Comments
-
Yes you are right!! Thanks. That got me a bit further. When I change the default action on the policy to inspect it works, so it seems that my domain name rules does not work as I expect. Maybe I should no use both Domain Names rules on the pllicy and Content Actions....
-
Yes, I'm doing inspect in the Proxy Action. I need it to forward to port 80 as the server does not do SSL.
-
I have a web-server. Lets say it's located at 1.2.3.4 on dmz zone 1.2.3.0 There are some site on it. fx. shop.domain.tld I have mada HTTP Content Action Pattern match shop.domain.tld/* Proxy action: HTTP-Server.Standard Routing: Policy Default Ports:80/443 SSL Offload and Log on. I then have a HTTPS-Proxy (TCP/443):…
-
Did you make this working? I'm trying to follow some of the same guides to set up SSL-offloading from external to NAT'ed webservers in a DMZ. I don't see any traffic being matched to the content rules .domain.tld/