Hello. The defaults for Authorization in HTTP Proxy settings includes: Basic, Digest, NTLM and Passport1.4. All other authorization headers are stripped. I started looking at the HTTP Request Authorization list on a freshly installed WG when I couldn't access onedrive.live.com/login page on a computer with HTTPS inspection…
Hello, I am analyzing some HTTPS traffic detected by a WatchGuard firewall from a few Windows 11 PCs. In the logs I can see allowed connections to 150.171.27.10 and 150.171.28.10, with: sni="tse1.mm.bing.net" cn="*.mm.bing.net" traffic identified as SSL/TLS The traffic starts at the same time from multiple Windows 11 hosts…
Hello all, I am very confused on this. Got a new M295 Firebox and advanced security. Without the advanced secruity we are able to get to the Montana Website through their citrix connection. Now that we put advanced security on the M295 firebox, when we try to connect to the Montana Website through their Citrix, we sign on…
Hi I have a little situation here. my teammate want to acces a website from a partner to byu hardware, it's a new partner, and thei website seems to be blocked by our proxy. But i can't figure out why On traffic, here's what i get : 2026-02-20 10:51:13 Member2 Allow 10.0.1.16 -removed- http/tcp 60783 80 Reseau local…
Hello, I have configured SSO in Ad and I can correctly see the user connecting, but the proxy rule (and/or Application Block) to block Facebook is ignored. I have obviously moved the rule to the top, but nothing changes. M390 release 12.11.7
Hi everyone, I'd like to protect an RD Gateway server using an incoming HTTPS server content action to better defend against brute-force attacks, for example, with IPS. Unfortunately, my current setup isn't working. The certificate is imported into WatchGuard and assigned to the content action. Is there anything I need to…
since a couple of week, some of our users, that used Chatgpt, can't. (chatgpt.com) i don't remeber changing something in our proxy filtering (maybe our DSI, but he would advertise us in this case) when i check the traffic logs, i get this deny: 2025-12-10 15:44:23 Member2 Deny <clientIP> 172.64.155.209 https/tcp 53088 443…
Hi All, We are currently in the process of setting up Proof Point for scanning mail for our on premise mail server I wanted to test one domain before I move all others over (have multiple domains on our mail server) I currently run smtp through a proxy rule, but for proof point setup, I am moving to a packet filter and…
Hi, I have a single external IP and 2 internal servers: one.mydomain.com two.mydomain.com I'd like to restrict external access to each server: Any-External > one.mydomain.com Single IP > two.mydomain.com I've looked at using a reverse proxy but I can't see a way to restirct the inbound traffic by domain and unless I'm…
Hello. By investigating a different issue we found, that on every incoming email the SMTP proxy inserts a warning message on every multipart email. The message has always the following format: Content-Type: text/plain; name="message.txt"; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Content-Disposition:…
It looks like you're new here. Sign in or register to get started.