- Individual Applications
Protect
Filter
Perform
Connect
Add-Ons
- Software Packages
- Complete Appliances
02-02-2012, 04:19 AM
|
#1 (permalink) |
|
Master Untangler
Join Date: Feb 2009
Posts: 145
 |
"bypass" traffic on startup
Hello,
I have seen that when Untangle is booting(bridge mode), Untange doesn´t filter any traffic for about one minute. Imagine Untangle is filtering E-Mail traffic and has been shut down for some time, after booting it up again it will let all the spam trough it in this one minute period. Is there a possibility to change that or a bug request? fslomka |
|
|
02-02-2012, 04:30 AM
|
#2 (permalink) |
   
Join Date: Jan 2009
Location: Sweden (Eskilstuna)
URLs submitted: 57
Posts: 3,877
 |
Hi fslomka,
This is a know issue. The OS starts before the Untangle VM (UVM) that holds the filtering. So depending on hardware there will be a period where traffic can pass without being filtered. I think that I have seen a bug about it but i can not find it now. So if you want to fill in a bug/enchantment report go to http://bugzilla.untangle.com
__________________
"Of all the things I've lost, I miss my mind the most" Untangle Reseller (Sweden) WebFooL@fakenews.se http://fakenews.se/ Need space to Upload content for you forum post? http://about.me/webfool |
|
|
|
02-02-2012, 05:08 AM
|
#3 (permalink) |
|
Master Untangler
Join Date: Feb 2009
Posts: 145
|
Here it is... I hope that is alright.
http://bugzilla.untangle.com/show_bug.cgi?id=9863 |
|
|
|
02-02-2012, 11:28 AM
|
#4 (permalink) |
|
Master Untangler
Join Date: Feb 2009
Posts: 145
|
My bug request is a duplicate you were right WebFooL.
Reported: 2004-10-13 12:00 PDT by John Irwin bug id 48 As you can see this bug has bin filed in 2004, will there be a better solution then unplugging lan when untangle starts? |
|
|
|
02-02-2012, 11:58 AM
|
#5 (permalink) |
Join Date: Apr 2008
Location: Phoenix, AZ
URLs submitted: 8
Posts: 15,454
|
There isn't a solution to this, and to be honest I'm not sure there ever will be.
What do you want? Untangle to have a firewall rule in place on boot that halts all network traffic until the UVM cranks up and removes it? It used to be that sessions cached before the UVM started would be except from UVM inspection until the session was rebuilt. This would allow users to fire up a browser to a site they normally couldn't access and auto-refresh their way to that site for the rest of the day. Now as far as I know Untangle resets all sessions when the UVM starts, which subjects all traffic to inspection. So what damage do you expect to happen to your network in 30 seconds to 1 min? If Untangle is taking longer than that to boot you need better hardware.
__________________
Rob Sandling, BS:SWE, MCP Intouch Technology Phone: 480-272-9889 rob@intouchtechllc.com UntangleAppliances.com Phone: 866-794-8879 |
|
|
|
02-02-2012, 12:38 PM
|
#6 (permalink) |
Join Date: Jun 2008
Location: Argentina
URLs submitted: 57
Posts: 3,634
|
I think fslomka are talking about a lot of spam can bypass in the uvm startup time when the internal smtp server are listening. Is not a bug, that is how any application works mounted on an operating system
__________________
The world is divided into 10 kinds of people, who know binary and those not Last edited by dwasserman; 02-02-2012 at 12:40 PM.. |
|
|
|
02-02-2012, 12:44 PM
|
#7 (permalink) |
|
Join Date: Apr 2008
Location: Phoenix, AZ
URLs submitted: 8
Posts: 15,454
|
Ahh yes I hadn't considered SPAM in this equation.
The best way to handle that, is in the case of a known reboot, simply disable the TCP 25 port forward before you reboot, and turn it back on manually after reboot. Not the best solution but at least it's workable. Your Untangle should never be rebooting itself while it's in production. If it is, things are going very wrong, or you're crazy and allowing automatic upgrade.
__________________
Rob Sandling, BS:SWE, MCP Intouch Technology Phone: 480-272-9889 rob@intouchtechllc.com UntangleAppliances.com Phone: 866-794-8879 |
|
|
 |
| Thread Tools | |
|
|
