Results 1 to 7 of 7
  1. #1
    Master Untangler
    Join Date
    Feb 2009
    Posts
    145

    Default "bypass" traffic on startup

    Hello,

    I have seen that when Untangle is booting(bridge mode), Untange doesn´t filter any traffic for about one minute.
    Imagine Untangle is filtering E-Mail traffic and has been shut down for some time,
    after booting it up again it will let all the spam trough it in this one minute period.

    Is there a possibility to change that or a bug request?


    fslomka

  2. #2
    Untangle Ninja
    WebFooL's Avatar
    Join Date
    Jan 2009
    Location
    Sweden (Eskilstuna)
    Posts
    5,161

    Default

    Hi fslomka,

    This is a know issue.
    The OS starts before the Untangle VM (UVM) that holds the filtering.
    So depending on hardware there will be a period where traffic can pass without being filtered.

    I think that I have seen a bug about it but i can not find it now.

    So if you want to fill in a bug/enchantment report go to http://bugzilla.untangle.com

  3. #3
    Master Untangler
    Join Date
    Feb 2009
    Posts
    145

    Default

    Here it is... I hope that is alright.
    http://bugzilla.untangle.com/show_bug.cgi?id=9863

  4. #4
    Master Untangler
    Join Date
    Feb 2009
    Posts
    145

    Default

    My bug request is a duplicate you were right WebFooL.
    Reported: 2004-10-13 12:00 PDT by John Irwin bug id 48
    As you can see this bug has bin filed in 2004, will there be a better solution then unplugging lan when untangle starts?

  5. #5
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    25,294

    Default

    There isn't a solution to this, and to be honest I'm not sure there ever will be.

    What do you want? Untangle to have a firewall rule in place on boot that halts all network traffic until the UVM cranks up and removes it?

    It used to be that sessions cached before the UVM started would be except from UVM inspection until the session was rebuilt. This would allow users to fire up a browser to a site they normally couldn't access and auto-refresh their way to that site for the rest of the day.

    Now as far as I know Untangle resets all sessions when the UVM starts, which subjects all traffic to inspection. So what damage do you expect to happen to your network in 30 seconds to 1 min? If Untangle is taking longer than that to boot you need better hardware.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

  6. #6
    Untangle Ninja dwasserman's Avatar
    Join Date
    Jun 2008
    Location
    Argentina
    Posts
    4,348

    Default

    I think fslomka are talking about a lot of spam can bypass in the uvm startup time when the internal smtp server are listening. Is not a bug, that is how any application works mounted on an operating system
    Last edited by dwasserman; 02-02-2012 at 01:40 PM.
    The world is divided into 10 kinds of people, who know binary and those not

  7. #7
    Untangle Ninja sky-knight's Avatar
    Join Date
    Apr 2008
    Location
    Phoenix, AZ
    Posts
    25,294

    Default

    Ahh yes I hadn't considered SPAM in this equation.

    The best way to handle that, is in the case of a known reboot, simply disable the TCP 25 port forward before you reboot, and turn it back on manually after reboot. Not the best solution but at least it's workable. Your Untangle should never be rebooting itself while it's in production. If it is, things are going very wrong, or you're crazy and allowing automatic upgrade.
    Rob Sandling, BS:SWE, MCP
    NexgenAppliances.com
    Phone: 866-794-8879 x201
    Email: support@nexgenappliances.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

SEO by vBSEO 3.6.0 PL2