http proxy not allowing content

If I open the site vcfed.org using http I don't get any content. Looking at my logs, I see the response should be about 16k. However, nothing gets to my browser.
It is doing this for ALL http requests and I shouldn't have to add an exception for every site I visit that doesn't have https. It is not just this site, it is every site that uses http instead of https.

Here's the log response showing 16k
ProxyHTTPReq
HTTP request
pri=6
disp=Allow
policy=HTTP-proxy-00
protocol=http/tcp
src_ip=192.168.9.119
src_port=57457
dst_ip=104.192.220.12
dst_port=80
src_intf=1-Trusted
dst_intf=0-External
rc=525
proxy_act=HTTP-Client.Lion-Default.1
rcvd_bytes=16112; app_id=12
sent_bytes=450; app_name=Mozilla Firefox
reputation=6
; elapsed_time=0.543162 sec(s); op=GET; app_cat_name=Web services
dstname=vcfed.org
arg=/wp/
1AFF-0024
geo_dst=USA
app_cat_id=13

Where is the content going?

Comments

  • I have no problem accessing that site. V12.6.2 U3 T20w
    I used Firefox.

    The log record that you posted is a summary log record created by your selection of "Enable logging for reports" selection on your HTTP proxy action.

    My best guess is that you have some proxy action setting which is denying/stripping content, and perhaps you are not logging those.

    My summary record shows a much bigger download of content
    2020-10-28 11:07:38 Allow 10.0.1.2 104.192.220.12 http/tcp 50398 80 Trust-VLAN External HTTP request (HTTP-proxy_for_Bruce-PC-00) HTTP-Client_bruce proc_id="http-proxy" rc="525" msg_id="1AFF-0024" proxy_act="HTTP-Client_bruce" op="GET" dstname="vcfed.org" arg="/wp/wp-content/uploads/2020/04/T-shirt_2020_front_tiny.jpg" sent_bytes="336" rcvd_bytes="130385" elapsed_time="0.179812 sec(s)" app_id="12" app_cat_id="14" app_name="Mozilla Firefox" app_cat_name="Web services" sig_vers="18.116" reputation="50" geo_dst="USA" Traffic

  • Sheesh, how the heck do I find that. It's doing it on almost all of the http requests. Maybe reset the action to default and tweak later?

    Thanks,
    Kelly

  • Create a brand new HTTP proxy policy and use the default outgoing HTTP proxy action.
    Make sure that it ends up above your existing one.

    Or on your existing HTTP proxy action, look at the HTTP Response Content Types & Body Content Types, and look for Strip or Deny settings and if Log is not selected on it, Select it.

  • Thanks for you help. I reset back to the default as you suggested and it's working. Thank you.

Sign In to comment.