OPNsense Forum
English Forums => Intrusion Detection and Prevention => Topic started by: bob.rjk on July 20, 2021, 02:14:15 pm
-
Hi All,
Having an issue since updating to 21.1.8 with IPS blocking users office 365 installations from staying activated.
I have gone through all the alerts in intrusion detection and cant find the rule blocking this to be able to disable it.
Disabling IPS allows office to activate so a rule must be blocking it even though its not showing in the alerts.
Anyone else having this issue or discovered the rule blocking it ?
-
question: your windows pc - network icon in the task bar - does it show offline or online?
I had this once with one box and had to run the windows network troubleshooting go get over that issue...
I first also thought it might be something like Sensei or PiHole, but since other similar setup PCs did not show that issue and the only difference was the network icon - I had to fix it with network troubleshooting, but it takes some time until windows shows your network online (connected to the internet again)
-
Thanks for your response, no issues with network in windows.
Also this is happening at many different sites and the only way to activate office 365 is to disable IPS.
As soon as its disabled closing and re-opening word or excel activates the license.
I have tried to manually activate with IPS enabled and office apps show an error not being able to activate due to network problems.
I have checked the Intrusion Detection alerts when manually trying to activate and there are no entries to show it being blocked. Its definitely IPS blocking it but I have no way to stop it.
-
Just to update, after testing by disabling rule sets one by one it turned out to be ET open/emerging-exploit blocking the activation.
I have twelve different sites all with the same issue and none of them show any alerts from ET open/emerging-exploit making it impossible to find the rule within the set actually blocking the connection.
Anyway I hope this helps anyone with the same issue.
-
Have your Windows been updated to the latest version? If you have recently upgraded your Vin 10 to Vin 11, you may have some problems. All my friends experienced a slight shock when switching to the update because even when they right-clicked on the desktop, many functions of the previous Win10 disappeared, and they could not navigate the new system usually. I read on impkeys.com (https://impkeys.com/) that for the good optimal performance of Microsoft office 2019, WIN10 is enough, in which you do not get errors. Try switching back to Win 10 or reinstalling the Office 365 program and ensuring that your configuration is original and not pirated.