Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - croberti

Pages1
#1
General Discussion / Proxy Access Control List
March 13, 2017, 02:56:25 PM
I want allow access only to some sites, so I enabled the "Transparent HTTP proxy" and I put this in WhiteList:
   
    http://mailserver.domain.it
    https://mailserver.domain.it

If I don't put anything in BlackList all works but users can navigate everywhere; if I put "." or "^." in Black list all other site are blocked but only the http site in WL works, the https return:

    The following error was encountered while trying to retrieve the URL: https://2.xx.xxx.xx/*

    Access Denied.

    Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.

why is this happening?

Bye, Claudio.
#2
General Discussion / Re: Proxy with HTTPS
March 13, 2017, 09:56:42 AM
It turned out that the problem was not with https but with white and black lists in ACL.
I want to allow only some site in the form of http://*.domain.com/* and https://*.domain.com/*, can someone help me with white and black lists in ACL. I found that ^. in black list block all site, but then also white listed sites are blocked.

Bye, Claudio.
#3
General Discussion / Re: Proxy with HTTPS
March 10, 2017, 05:20:58 PM
I tried to import this way but nothing changed, hope someone have some ideas.
Thanks anyway.

Claudio.
#4
General Discussion / Re: Proxy with HTTPS
March 10, 2017, 04:53:10 PM
Yes, I followed the guide and tried installing the certificate in OS (Win 10, right click then install) and in browser but nothing worked.
With an HTTPS site it propose me to acquire the certificate but then it say

>The following error was encountered while trying to retrieve the URL: https://x.xx.xxx.xx/*
>
>   Access Denied.
>
>Access control configuration prevents your request from being allowed at this time. Please contact your service >provider if you feel this is incorrect.

like it was not in whitelist, but the same site is accessed well in HTTP.

Thanks, Claudio.
#5
General Discussion / Proxy with HTTPS
March 10, 2017, 04:13:52 PM
Hi, I'm new to OPNsense and I'm trying to use it and its proxy to allow web access to users only to some site and the most important use HTTPS protocol.
Unfornatly it does not work, every time I receive the message that the connection is no secure (does not accept exception) or not event propose exception saying the site is using HSTS (HTTP Strict Transport Security).
I attached my configurarion, hope someone can help me.

Bye, Claudio.
Pages1