Hot!FortiGuard Block Page Missing Objects

Author
AtiT
Gold Member
  • Total Posts : 398
  • Scores: 24
  • Reward points: 0
  • Joined: 2012/04/18 12:13:27
  • Location: Prague / Czech Republic
  • Status: offline
2016/05/12 10:27:21 (permalink) 5.2
0

FortiGuard Block Page Missing Objects

Hello,
I have a problem with the FortiGate-80D OS version 5.2.7.
When I block a HTTP page everyting is OK. When I block the same page but HTTPS the objects on the page (images) are missing.
 
HTTP example:
http://bwin.com/

Attached Image(s)


AtiT
--------------------
NSE 8, CCNP R+S
#1

4 Replies Related Threads

    AtiT
    Gold Member
    • Total Posts : 398
    • Scores: 24
    • Reward points: 0
    • Joined: 2012/04/18 12:13:27
    • Location: Prague / Czech Republic
    • Status: offline
    Re: FortiGuard Block Page Missing Objects 2016/05/12 10:28:37 (permalink)
    0
    HTTPS example:
    https://bwin.com/
     

     
    Anyone has a clue what is happening?
    For HTTPS inspection I am using a self-signed CA certificate from Windows AD.
    Using the built-in FortiSSL certificate everything is working well.
    post edited by AtiT - 2016/05/12 10:30:01

    Attached Image(s)


    AtiT
    --------------------
    NSE 8, CCNP R+S
    #2
    AtiT
    Gold Member
    • Total Posts : 398
    • Scores: 24
    • Reward points: 0
    • Joined: 2012/04/18 12:13:27
    • Location: Prague / Czech Republic
    • Status: offline
    Re: FortiGuard Block Page Missing Objects 2016/05/12 11:45:00 (permalink)
    0
    Ok it seems that it is something to do with Internet explorer, on Firefox everything looks good.

    AtiT
    --------------------
    NSE 8, CCNP R+S
    #3
    AtiT
    Gold Member
    • Total Posts : 398
    • Scores: 24
    • Reward points: 0
    • Joined: 2012/04/18 12:13:27
    • Location: Prague / Czech Republic
    • Status: offline
    Re: FortiGuard Block Page Missing Objects 2016/05/13 00:56:31 (permalink)
    0
    I found the problem, I had to set the same certificate used in SSL inspection under the user settings:
     
    config user setting
        set auth-ca-cert "certificate-name"
    end

    AtiT
    --------------------
    NSE 8, CCNP R+S
    #4
    AtiT
    Gold Member
    • Total Posts : 398
    • Scores: 24
    • Reward points: 0
    • Joined: 2012/04/18 12:13:27
    • Location: Prague / Czech Republic
    • Status: offline
    Re: FortiGuard Block Page Missing Objects 2017/10/07 03:25:35 (permalink)
    0
    Hello,
    we are experiencing the same problem again, but now it does not matter whether HTTP or HTTPS and not related to browsers.
    It seems that bad URL is generated for some reasons.
     
    I made some tests and find the sometimes "good" URLs and simetimes "bad" URLs are generated:
    OK
    http://url.fortinet.net/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
    http://url.fortinet.net/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
    http://url.fortinet.net/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
    http://url.fortinet.net:80/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
    http://url.fortinet.net:8008/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH

    NOT OK
    http://url.fortinet.net:8/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
    http://url.fortinet.n/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
    http://url.fortinet.ne/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH
     
    It is tested on FortiGate-60E and FortiOS 5.6.2.
    Does anyone know why different URL is generated every time?
    I can browse the http://url.fortinet.net/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH  and I can see all the icons, but URL http://url.fortinet.net:8/XX/YY/ZZ/CI/MGPGHGPGPFGHCDPFGGOGFGEH  does not exists.
     
    Is it a bug?
     
     

    Attached Image(s)


    AtiT
    --------------------
    NSE 8, CCNP R+S
    #5
    Jump to:
    © 2017 APG vNext Commercial Version 5.5