we have the McAfee Web Gateway 22.214.171.124
I have activated the SOCKS Proxy, and now i want to restrict the IP's who are allowed to use the SOCKS Proxy.
I have created a Ruleset who is bind to the SOCKS Port.
There i have created a new Ruleset, and there i have two Rules:
1. Client.IP equals xxx.xxx.xxx.xxx then Stop Rule Set
2. Allways Block
So my Problem is, that if i enable now the Rules, all SOCKS Traffic is blocked, it seems that the Rule with the exeption for the IP doesn't work.
Can someone help me?
Another Question where are the logfiles from the SOCKS Traffic?
Which URL you are trying to access???
Rule tracing should show the logs.Are you getting any logs in access.log or not. You should be able to see the hits in the log. Also is the socks port is open ??
I dont know the URL, because it is the Blackberry 12 Server who uses the SOCKS-Proxy for the tunnel to Blackberry.
In the Rule tracing i see the http-connects but nothing from the SOCKS-Proxy, there are also no entries in the Access.log.