Hi All.
Trying to troubleshoot an issue I'm having in an attempt to test Untangle Open Source Gateway software. I'm wondering if my network configuration (as defined by my PIX firewall) is causing the issue.
For those unfamiliar, Untangle is an open source product that offers Anti-Virus, Anti-Spam, IDS, Firewall, Content Filtering, and reporting, just to name a few features. It can be run as a router or as a transparent bridge. I'm running the bridge configuration.
I've got a PIX 501 sitting on the edge of the network handling our /29 of public IP's. Static routes are defined on outside addresses; (1) Exchange Server, (2) IPsec VPN, (3) IIS Web Server. Global NAT for clients takes up an IP as well.
[internet]---[PIX]---[LAN-SWITCH] <-- Everything works
With Untangle in the mix as a transparent bridge, it is placed between the PIX and LAN-SWITCH. Internet connectivity for LAN clients performs without a hitch, and you can see Untangle inspecting network packets.
My problem lies with the websites that I host on the IIS Web Server. From outside the network, any attempt to launch a website via http (port 80) simply will not work. A secure site running on 443 works without a hitch. I should also mention that the sites are defined by host headers, all running on one IP address on the web server.
In troubleshooting this, I can see that there are established connections from my home computer outside of the network to the web server on port 80. It's as if the connection is active, but there's no content.
I'm currently working the forums over at Untangle's website, however I have a feeling that I'm getting close to a dead end. My thoughts are that maybe someone may have an idea as to what may be causing this "block".
Thanks in advance.
Bryan
Trying to troubleshoot an issue I'm having in an attempt to test Untangle Open Source Gateway software. I'm wondering if my network configuration (as defined by my PIX firewall) is causing the issue.
For those unfamiliar, Untangle is an open source product that offers Anti-Virus, Anti-Spam, IDS, Firewall, Content Filtering, and reporting, just to name a few features. It can be run as a router or as a transparent bridge. I'm running the bridge configuration.
I've got a PIX 501 sitting on the edge of the network handling our /29 of public IP's. Static routes are defined on outside addresses; (1) Exchange Server, (2) IPsec VPN, (3) IIS Web Server. Global NAT for clients takes up an IP as well.
[internet]---[PIX]---[LAN-SWITCH] <-- Everything works
With Untangle in the mix as a transparent bridge, it is placed between the PIX and LAN-SWITCH. Internet connectivity for LAN clients performs without a hitch, and you can see Untangle inspecting network packets.
My problem lies with the websites that I host on the IIS Web Server. From outside the network, any attempt to launch a website via http (port 80) simply will not work. A secure site running on 443 works without a hitch. I should also mention that the sites are defined by host headers, all running on one IP address on the web server.
In troubleshooting this, I can see that there are established connections from my home computer outside of the network to the web server on port 80. It's as if the connection is active, but there's no content.
I'm currently working the forums over at Untangle's website, however I have a feeling that I'm getting close to a dead end. My thoughts are that maybe someone may have an idea as to what may be causing this "block".
Thanks in advance.
Bryan
