This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About TDC
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About TDC
05-07-2018
14Posts
1Like
2Solutions
May 07, 2018Last Visited
User
Activity
User
Profile
Latest posts by TDC
| Subject | Views | Posted |
|---|---|---|
| 1749 | 05-29-2014 01:51 PM | |
| 1835 | 05-28-2014 05:50 PM | |
| 1978 | 04-01-2013 03:37 PM | |
| 2081 | 03-27-2013 05:20 PM | |
| 2557 | 02-24-2013 02:17 PM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 1 Like | 05-29-2014 01:51 PM |
User Badges
Community Statistics
| Member Since | 04-25-2012 04:55 PM |
| Date Last Visited | 05-07-2018 01:32 AM |
| Posts | 14 |
| Total Likes Received | 1 |
05-29-2014
01:51 PM
1 Kudo
Hi All I managed to fix this by creating a new zone and interface and reconfiguring the gateway to use the new interface etc. As soon as this was committed the Source User started showing up again. I then just changed the policy rules to use the new zone and service was resumed. Thanks for reading. Alan
... View more
04-01-2013
03:37 PM
Hi bulent and achitwadgi Thanks for the replys. Sorry for not replying sooner but its been a long weekend. Yes, I chose Outlook-web, SSL and Web-Browsing. All traffic gets seen as SSL to port 443. I'm not using a certificate at the moment and yes the traffic gets seen going to the FQDN of the server (thanks for the info on the pulling of the CN from the cert) so I'll look at adding SSL decryption to pop open the traffic and see if that helps. I noticed that the logs generated indicated that the URL being seen is the FQDN of the server without the '/ecp' or '/owa/' so the path seems to being dropped or ignored on the request. In my custom URL filter I include the path so when I look the logs the URL is listed as 'unknown'. When I removed the path from the URL in the custom filter it gets clasified correctly as the custom URL. I'll continue to look at the SSL decryption and how that will help but if anyones got any ideas why the paths are being ignored I'd love to here them. Cheers for all the support. Alan
... View more
02-24-2013
02:17 PM
Correct. The one think that the firewall won't do is 'publish' OWA in the sense that ISA does (its not a reverse proxy in that sense). However, with the SSL cert the firewall can decrypt the data as it passes by to ensure there are no hidden nasties. Also with what Kelly mentioned, you can control what web sites are being hit to ensure only the ones you want to publish (again not in the ISA sense) are the only ones available - still trying to get the fine control working. I will admit, I still get a warm fuzzy feeling publishing OWA/OMA via ISA as its not exposing the Exchange server directly to the big bad web but then again its using ISA and comparing that to our PA-500 its obvious the Pa-500 is in a different league.... Cheers Alan
... View more
09-23-2012
09:08 PM
Hi sdurga Many thanks for taking the time to test this out. I'm contacting our Premium Support partner now. Cheers Alan
... View more
09-18-2012
01:20 AM
Hi Got it working. I analysed a working session in ISA and noted that when the Fortigate unit was in place the source IP (according to ISA's logs) was that of the firewalls DMZ interface (in this case 192.168.20.1) and not the original source IP (obviously a public address). I therefore concluded that the fortigate was somehow NATting the source address as well as the destination. Modifying my DNAT rule to include translating the source (dynamic-ip-and-port) to that of the DMZ interface caused ISA to work as before. I guess thats why ISA was dropping everything as being spoofed, it wasn't expecting to see the original source IP on a network of 192.168.20.0/24. Anyway, a big thanks to Mikeand for his help and suggestions. Cheers Alan
... View more
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks