Options

Send log message options grayed out with HTTPS Proxy

KwissKwiss
in Technical Discussion

Is this a default setting for https-Proxy? I would like to set to unlimited during times when troubleshooting sites that are being blocked. Or is there a better area to view sites that are blocked due to geolocation?

Comments

  • Options
    Bruce_BriggsBruce_Briggs

    From the docs:

    You can configure the log rate for Blocked Sites, Blocked Ports, and these Default Packet Handling categories:

    IP Spoofing Attacks
Port Scan
IP Scan
IP Source Route
IPSec, IKE, SYN, ICMP, UDP Flood Attacks
DDOS Attack Destination
DDOS Attack Source

    Set Logging and Notification Preferences
    https://www.watchguard.com/help/docs/help-center/en-US/Content/en-US/Fireware/logging/set_logging_notif_pref_pm_c.html

  • Options
    KwissKwiss

    Yep, I read that already, however, for some reason the https-proxy settings are grayed out and will not let me change.

  • Options
    Bruce_BriggsBruce_Briggs

    I don't see those options being select-able on any of my policy types - packet filers or proxies- always grayed out.
    Running V12.7.
    FYI V12.7 Update 1 just came out yesterday.
    Updating now.

  • Options
    Bruce_BriggsBruce_Briggs

    These 2 options are not shown in the Web UI - only in Policy Manager.
    V12.7 Update 1 is only for Fireware - no change to WSM.
    This could be a Policy Manager bug perhaps - by showing these options.

  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @Kwiss
    it sounds like you're possibly using one of the default proxy actions (which can't be edited.)

    Try pressing the button to clone the proxy action (in policy manager it's a paper with a green plus next to it, in WebUI it just says CLONE.)

    Once you've cloned it and named it, you should be able to change settings in it.

    -James Carson
    WatchGuard Customer Support

  • Options
    Bruce_BriggsBruce_Briggs

    @James_Carson

    James:
    These options only show in Policy Manager, and apparently only in V12.7
    They are grayed out even for existing policies, including for packet filters.
    To see the issue, in Policy Manager - select any policy -> Properties -> Logging, and look at the 2 grayed out options below "Send log message"

  • Options
    james.carsonjames.carson Moderator, WatchGuard Representative

    Hi Bruce,

    My apologies, I mis-read that.

    You're correct, those options are only available for the default threat protection logging.

    I'm not exactly sure why they added it for all log types and grayed it out for them. I'll look into it and see if there's a reason it was done this way.

    -James Carson
    WatchGuard Customer Support

  • Options
    KwissKwiss

    I talked with support and apparently it should work in the latest update?

  • Options
    Bruce_BriggsBruce_Briggs

    Which latest update is that?
    They don't work for me in V12.7 Update1 on packet filters or proxy policies that I have tried

Sign In to comment.