar problems, but all point out the problem in transparent mode, I am using non transparent and was using it for a while with no problems whatsoever.

Any clue or insights?
Is there something I should look for?

Thanks in advance.
Full Member
Offline Offline

Posts: 14

« Reply #1 on: Friday 06 February 2015, 11:30:09 pm »

Any insights?
Full Member
Offline Offline

Gender: Male
Posts: 31

« Reply #2 on: Wednesday 11 February 2015, 01:37:33 pm »

Endian community 2.5.X does not filter https://youtube.com. What you do is fine by blocking the firewall, but google adds more ip addresses to https://facebook.com https://youtube.com. The work we do is monitor the firewall log and see the ip addresses and add them to the firewall.

These ip addresses have put in outbound firewall to block certain ip addresses.
If you want to block the entire network PROXY DNS is used.
Within these ip addresses are also https://google.com, what I have done is to allow the country just google for example https://www.google.de/


Pages: [1] Go Up Print 
« previous next »
Jump to:  

Page created in 0.047 seconds with 19 queries.
Powered by SMF 1.1 RC2 | SMF © 2001-2005, Lewis Media Design by 7dana.com