Proxy Bypass list

snormoyle · ‎03-24-2011

I have put entries in the proxy bypass list, but when i tail the proxy bypass log while going to those site nothing shows in the logs. Now when I grep the access logs for those sites in the proxy bypass list the entries shows in the access log. WHY. We have M1 on it's on subnet, P1 for the proxy traffic and T1 set for duplex on a layer 4 device.

i have 21 other ironports, but this one ironport just doesn't like me.

Juan Ramos · ‎03-24-2011

A packet capture would define the connection best.

Please confirm that your browser is not configured to point to the proxy or using a wpad/Pac file to point to the proxy.

What does the aclog look like for the GET request?

snormoyle · ‎03-24-2011

this is the output from the access-logs

1300974199.085 177 x.x.x.63 TCP_MISS/200 5795 GET http://www.marines.mil/_layouts/getsizedimage.aspx?ImageUrl=http://www.marines.mil/unit/mcbjapan/PublishingImages/SlideShow/110316-M-VD776-006.JPG&Width=169&Height=113&BackColor=%23000000 "NMED\alt.steven.normoyle@NHCH_AD" DIRECT/www.marines.mil image/jpeg DEFAULT_CASE-DefaultGroup-DefaultGroup-NONE-DefaultRouting -

browser settings are correct. know it's coming in on the P1 ports.

Juan Ramos · ‎03-25-2011

Steven,

Have your packet captures shown how the client web request reaches the proxy? If the proxy is running in Transparent mode, you can grab a capture using these steps:

------------------------------------------

GUI -> Support and Help (upper right corner) -> Packet Capture

Edit Settings:

Select the appropriate interfaces to capture. We will use the CUSTOM

FILTER option with this entry

host or host 204.223.145.65

Submit and commit changes

Start the capture

Have the client reproduce the issue - navigate to WWW.EXAMPLE.COM

stop the capture.

The packet capture will be date stamped and in the "Manage Packet Capture Files" section.

------------------------------------------

snormoyle · ‎03-25-2011

whole issue stemmed from the L4 switch. rebooted and all started working