Local Web gets denied/refused.

Email lists > Endian Firewall developers

Thread: Local Web gets denied/refused.

Search this list only Search all lists
Local Web gets denied/refused.
	2006-07-16 23:43:41
Bugs item #1488502, was opened at 2006-05-15 08:18 Message generated for change (Comment added) made by finchwizard You can respond by visiting: https://sourcefo rge.net/tracker/?func=detail&atid=725139&aid=1488502 &group_id=132104 Please note that this message will contain a full copy of the comment thread, including the initial issue submission, for this request, not just the latest update. Category: Firewall Group: None Status: Closed Resolution: Invalid Priority: 5 Submitted By: Finchwizard (finchwizard) Assigned to: Raphael Lechner (xedo) Summary: Local Web gets denied/refused. Initial Comment: I have a EFW. Red has a Public Internet IP. Green has a local address (192.168.0.x) I have an email server which is behind our Cisco NAT, which is on a Green address. (192.168.0.x) When trying to get to the webmail through EFW. It gets Access Denied if the content Filtering is enabled. And gets a Connection refused if it is turned off. RC8 did not do this from memory, and I think it's some iptable rule that could be preventing it. ------------------------------------------------------------ ---------- >Comment By: Finchwizard (finchwizard) Date: 2006-07-17 09:43 Message: Logged In: YES user_id=1482416 So I have seen in the FAQ, the answers came far too late then when asked. I do see why for multiple interfaces of the Firewall, but with a simple setup of Red/Green, I don't think it should still have that effect. IPCOP doesn't do it, Smoothwall doesn't do it, there was another firewall out there as well that doesn't do it (Can't remember name), even the earlier RC8 didn't do it. I know there are settings in the browser, but when you already have a huge set of computer, it's not really an option. And even though it's local, it still gives you the option to block the user from accessing it. Finchwizard ------------------------------------------------------------ ---------- Comment By: Peter Warasin (peter-endian) Date: 2006-07-17 09:34 Message: Logged In: YES user_id=1159983 this is no issue and has been explained within the forum. basically it is not possible to access ip addresses of local networks through the proxy if they are allowed in network based access control. otherwise local networks could access all hosts behind the allowed ones. you can solve this by exclude local ip addresses in your browser configuration, or you could use the automatic browser configuration which endian firewall provides. ------------------------------------------------------------ ---------- Comment By: Finchwizard (finchwizard) Date: 2006-06-14 08:21 Message: Logged In: YES user_id=1482416 Xedo, I have changed the ports in: /etc/rc.d/rc.httpd --> Changed from Ports 80 to 81 /etc/httpd/conf/httpd.conf --> Didn't even have any ports to change. /etc/httpd/conf.d/gree.conf --> Changed Listen Address to :81 instead of : 80 Restarted httpd. This has made no difference to the situation, please re-read original post, I am still getting denied local web traffic through Endian to other webservers. Using Squid with Authentication and Content Filtering. ------------------------------------------------------------ ---------- Comment By: Nobody/Anonymous (nobody) Date: 2006-06-13 20:38 Message: Logged In: NO Change the port to what? And how would changing the port on the EFW box let me get to the website on the other server? ------------------------------------------------------------ ---------- Comment By: Raphael Lechner (xedo) Date: 2006-06-13 19:26 Message: Logged In: YES user_id=202863 Please change the port in the following files: /etc/rc.d/rc.httpd /etc/httpd.conf /etc/httpd/conf/green.conf and restart the webserver with the command /etc/rc.d/rc.httpd thank you ------------------------------------------------------------ ---------- Comment By: Nobody/Anonymous (nobody) Date: 2006-05-26 22:53 Message: Logged In: NO We have problem with local web when enable Squid We have made forwarding port 80 to our Internal webserver port 80 The webserver is working fine if Squid is disabled but when squid was enable, then we can't connect to webserver anymore I had tried to chang to forwarding port 81 to our Internal webserver port 80->then connect to Internal Web via port 81 ->it is working OK So I suppose this is problem with default port 80 of Internal Webserver of Endian Firewall Please advise how to change the default port 80 of Internal Webserver of endidan Firewall to another port Thank you tuanndyahoo.com ------------------------------------------------------------ ---------- You can respond by visiting: https://sourcefo rge.net/tracker/?func=detail&atid=725139&aid=1488502 &group_id=132104 ------------------------------------------------------------ ------------- Using Tomcat but need to do more? Need to support web services, security? Get stuff done quickly with pre-integrated technology to make your job easier Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo http://sel.as-us.falkag.net/ sel?cmd=lnk&kid=120709&bid=263057&dat=121642 _______________________________________________ Efw-devel mailing list Efw-devellists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-devel

[1]

about | contact Other archives ( Real Estate discussion Medical topics )

Mailing lists