Virtual Secure Web Gateway

 View Only

  • 1.  Block page sometimes shown. Sometimes not.

    Posted Nov 22, 2011 11:41 PM

    Hello,

    SWG is deployed inline in the network. All is working fine (can ping gateway, external sites and the software and hardware bypass are working too!) except that the block page is inconsistently shown. Sometimes the block page is shown. Sometimes not. I CAN ping to SWG from this test machine so it's not a static route issue.

    When I click on the URL that falls under block category, the browser just keep still. Does not go anywhere. Does not show anything.

    Everyone ever expericence this? I'm using IE 9 for testing.

    Thank You.



  • 2.  RE: Block page sometimes shown. Sometimes not.

    Posted Nov 23, 2011 09:34 AM

    Unfortuantly an intermititant/unpredicatble issue like this is difficult to troubleshoot. Normally we would suspect/look into the network configuration/static routes but it sounds like you have already tested for that. You may find a packet capture helpful.



  • 3.  RE: Block page sometimes shown. Sometimes not.

    Broadcom Employee
    Posted Nov 23, 2011 11:03 AM

    Do you have any load balancers or switches with load balancing features that be redirecting the block page? The block page comes from the Web Gateway, so something must be blocking it when it never shows up.



  • 4.  RE: Block page sometimes shown. Sometimes not.

    Posted Nov 23, 2011 08:48 PM

    I deployed SWG to 3 different branches. 2 of them have a very simple network, only 1 subnet without any load balancers. Yet, this inconsistent block page problem happens at all 3 branches.

    I thouhgt its an incompatibility issue with IE 9.

    Nice to have some ideas. Thank you. I'll try to perform both of your suggestions.



  • 5.  RE: Block page sometimes shown. Sometimes not.

    Posted Nov 29, 2011 05:23 AM

    If you have a proxy in your setup, I would advise you to try a different browser. I have seen in some scenarios that IE (in particular) is bad at handling request loops. Firefox for example will after a few requests break the loop informing you about the redirect loop.

    This would help you identify if you are actually experiencing an issue with the block-page not being displayed or some other issue.

    A protocol analyser or http-analyser would also be helpful in seeing the actual request hanging.



  • 6.  RE: Block page sometimes shown. Sometimes not.

    Posted Apr 02, 2012 12:21 PM

    I also I have the same problem, my SWG is deployed inline in the network. All is working fine (can ping gateway, external sites and the software and hardware bypass are working too!), except that the block page is not shown.
    I CAN ping to SWG from this test machine so it's not a static route issue.

    Help please !!!



  • 7.  RE: Block page sometimes shown. Sometimes not.

    Broadcom Employee
    Posted Apr 02, 2012 12:34 PM

    Here is a great document for information on the Management port. This is where the block page will come from when it is configured to be used:

    http://www.symantec.com/business/support/index?page=content&id=TECH158913



  • 8.  RE: Block page sometimes shown. Sometimes not.

    Posted Apr 02, 2012 03:38 PM

    hello JDavis, and performing the verify connectivity to the Symantec ThreatCenter, all ok.

    as I said in my last post I make SWG todoas ping subnets, subnets do you ping the SWG and SWG if you have connection to all ports.

    As might resolve this issue, because a week ago a case with symantec habri and so far I do not get help.