Url-Guarding Issue

Discuss and get help configuring CacheGuard URL blacklist Guarding
User avatar
david
Posts: 132
Joined: 08 Aug 2015 20:38

Re: Url-Guarding Issue

Post by david » 03 Jul 2017 11:12

Hi,

- Error 28 means that there is a timeout while trying to connect to the file server.
- Error 78 means that the file is not found on the file server.

It seems that there is a communication error with your file server (sftp server I guess). Can you please send us the output of the following commands:

Code: Select all

ip
access file
password file
urllist auto
It is also possible that a URL that is supposed to be blocked by CG remains in the cache of your browser. Can you please refresh the URL you are trying to access by using <shift> reload in your browser?

Best Regards,
David Jan
CacheGuard Technical Team
https://www.cacheguard.com

User avatar
charles
Site Admin
Posts: 39
Joined: 06 Nov 2014 16:23
Location: Paris
Contact:

Re: Url-Guarding Issue

Post by charles » 03 Jul 2017 11:48

Hi Michael,

Thank you for your feedback.

Actually the impossibility to associate more than one account to a file server is a feature not a bug. There is a bijective relation between an account and the couple [Protocol, and P/Hostname]. You should have a unique account per file server and protocol to communicate with CG. This way the configuration becomes easier and the ease of configuration is always our concern (even if sometimes is creates limitations).

You can find lots of valuable information about URL lists in the documentation. Please read the following: http://www.cacheguard.net/doc/command/urllist.html. There is a special note regarding the maintenance of diff files and the loading of update files. Below an extract:
To update an existing URL list use the keyword update. In this case downloaded files are diff files. Only domains and urls files can be updated. To automatically download all updates since the last create or update operation, use the keyword auto. In this case downloaded files are diff files and should be named as follows: <base-file-name>.<yyyymmdd>.(domains | urls).gz where <yyyymmdd> is the date (yyyy is the year, mm is the month and dd is the day). In the case where the URL list has never been loaded before and the update mode is used, the create mode is used (the URL list is entirely loaded from scratch).
Did you think about creating and maintaining update files on your file server? If you need to load update files you should have your own script that periodically generates update files on your file server. But in major cases and especially for small contents it is much simpler to use the create method.

Best Regards,
Charles Tajvidi
IT Technical Architect
http://www.cacheguard.com

axnav
Posts: 12
Joined: 08 Jan 2017 08:11

Re: Url-Guarding Issue

Post by axnav » 05 Jul 2017 15:44

Hi,

very very interesting info now:

As I told last post before, I deleted my own blacklist and started with observing.

The Configuration now is:

=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2017.07.03 18:16:03 =~=~=~=~=~=~=~=~=~=~=~=
ADMIN admin
Welcome to the CacheGuard Web Gateway
Management URL: https://10.11.1.213:8090 from allowed networks
Copyrights (C) 2009-2017 CacheGuard - All rights reserved

admin@10.11.1.213's password:
admin@cacheguard> ip

ip internal 10.11.1.213 255.255.0.0
ip external 10.5.1.240 255.255.255.0
ip auxiliary 0.0.0.0 0.0.0.0
ip internal.0 0.0.0.0 0.0.0.0

admin@cacheguard> access file

access file 10.11.1.168
ftp.cacheguard.net
10.11.1.234

admin@cacheguard> password file

password file ftp ftp.cacheguard.net xxx ...
sftp 10.11.1.168 xxx ...
sftp 10.11.1.234 xxx ...

admin@cacheguard> urllist auto

urllist auto
Advert on load create weekly ftp ftp.cacheguard.net Advert
AnonymousVPN on load create weekly ftp ftp.cacheguard.net AnonymousVPN
Chat on load create weekly ftp ftp.cacheguard.net Chat
Dating on load create weekly ftp ftp.cacheguard.net Dating
Drugs on load create weekly ftp ftp.cacheguard.net Drugs
Gamble on load create weekly ftp ftp.cacheguard.net Gamble
Hacking on load create weekly ftp ftp.cacheguard.net Hacking
Movies on load create weekly ftp ftp.cacheguard.net Movies
Porn on load create weekly ftp ftp.cacheguard.net Porn
Redirector on load create weekly ftp ftp.cacheguard.net Redirector
SpyWare on load create weekly ftp ftp.cacheguard.net SpyWare
Tracker on load create weekly ftp ftp.cacheguard.net Tracker
Violence on load create weekly ftp ftp.cacheguard.net Violence
Warez on load create weekly ftp ftp.cacheguard.net Warez

admin@cacheguard>
admin@cacheguard>
admin@cacheguard> exit
logout



Now the blacklist works for an half hour and then they dont work anymore until I start "auto update now" .

User avatar
david
Posts: 132
Joined: 08 Aug 2015 20:38

Re: Url-Guarding Issue

Post by david » 05 Jul 2017 17:16

Hi,

I see nothing wrong in your configuration. It is possible that you previously loaded a URL list with corrupted contents. Can you please send me the output of the following commands:

Code: Select all

urllist
guard filter
guard policy
guard rule
Best Regards,
PS: for security reasons, I removed your login names in your post.
David Jan
CacheGuard Technical Team
https://www.cacheguard.com

axnav
Posts: 12
Joined: 08 Jan 2017 08:11

Re: Url-Guarding Issue

Post by axnav » 07 Jul 2017 06:37

Hi david,

here is the requested output:

=~=~=~=~=~=~=~=~=~=~=~= PuTTY log 2017.07.07 08:30:20 =~=~=~=~=~=~=~=~=~=~=~=
urllist

urllist
Advert
AnonymousVPN
Chat
Dating
Drugs
Gamble
Hacking
Movies
Porn
Redirector
SpyWare
Tracker
Violence
Warez

admin@cacheguard> guard filter

guard filter ip
FilterExtWlanRange network 172.42.0.0/255.255.0.0
FilterxxxLANGRZ network 10.1.3.0/255.255.255.0
FilterxxxLANKoeln network 10.1.10.0/255.255.255.0
FilterxxxLANLinz network 10.1.2.0/255.255.255.0
FilterxxxLANRange network 10.11.0.0/255.255.0.0
FilterxxxLANSBG network 10.1.5.0/255.255.255.0
guard filter time<null>
guard filter ldap<null>

admin@cacheguard> guard policy

guard policy
myxxxExtWlanPolicy:
ip FilterExtWlanRange
myxxxLANPolicy:
ip FilterxxxLANRange
ip FilterxxxLANGRZ
ip FilterxxxLANKoeln
ip FilterxxxLANLinz
ip FilterxxxLANSBG

admin@cacheguard> guard rule

guard rule
default deny:
Porn
myxxxExtWlanPolicy deny:
Porn
Advert
Violence
SpyWare
Redirector
Drugs
Dating
Chat
AnonymousVPN
Gamble
Hacking
Movies
Tracker
Warez
myxxxLANPolicy deny:
AnonymousVPN
Drugs
Hacking
Porn
SpyWare
Violence
Warez

admin@cacheguard>



Kindly regards

michael

User avatar
david
Posts: 132
Joined: 08 Aug 2015 20:38

Re: Url-Guarding Issue

Post by david » 07 Jul 2017 10:28

Hi,

We built a similar configuration in our lab but we were not able to reproduce any issue related to the URL guarding.

The issue may come from other features. Can you please disable the compress mode? The combination of the antivirus and compress modes is still unstable in the EH 1.3.1. Our engineers are working hard to resolve the issue. We are sorry for the inconveniences.

Best Regards,
David Jan
CacheGuard Technical Team
https://www.cacheguard.com

Post Reply