Problem: When accessing certain sites on the Internet, I get a timeout error and the page never comes up. I have noticed this on sites like Gaggle.net and some forum sites. What they both had in common were scripts and redirects. I can access the site outside the firewall so I know that it isn’t down so I knew that it was Astaro. BTW, we are using Astaro Security Gateway 7.104.
Solution: It turns out my intrusion protection settings were too strict. I checked the IPS live log and saw that it was registering false positives for my session and dropping the packets. What worked for me was to do the following:
- Login to Astaro
- Go to the “Network Security” section and click on “Intrusion Protection.”
- Click on the “Attack Patterns” and either uncheck the “Other HTTP Servers” box or set it to “alert.”
After that, I was able to access the sites that were timing out. Please be aware that this also turns off some protection for your network. If you want to do something like this, it would be a good idea to set it to “Alert” so you can see if there are any real attacks happening so you can react accordingly.