Operational Defect Database
BugZero found this defect 1206 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
WatchGuard Technologies | kA10H000000bqJBSAY
HTTP/HTTPS-proxy policy unexpectedly denies allowed WebBlocker category
Last update date:
1/30/2021
Affected products:
Firebox M200
Firebox M300
Firebox M270
Firebox M370
Firebox M470
Firebox M570
Firebox M670
Firebox M290
Firebox M390
Firebox M400
Firebox M500
Firebox M440
Affected releases:
All
Fireware
12.x
12.5.x
12.6.x
Fixed releases:
v12.6.4 Update 1/Fireware v12.5.7 Update 1
Description:
Issue
If you configure multiple WebBlocker actions with a combination of Deny and Allow actions for the same WebBlocker category, the Firebox might deny traffic unexpectedly. Example logs: ProxyDrop: HTTPS Request categories cats=Social Web - Facebook, dstname=fbcdn.net, action=Social.MediaProxyAllow: HTTPS Request categories, cats=Social Web - Facebook, dstname=fbcdn.net, action=Social.Media
Workaround/Solution
Configure policies to use the same WebBlocker action. To continue to use multiple WebBlocker actions, contact WatchGuard Technical Support for assistance if you can provide Diagnostic Support Access.
