cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
ThomasSu
Level 9
Report Inappropriate Content
Message 1 of 6

MWG 8.2.0 transparent router mode with L4

Jump to solution

Hi All,

 

Before 8.2 with mfend, transparent router mode can be setup standalone director/scanner in the same mwg by modfiy mfend config file. From 8.2 with haproxy, this can not work anymore. When config scanner with the same IP, browser point to it works. But L4 redirect 80/443, it wont response the packet. Any solution of haproxy?

1 Solution

Accepted Solutions
ThomasSu
Level 9
Report Inappropriate Content
Message 6 of 6

Re: MWG 8.2.0 transparent router mode with L4

Jump to solution

Alternative way is

Configuration -- Proxies -- Proxy (optional WCCP) -- Transparent Proxy -- L2 transparent -- port redirects 80/443 to 9090.

Enable HTTP proxy and add listen address 0.0.0.0:9090.

The original way is not supported anymore with haproxy. And have to run after version 8.2.2 or 9.0.0.

Note: After changing the Proxy configuration, have to reboot the appliance. If not, the mfend service will still be there and result strange problem.

View solution in original post

5 Replies
smasnizk
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 2 of 6

Re: MWG 8.2.0 transparent router mode with L4

Jump to solution

Hi ThomasSu,

 

due to recent changed to mfend you have to adjust your configuration. Please check this KB article and let me know if it helps to fix this issue.

 

https://kc.mcafee.com/corporate/index?page=content&id=KB91848

 

-Sergej

Best Regards,
Sergej


If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!
ThomasSu
Level 9
Report Inappropriate Content
Message 3 of 6

Re: MWG 8.2.0 transparent router mode with L4

Jump to solution

It didn't help. I check with the KB before config.

Check this topic with mfend

https://community.mcafee.com/t5/Web-Gateway/Multiple-MWG-in-transparent-router-mode/m-p/617746#M1943...

 

Modify the file /etc/sysconfig/mfend

MFEND_LBID='XX''

 

With the change mwg will start process the traffic which redirect by L4. Without that like 8.2, the mwg receive the sync and no response.

smasnizk
McAfee Employee
McAfee Employee
Report Inappropriate Content
Message 4 of 6

Re: MWG 8.2.0 transparent router mode with L4

Jump to solution

Dear ThomasSu,

 

as i wont guess what the issue is, please create feedback file (both nodes) and submit new Service Request. 

 

-Sergej

Best Regards,
Sergej


If you find this post useful, Please give it a Kudos! Also, Please don't forget to select "Accept as a solution" if this reply resolves your query!
ThomasSu
Level 9
Report Inappropriate Content
Message 5 of 6

Re: MWG 8.2.0 transparent router mode with L4

Jump to solution

Hi Sergej,

I open the SR this morning and the number 4-20362165041. Alok is handle this and feedback is on the SR too. In this moment no idea why MWG won't process traffic. 

ThomasSu
Level 9
Report Inappropriate Content
Message 6 of 6

Re: MWG 8.2.0 transparent router mode with L4

Jump to solution

Alternative way is

Configuration -- Proxies -- Proxy (optional WCCP) -- Transparent Proxy -- L2 transparent -- port redirects 80/443 to 9090.

Enable HTTP proxy and add listen address 0.0.0.0:9090.

The original way is not supported anymore with haproxy. And have to run after version 8.2.2 or 9.0.0.

Note: After changing the Proxy configuration, have to reboot the appliance. If not, the mfend service will still be there and result strange problem.

View solution in original post

You Deserve an Award
Don't forget, when your helpful posts earn a kudos or get accepted as a solution you can unlock perks and badges. Those aren't the only badges, either. How many can you collect? Click here to learn more.

Community Help Hub

    New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.

  • Find Forum FAQs
  • Learn How to Earn Badges
  • Ask for Help
Go to Community Help

Join the Community

    Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership:

  • Get helpful solutions from McAfee experts.
  • Stay connected to product conversations that matter to you.
  • Participate in product groups led by McAfee employees.
Join the Community
Join the Community