+ Post New Thread
Results 1 to 12 of 12
Internet Related/Filtering/Firewall Thread, Smoothwall and adobeconnect in Technical; We have a bit of an issue with smoothwall and adobe connect and I wonder if anyone can shed any ...
  1. #1


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339

    Smoothwall and adobeconnect

    We have a bit of an issue with smoothwall and adobe connect and I wonder if anyone can shed any light here.

    We don't use https inteception.
    When browsing through smoothwall to adobeconnect test site:
    Test Meeting Connection

    we get an error "revocation information for the security certificate for this site is not available"

    A workaround, unticking "check for publishers certificate revocation" in IE appears to work.
    I think this is something to do with the wildcard here: my.adobeconnect.com but I'm not sure how to proceed.

    We've whitelisted my.adobeconnect.com. This doesn't occur when using squid, only with smoothwall.

    TIA

  2. #2

    Join Date
    Dec 2007
    Location
    cumbria
    Posts
    182
    Thank Post
    7
    Thanked 43 Times in 39 Posts
    Rep Power
    25
    Had the same here, last week - same workaround to get us going, but not something I'm really happy with. And yes, we run Smoothwall.

  3. #3
    DT2
    DT2 is offline
    DT2's Avatar
    Join Date
    May 2011
    Location
    Lakeville, Carleton County, New Brunswick
    Posts
    695
    Thank Post
    140
    Thanked 197 Times in 138 Posts
    Rep Power
    74
    I'm working on it. I'll let you know what I find.
    If you can PM me your specifics in the meantime.

    DT

  4. #4
    DT2
    DT2 is offline
    DT2's Avatar
    Join Date
    May 2011
    Location
    Lakeville, Carleton County, New Brunswick
    Posts
    695
    Thank Post
    140
    Thanked 197 Times in 138 Posts
    Rep Power
    74
    @CyberNerd I've tested this through my NG and it seems fine.
    Just remind me, G2 or G3?
    And would you mind archiving your guardian settings/policies and sending them to me please.
    I think you have my email.

    Daren

  5. #5


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Quote Originally Posted by DT2 View Post
    @CyberNerd I've tested this through my NG and it seems fine.
    Just remind me, G2 or G3?
    And would you mind archiving your guardian settings/policies and sending them to me please.
    I think you have my email.

    Daren
    Thanks. It's Guardian 2008 - I think you were in the process of upgrading it, you were dealing with my colleague Chris. Give him a call and teamview in if you like

  6. #6
    DT2
    DT2 is offline
    DT2's Avatar
    Join Date
    May 2011
    Location
    Lakeville, Carleton County, New Brunswick
    Posts
    695
    Thank Post
    140
    Thanked 197 Times in 138 Posts
    Rep Power
    74
    Will do.

    DT

  7. #7

    TechMonkey's Avatar
    Join Date
    Dec 2005
    Location
    South East
    Posts
    3,303
    Thank Post
    226
    Thanked 412 Times in 305 Posts
    Rep Power
    163
    Did you find a solution for this? Just come on my radar!

  8. #8
    DT2
    DT2 is offline
    DT2's Avatar
    Join Date
    May 2011
    Location
    Lakeville, Carleton County, New Brunswick
    Posts
    695
    Thank Post
    140
    Thanked 197 Times in 138 Posts
    Rep Power
    74
    @OB1 or @tom_newton may very well be able to answer this for you.
    I left Smoothwall in June ( ) to emigrate to Canada, unfortunately I never got to the bottom of this one.
    Dammit Smoothwall, where's your Canada office????

    DT
    Last edited by DT2; 15th November 2012 at 01:01 PM.

  9. Thanks to DT2 from:

    TechMonkey (15th November 2012)

  10. #9


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Quote Originally Posted by TechMonkey View Post
    Did you find a solution for this? Just come on my radar!
    Sorry I don't remember if there was a permanent fix or whether we just re-routed any connections through our dansguardian 'backup'

  11. #10
    Duke5A's Avatar
    Join Date
    Jul 2010
    Posts
    818
    Thank Post
    84
    Thanked 136 Times in 116 Posts
    Blog Entries
    8
    Rep Power
    32
    I'm running a couple Squid proxies and had similar issues with certificate revocation on a number of different sites and services. With certificate revocation on a connection is attempted to reach the CA to check the status of the certificate. While checking the Squid access log I noticed that credentials weren't being passed to Squid for those connections going out to the CA (we use NTLM authentication for our proxies). As a result, Squid wasn't forwarding that connection and the revocation check was failing. To get around it I added the CA domain to an ACL that is allowed to bypass proxy authentication. Adobe uses Verisign for this particular certificate as my proxy shows a connection to ocsp.verisign.com in the middle of all the connections to my.adobeconnect.com. Allowing unobstructed access to Verisign's TLD and sub domains should fix the issue. I hope this helps.

  12. 3 Thanks to Duke5A:

    CyberNerd (15th November 2012), DT2 (15th November 2012), TechMonkey (15th November 2012)

  13. #11

    TechMonkey's Avatar
    Join Date
    Dec 2005
    Location
    South East
    Posts
    3,303
    Thank Post
    226
    Thanked 412 Times in 305 Posts
    Rep Power
    163
    You sir are a scholar and a gent!

    Worked perfectly.

    I shall pass on to Smoothwall and hopefully they can make some update that includes the Cert addresses to be bypassed.

  14. #12


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Cheers, I'll update my (exactly) 12 month old workaround

SHARE:
+ Post New Thread

Similar Threads

  1. SmoothWall and Proxy Sites
    By mmoseley in forum Internet Related/Filtering/Firewall
    Replies: 6
    Last Post: 27th March 2009, 10:25 AM
  2. Smoothwall and IPlayer Download Manager
    By ezzauk in forum Internet Related/Filtering/Firewall
    Replies: 1
    Last Post: 25th March 2009, 11:01 PM
  3. IP Cop/Smoothwall and Cre
    By webman in forum *nix
    Replies: 12
    Last Post: 12th December 2005, 11:41 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •