[Shorewall-users] Rules problem

Rob Ogle Sun, 16 Sep 2007 11:06:43 -0700

I am currently restricting access to the 'net for an office using rules.
Basically, I only allow the approved sites through, all else is blocked.
This way employees can only get to approved sites.


 

My quandary..

I've got windows defender loaded on the machines and unless I allow full
access to the 'net, it can't update. 

 

Here is my rule to allow it out:

ACCEPT  loc             net:download.windowsupdate.com  tcp     80

 

 

Here are the entries in the windowsupdate.log showing the failure:

2007-09-16          13:10:57:431       1100       ff0          Agent
*************

2007-09-16          13:10:57:431       1100       ff0          Agent    **
START **  Agent: Finding updates [CallerId = Windows Defender]

2007-09-16          13:10:57:431       1100       ff0          Agent
*********

2007-09-16          13:10:57:431       1100       ff0          Agent      *
Online = Yes; Ignore download priority = No

2007-09-16          13:10:57:431       1100       ff0          Agent      *
Criteria = "(IsInstalled = 0 and IsHidden = 0 and CategoryIDs contains
'0a487050-8b0f-4f81-b401-be4ceacd61cd') or (IsInstalled = 0 and IsHidden = 0
and CategoryIDs contains '8c3fcc84-7410-4a95-8b89-a166a0190486')"

2007-09-16          13:10:57:431       1100       ff0          Agent      *
ServiceID = {00000000-0000-0000-0000-000000000000}

2007-09-16          13:10:57:431       2060       e74         COMAPI
<<-- SUBMITTED -- COMAPI: Search [ClientId = Windows Defender]

2007-09-16          13:10:58:697       1100       ff0          Misc
Validating signature for
C:\WINDOWS\SoftwareDistribution\WuRedir\9482F4B4-E343-43B6-B170-9A65BC822C77
\wuredir.cab:

2007-09-16          13:10:58:712       1100       ff0          Misc
Microsoft signed: Yes

2007-09-16          13:11:00:978       1100       ff0          Misc
WARNING: Send failed with hr = 80072efd.

2007-09-16          13:11:00:978       1100       ff0          Misc
WARNING: SendRequest failed with hr = 80072efd. Proxy List used: <(null)>
Bypass List used : <(null)> Auth Schemes used : <>

2007-09-16          13:11:00:978       1100       ff0          Misc
WARNING: WinHttp: SendRequestUsingProxy failed for
<http://download.windowsupdate.com/v7/windowsupdate/redir/wuredir.cab>.
error 0x80072efd

2007-09-16          13:11:00:978       1100       ff0          Misc
WARNING: WinHttp: SendRequestToServerForFileInformation MakeRequest failed.
error 0x80072efd

2007-09-16          13:11:00:978       1100       ff0          Misc
WARNING: WinHttp: SendRequestToServerForFileInformation failed with
0x80072efd

2007-09-16          13:11:00:978       1100       ff0          Misc
WARNING: WinHttp: ShouldFileBeDownloaded failed with 0x80072efd

2007-09-16          13:11:03:259       1100       ff0          Misc
WARNING: Send failed with hr = 80072efd.

 

 

Any ideas?

-------------------------------------------------------------------------
This SF.net email is sponsored by: Microsoft
Defy all challenges. Microsoft(R) Visual Studio 2005.
http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/

_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

[Shorewall-users] Rules problem

Reply via email to