Java web application Proxibid being blocked

b00ngarten · 08-15-2011, 08:06 AM

Hi,

I am trying to run a Java web application called Proxibid. Somehow and somewhere this application is being blocked and I can not figure out how, where and why. Talking to the Support hot line is not very helpful either.

I already added the regarding addresses into the Spyware blocker - pass list but no success.

When I turn off Phish Blocker, Spyware Blocker Virus Blocker and Intrusion Prevention the app runs without a problem. Same as running the application off my home computer.

Where would I find log files that could help me figure out my problem or how would I proceed to solve my problem?

Kind regards, Ben

dmorris · 08-15-2011, 08:36 AM

Figure out which of those three apps is the issue (is it any one of them?)
Check the event logs of those apps.

If its any one of them its probably from the HTTP processing. You are using port 80? Is it using valid HTTP?
I'd try a bypass rule for your app if the HTTP processing is interfering.

welcome to the forums.

b00ngarten · 08-23-2011, 07:46 AM

Sorry for responding that late again.

I have tested the the apps and looked into their event log.

Turning off all of these apps (Phish Blocker, Spyware Blocker Virus Blocker and Intrusion Prevention) make the java application work.
When I turn ANY of these apps back on again the application is blocked.

The Eventlog does not give me any information about something being blocked.

The website I am running into these problems is w w w. proxibid.com

When you move over "Find Auctions" and click on "Live Auctions" you can view any live auction without being logged in.

I have all their recommended addresses and server ips in single bypass rules.

b00ngarten · 09-14-2011, 09:53 AM

The application is being blocked as soon as I install and activate any application more than Firewall, OpenVPN and Attack Blocker.

I do not know where to keep on searching. Could someone try that application and give me some helpful information?

thinkwelldesigns · 11-30-2011, 04:59 PM

Hello everybody. I've come across this thread because I've had exactly the same problem with proxibid.com for months using a competing open source product. Anyway, I've found the solution for my case, so I hope it can be of some assistance here.

The main problem for me was the Squid Proxy, so we need to bypass Squid entirely for proxibid to work. A second problem is that Proxibid tech support says they use 216.58.241.130 - 216.58.241.131, when they use far more addresses than that.

The following rules will bypass squid. Place them in whatever custom firewall file Untangle uses (/etc/rc.d/rc.firewall.local - perhaps?).

# For transparent proxy mode
iptables --table nat -I PREROUTING -d 98.129.160.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
iptables --table nat -I PREROUTING -d 72.3.211.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
iptables --table nat -I PREROUTING -d 72.32.60.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
iptables --table nat -I PREROUTING -d 216.58.241.0/24 -p tcp -m tcp --dport 80 -j ACCEPT

# For standard proxy mode
iptables -I FORWARD -d 98.129.160.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
iptables -I FORWARD -d 72.3.211.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
iptables -I FORWARD -d 72.32.60.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
iptables -I FORWARD -d 216.58.241.0/24 -p tcp -m tcp --dport 80 -j ACCEPT
################################################## ###

Hope this helps someone.

08-15-2011, 08:06 AM	#1 (permalink)
b00ngarten Newbie Join Date: Aug 2011 Posts: 3	Java web application Proxibid being blocked Hi, I am trying to run a Java web application called Proxibid. Somehow and somewhere this application is being blocked and I can not figure out how, where and why. Talking to the Support hot line is not very helpful either. I already added the regarding addresses into the Spyware blocker - pass list but no success. When I turn off Phish Blocker, Spyware Blocker Virus Blocker and Intrusion Prevention the app runs without a problem. Same as running the application off my home computer. Where would I find log files that could help me figure out my problem or how would I proceed to solve my problem? Kind regards, Ben

08-15-2011, 08:36 AM	#2 (permalink)
dmorris Untangle Junkie Join Date: Nov 2006 Location: San Mateo, CA URLs submitted: 10 Posts: 10,611	Figure out which of those three apps is the issue (is it any one of them?) Check the event logs of those apps. If its any one of them its probably from the HTTP processing. You are using port 80? Is it using valid HTTP? I'd try a bypass rule for your app if the HTTP processing is interfering. welcome to the forums. __________________ Attention: Support and help on the Untangle Forums is provided by volunteers and community members like yourself. If you need Untangle support please call or email support@untangle.com

Protect

Filter

Perform

Connect

Manage

Add-Ons

08-23-2011, 07:46 AM	#3 (permalink)
b00ngarten Newbie Join Date: Aug 2011 Posts: 3	Sorry for responding that late again. I have tested the the apps and looked into their event log. Turning off all of these apps (Phish Blocker, Spyware Blocker Virus Blocker and Intrusion Prevention) make the java application work. When I turn ANY of these apps back on again the application is blocked. The Eventlog does not give me any information about something being blocked. The website I am running into these problems is w w w. proxibid.com When you move over "Find Auctions" and click on "Live Auctions" you can view any live auction without being logged in. I have all their recommended addresses and server ips in single bypass rules.

09-14-2011, 09:53 AM	#4 (permalink)
b00ngarten Newbie Join Date: Aug 2011 Posts: 3	The application is being blocked as soon as I install and activate any application more than Firewall, OpenVPN and Attack Blocker. I do not know where to keep on searching. Could someone try that application and give me some helpful information?

11-30-2011, 04:59 PM	#5 (permalink)
thinkwelldesigns Newbie Join Date: Nov 2011 Posts: 1	Hello everybody. I've come across this thread because I've had exactly the same problem with proxibid.com for months using a competing open source product. Anyway, I've found the solution for my case, so I hope it can be of some assistance here. The main problem for me was the Squid Proxy, so we need to bypass Squid entirely for proxibid to work. A second problem is that Proxibid tech support says they use 216.58.241.130 - 216.58.241.131, when they use far more addresses than that. The following rules will bypass squid. Place them in whatever custom firewall file Untangle uses (/etc/rc.d/rc.firewall.local - perhaps?). # For transparent proxy mode iptables --table nat -I PREROUTING -d 98.129.160.0/24 -p tcp -m tcp --dport 80 -j ACCEPT iptables --table nat -I PREROUTING -d 72.3.211.0/24 -p tcp -m tcp --dport 80 -j ACCEPT iptables --table nat -I PREROUTING -d 72.32.60.0/24 -p tcp -m tcp --dport 80 -j ACCEPT iptables --table nat -I PREROUTING -d 216.58.241.0/24 -p tcp -m tcp --dport 80 -j ACCEPT # For standard proxy mode iptables -I FORWARD -d 98.129.160.0/24 -p tcp -m tcp --dport 80 -j ACCEPT iptables -I FORWARD -d 72.3.211.0/24 -p tcp -m tcp --dport 80 -j ACCEPT iptables -I FORWARD -d 72.32.60.0/24 -p tcp -m tcp --dport 80 -j ACCEPT iptables -I FORWARD -d 216.58.241.0/24 -p tcp -m tcp --dport 80 -j ACCEPT ################################################## ### Hope this helps someone.