Unable To Open Https Secure Site Through Cc-proxy
Nov 16, 2011I am unable to open https secure site through cc-proxy
View 1 RepliesI am unable to open https secure site through cc-proxy
View 1 RepliesIv tried about everything you can find when you google things about not being able to access a particular website but none work checking out all security settings, deleting all cache, disabling security, checking date and time, flushdns, use opendns, try other devices (not one device in my household can get to https pages on this one site), making sure root certificates are updated, bypassing router, unplugging internet and router to ''reset'', trouble shooting with isp, website, ssl issuer, other wildblue users, other website users, other tech forum, checking for virus and malware and I'm sure there's more that I can't recall at the moment. I am not the only user of this website with a problem and all us having a problem have satellite internet (different providers), however not everyone with my satellite internet (wildblue thru dishnetwork) has this problem as I have asked here...some do some don't Wildblue ''blocking'' a website's ssl? - WildBlueWorld.com Forums
I can go to the website toontown.com but I can not access any pages that are ''secure'' or https. Can't login and using satellite internet?
When i access a url with http, it works fine. But with https it dosen't work, and get the message on the firefox as "The proxy server is refusing connections Firefox is configured to use a proxy server that is refusing connections. Check the proxy settings to make sure that they are correct. Contact your network administrator to make sure the proxy server is working.
View 1 Replies View RelatedWhat are the limitations on the max number of concurrent HTTPS connections when using Auth Proxy for HTTPS traffic on a Cisco ASA 5520.
1) What is the max number of concurrent Authentications that the ASA can perform (HTTPS)?
2) Once Authenticated. What is the max number of concurrent HTTPS Authenticated connections to the back end HTTPS server.
I have an ASA 5505 that I am using to connect my contractors to via an inside interface, the outside interface is my private LAN. I have setup on our corporate Proxy server to allow traffic from my outside interface of my ASA to go to the internet without credentials BUT log internet activity. The question is I want to know if the ASA can send that http & https traffic to my proxy server and all other traffic to my default route? I want to be able to send all internet traffic to my proxy server. This will avoid me asking the contractors to place proxy credentials in their browsers.
View 6 Replies View RelatedHaving some problems blocking users installing/using secure browsers proxy. Currently runing ASA 5520 ver. 8.3 & IPS SSM-20 7.0 (2) E4 & Websense web filtering. Able to block most proxy sites with Websense that use port 80 but recently found that some users using some products like Njutrino that use their own secure browser that use it's own proxy over SSL connection.
View 3 Replies View RelatedWe have a pair of ACS 4.1 servers (Windows Server 2003 R2). Let's call them ACS1 and ACS2. We don't want either one of them to proxy to any AAA server, including each other. We're using mostly TACACS authentication.
While troubleshooting a general problem, I'm guessing that one of us did this on ACS1:
pressed the Network Configuration button,saw the Proxy Distribution Tableclicked (Default)moved ACS1 from the AAA Servers column to the Forward To column.
So, essentially, we're telling ACS1 to proxy all requests to itself, which doesn't seem to make sense. I don't know for sure whether it should work when configured to "self proxy," but in that state, it does not authenticate anyone and gives merely "Internal error" as the reason.
If I change the configuration so that "ACS2" appears in the Forward To column, and I move "ACS1" back to AAA Servers and restart, ACS1 starts responding correctly to TACACS requests. Of course, ACS1 is just proxying all requests to ACS2, so having two servers isn't doing much good.
I cannot simply remove ACS1 from the Forward To column and leave it empty. The interface complains that it can't forward to zero servers. Of course, on ACS2, there are no servers in the Forward To column, since we never touched the Proxy Distribution Table there.
Is there any way to return the Proxy Distribution Table to its default setup, that is, no servers appear in the "Forward To" column?
We're planning to upgrade to version 4.2 very soon, so this question is mostly academic, unless the same problem exists in 4.2.
For full disclosure, I should mention that the problem we were troubleshooting was loss of connectivity to our Windows Domain Controllers from our ACS servers. We had missed adding some exceptions in our firewalls to allow for four new DCs. As far as we can tell from testing, connectivity to the DCs is now fine. The firewall rules group ACS1 and ACS2 together, so connectivity should be the same, and ACS2 authenticates users correctly.
I am trying to log into my WRT610N version 2.0 Router admin page 192.168.1.1 using the secure HTTPS://192.168.1.1 protocol I have the router local management setting to allow both http and https access login:192.168.1.1/Management.asp I am using Microsoft IE version 10 and Firefox version 19.02 and latest Chrome browsers and none of them will work using the HTTPS protocol.This used to work in the past using older versions of the browsers though I would see a certicificate error warning.I have 2.00.01 build 15 firmware installed and I already tried reseting the router. Perhaps the router needs new firmware update to handle this with the latest browsers?
View 6 Replies View RelatedOne project I want to do is get them a network storage drive (Except, due to budget reasons, all I get is the 1Tb external they've had for a year now, and a NAS adapter). I can set up the NAS no problem, but here is the catch. From the ISP we have a B/G Router/Modem combo, and for range, we have a d-link B/G/N router.
I would like to have the ISP's G network open to cover our lobby for free access, and have the D-Link's N to cover the far offices, WITH access to the files. Now the issue, how do I set up the D-Link router, to only share the NAS files with devices conected directly to it.
I need to get to my web admin page, but I cannot get into my router to do so.
IE tells mt that there is a certifacte error, and then gives me the option of going in anyway.
When I select that option, nothing happens, and the same IE warning page remains.
I am plugged directly into an e-net port on the router, and it is a WRT160N.
I am working on an Acer netbook One series ZG5. The issue is that it will not connect to a wireless network if any of the security authentication protocals are activative. It will connect and operate fine via the hardwired RJ45 ethiernet connection. If I set the network up on the wireless router to an open network I can connect to it just fine. I have no issues opening IE8 when connected to an unsecured network. This box did work until I was reimiaging an desktop that had issues and used a usb thumb drive to store files from the desktop to the netbook prior to wiping the desktop.
View 14 Replies View RelatedWe have ASA 5520 with CSC-SSM 20 and we want to block https traffic but when we are blocking https traffic http traffic going to block but user are able to open website.
View 1 Replies View RelatedI am trying to set up a site to site ipsec connection. AT site A, I have Vlan's 652-10.55.216.0/24, Vlan653 -10.55.217.0/24, Vlan 654-10.55.217.0/24 and Vlan655-10.55.219.0/24 and at site B, Vlan650-10.55.214.0/24 and Vlan651-10.55.215.0/24.The problem is that I am unable to get any associations when i do a "sh crypto isakmp sa"/"sh crypto ipsec sa" on either router at each site.I am also unable to ping by pluging in a laptop into the site at each site. Laptop at site A is set to access vlan 655 and laptop at site B is set to acess vlan 651. I can ping all the devices from one end to the other.I have turned on debug crypto isakmp, debug crypto ipsec, debug crypto ipsec errors but dont get anything at all as output.I have attached the sh run for each router Cisco (1941/K9) and switch (Catalyst 3750) at each site.
View 4 Replies View RelatedI have two Cisco routers - 2911 in HQ and RV180 in branch office. Because in HQ LAN network I have some development servers, to which guys from branch office need to have acces, I decided to setup VPN site-to-site between HQ and branch office. Everything went quite smoothly, on both devices I see, that ipsec connection is established. Unfortunately I am not able to ping resources from one network to other one and vice versa. Below is the configuration of 2911 router (I skipped som unimportant (imho) configuration directives) :
crypto isakmp policy 1
encr 3des
hash md5
[Code].....
We have a client that has a Cisco 1801W Firewall that is setup as a site to site VPN terminating to a Cisco ASA 5505. The tunnel is up and established, I can ping from both sides of the tunnel.
The problem is the clients behind the Cisco ASA (192.168.2.x) cannot reach certain ports behind the Router (192.168.1.x). The main thing we're trying to do is browse via UNC path (ex: \192.168.1.120 from a 192.168.2.x machine).
I got 3389 working after I changed the - ip nat inside source static tcp 192.168.1.120 3389 y.y.x.x 3389 route-map DM_RMAP_1 extendable Modified the command to include the public IP instead of interface FastEthernet0
I believe it has something to do with the way NAT and route-maps are setup currently but I'm not familar enough with them to make the changes. I worked with Cisco to ensure the VPN tunnel was fine and it's something security related on the Router.
Here is the configuration (removed a few lines not necessary. y.y.x.x = WAN IP of Router x.x.y.y = WAN IP of ASA).
Building configuration...
Current configuration : 23648 bytes
!
version 12.4
no service pad
[Code].....
I am try to setup my office network to able to connect to one of my customer HQ via site to site VPN. I am using Cisco 1841 router to do the job.
The problem that I am facing now is no able to connect my other PC in office to the remote site.
show crypto isakmp sa
IPv4 Crypto ISAKMP SA
dst src state conn-id status
202.x.x.x 175.x.x.x QM_IDLE 1001 ACTIVE(code)
I have a dynamic VPN site to site between ASA 5510 vs C880 with segment 172.23.191.0/25 for ASA side and some host in C880 side (e.g. 128.1.100.211, 128.1.115.181, 128.1.104.212) . The VPN is up, but only have communication with a host (128.1.115.181).
In the logs appears the next message when I try communication for all aother IP in the policy map configuration: IKE Initioator unable to find policy: Intf Inside, Src: 172.23.191.87, Dst: 128.1.115.182..ONLY WHEN I PINGING FROM SOME HOST IN C880 SIDE (e.g. 128.1.100.211) the communication is successfull.
What happen with this VPN, because I need to pinging from C880 IP host to ASA segment for establish communication?
I am configuring Site-to-Site VPN with another company. I already make a couple of tunnels but with this one I have a problem. They I already using on their side my local network 192.168.10.0/24 (server is 192.168.10.10) so we need to use imaginary network 172.16.0.5 as server address. Now I need to do NAT 172.16.0.5 to 192.168.10.10 but I am not so good in that.
View 1 Replies View RelatedI am unable to ping any device on the internal lan from the opposite side of the tunnel. However, the tunnel connects successfully. I have the firewall disabled on both routers. Site A is using 192.168.3.1 and Site B is using 192.168.4.1. Any thoughts on why I cant ping one router from the other?
View 4 Replies View Relatedall the other sites runs perfectly but i cant access google sites such as [URL] i can access to youtube but can't sign in, it says the webpage is not available..
View 1 Replies View RelatedI can not access my Linksys E3000 router via https://192.168.1.1.Before this mishap, I was able to gain access to my Linksys E3000 router via http://192.168.1.1 and/or the Cisco Connect software application on Windows 7. Yesterday, I went into my router's administration page and disabled http, and enabled https. I then closed out all browsers, restarted them and entered https://192.168.1.1
After that, I learned quickly I made a huge mistake to make these changes. I simply can not access my router admin wired or wirelessly. Accessing the internet works great, but router admin page is a no go.Firefox and IE states, "There is a problem with this website's security certificate." and was unable to proceed.Firefox even gave me the option to accept a security exemption to proceed, but that failed.
I have also tried using the Cisco Connect utility, and that also failed. I have taken these steps and not been able to access my router's admin page.I don't want to take the last final resort to reset my router and re-enter my settings again. I know I saved the router's backup file somewhere, but can't find it.Is there another way for me to gain access via https with http disabled? All I want to do now is go back in and change it back to enable http access.
I was unable to access my ASA 5520 using HTTP/HTTPS even on the management interface. I had upgrade the ASA IOS to asa832-k8.bin and ASDM to asdm-634-53.bin. But, the issue still the same.
My browser show the error message as attach image.
PGA-Firewall-02# sh run: Saved:ASA Version 8.3(2)!hostname PGA-Firewall-02enable password 8Ry2YjIyt7RRXU24 encryptedpasswd 2KFQnbNIdI.2KYOU encryptednames!interface GigabitEthernet0/0 nameif public security-level 0 ip
[Code]....
This problem just started. I am unable to load certain https sites (for work). If i directly connect to ethernet, it works, so my isp isnt my problem. When i try to connect to the sites, it says "sending request" then times out. I have played around with the settings non stop and nothing has worked. I have a mac running 10.7.5.
View 3 Replies View RelatedI am unable to redirect the HTTPS traffic on my cisco router with WCCP V2
View 2 Replies View RelatedI've recently installed a certificate on my ACS 1113 appliance and in the Admin setup enabled management access over HTTPS. Since then I've not been able to access the GUI console. I have done some troubleshooting and I'm fairly certain that I have a certificate issue as Firefox gives me the error: Certificate type not approved for application. (Error code: sec_error_inadequate_cert_type)when I try and connect. So I want to either reconfigure the management access to use just HTTP or remove the certificate. I have logged on to the serial console and there are no options her to do this. The RADIUS and TACACS functions are working correctly - I just can't logon via the GUI.
View 1 Replies View Relatedi am unable to launch ASDM, and access https:// to run Asdm..everything worked find yesterday but now for some reason it wont work?When i am trying to log in with the asdm it just hangs on the connecting to device... please wait...When i am tryng access the https://... i get the ssl do you want to trust.. and i press proceed anyway and i get an error
Asa 5510
Device manager version 6.1
System image file is "disk0:/asa804-k8.bin
Also i am accessing the asa with ssh without any issues
I have a Cisco E1000 that I was changing settings on and now I cannot connect when I have a secure connection. I can connect when I disable security, I can also connect with a USB wireless adapter. Anyone else can connect to the wireless, but I cannot with my internal wireless adapater if the router is in secure mode, but I can with unsecure mode. I'm not sure what I changed or when, or if it is a coincidence. I'm using Windows Vista Home Edition. I have two wireless connections. The wireless 2 with the netgear adapter is working but the wireless with the Atheros is not. The wireless connector works with other other networks, just not the Cisco E1000 and the Cisco E1000 works with other computers. When I connect with the Atheros to the Cisco it just shows "Local Only".
Windows IP Configuration
Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Broadcast
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No[code].....
I recently found out my laptop (Windows Vista)...cannot connect to secured networks. I was to connect to router using ethernet cable before, then i can connect to an unsecured network just fine..i remember that 2 years ago i can connect to secured networks...
i can't provide the name or brand of the router since it is owned by the landlord and only provided me with the password
I've tried two operating systems (Ubuntu 12.04 and Windows XP) two different wireless adaptors (Dell M1530 internal adaptor and Alfa USB Adaptor which I get full bars on) and tried a different Dell M1530 laptop which I'm also having issues with. I've also tried to diagnose the network with a tool, but I'm totally unable to connect to it so I'm unable to get any more information.If I try to connect to an unsecured network, it works perfectly. I'm totally stumped about this, due to the fact that I've used two different operating systems, two different adaptors and two different laptops (albeit the same brand).
View 4 Replies View RelatedI have a VPN setup thru a Cisco 5520, Windows clients connect just find and the end users configure there browser to use our internal proxy servers. Users with the MAC OS X Anyconnect client can connect, they configure their Mac to use our proxy server, but the broswers will not work, clients can reach networks and resources behind the VPN gateway and have access to the Proxy(Tried a telnet to that hostname/port). I am running ASA 8.3(2), Anyconnect(OS X) 3.1.01065.
View 3 Replies View RelatedI'm having wrt610n and there is an issue, i can login to the config page via http, but using the same computer i'm not able to login there via https but the same time i can login via ipad and the other computer, using the https.i even tried to reset the router settings, but the result was the same, so what PC option can cause it?
View 6 Replies View RelatedI am having a setup with a 2851 router & websense url filtering server where I need to forward the traffic to websense server for all the internet requests. The http traffic is getting filtered properly, but the https traffic is not getting filtered. The two commands I ahev given for http & http are as follows: ip inspect name test http urlfilter ip inspect name test https.
View 9 Replies View RelatedI came home and was unable to wirelessly connect to my secure home network. I can connect to it secure and wired as well as unsecured and wireless, but not secured and wireless. I have done malware scans and checked for driver updates for both my netowrking card and the Linksys WRT54G router firmware...both are good. All of the other systems in the house can wirelessly connect to it while secured, so I've narrowed it down to clearly being a problem with my computer. I am using Vista Home Premium 64 bit on an ASUS G50VT.
View 10 Replies View Related