URL exclusion in WebShield AVAST not working.

system · 2017-03-25T23:14:07.000Z

Hi,

Also tested with the same string in de “General” exclusions with no luck.

I think it has something to do with “TLSv1”
TLSv1 is not save anymore.
But I use this for internal use and it doesn’t get access to the WEB.

Thanks,

S.O.

system · 2017-03-29T19:32:18.000Z

Hello,

I have heart nothing at this moment from the team yet.

lukor post:17:

Hi, seems like you are doing everything correctly. The complete string to exclude an HTTPs URL from scanning is inside WebShield’s settings dialog, URLs to exclude and enter the following string into one line:

https://192.168.254.10;https://192.168.254.10*;https://192.168.254.10/*

(please don’t ask why, in 99% cases https://192.168.254.10* is also good enough)

What we would really like to find out is the reason, why you are having the issue with WebShield and DRAC5. We would really appreciate if you’ll be able to gather some debugging logs for us. I’ll post you in PM on Monday with detailed instructions, as soon as I’ll get in touch with the team.

The most probable reason is the fact that the cert is expired (am I right? Is the certificate correct but just expired?) However, the URL exclusion should also help you.

Thanks.

Is there something I have missed?

Kind regards,

S.O.

DavidR · 2017-03-29T19:49:36.000Z

Did you receive the PM from lukor ?
If so he should outline what you need to do to gather that debugging data, so that he can analyse it.

system · 2017-03-29T19:57:27.000Z

Hi,

I didn’t receive any messages or instructions.
Therefor the friendly reminder

Kind regards,
S.O.

Alikhan · 2017-03-29T20:07:17.000Z

I will send Lukor a message to get in contact with you.

system · 2017-03-29T20:15:19.000Z

Hi,

Thank you.

This evening I installed and tested the version 17.3.2290 (build 17.3.2442.0)
But still the same challenge.

Kind regards,

S.O.

vojtech · 2017-03-30T08:46:33.000Z

What does the browser say when HTTPS scanning is enabled?

system · 2017-03-30T14:01:21.000Z

Hello Vojtech,

The browser doesn’t show anything when HTPPS scanning is enabled.
I only see “Waiting for 192.168.254.10” in the Tab of the browser.

See attachment.

Kind regards,

S.O.

vojtech · 2017-03-31T11:49:40.000Z

Hello,

please use this utility to generate WebShield logs and send them to me by email. When you are asked about WebShield technology, select StreamFilter (proxy is a legacy method).

http://public.avast.com/~peterka/WebShield/NsfTroubleshoot.exe

system · 2017-04-03T21:12:07.000Z

Hi Vojtech,

I have sent you a message with the info.
Hope it helps.

Kind regards,

S.O.

vojtech · 2017-04-04T11:42:06.000Z

The utility should have created a file named StreamFilterLogs.zip, can you send me this file?
I received only 2 ini files.

system · 2017-04-05T11:37:04.000Z

Hello vojtech.

Sorry that I didn’t send you all the information.

I try to locate that file.
Otherwise I will try to create the logs and files again.
I am very busy at this moment, so it can take some time.

Thank you for the help anyway.

Kind regards,

S.O.

system · 2017-04-13T21:34:45.000Z

Hello Vojtech,

I send you the requested files.
Did you receive the files in good order?

Kind regards,
S.O.

system · 2017-04-16T19:38:07.000Z

Hello Vojtech,

Can you tell me when the exclusions are beeing fixed.
I have also issues to access webinterfaces for my relay cards.

Because the exclusion list are not working I have to disable the complete webshield to get access to the webinterfaces of the relaycard.

Have a nice day.

Kind regards,

S.O.

vojtech · 2017-04-18T13:10:10.000Z

I received just 2 log files. Does the utility work for you? Does it generate the output file named StreamFilterLogs.zip?

Exclusions for IP addresses will be implemented in the next release.

system · 2017-04-18T20:56:41.000Z

Hi Vojtech,

At 13-4 I did send you the 3 files.

And yes I am having troubles to execute the program because Avast doesn’t reconise the program.

I will try again and to send you the information.

Kind regards, S.O.

system · 2017-04-18T21:20:21.000Z

Hello Vojtech,

I send you now all the information by e-mail to you.

If I can assist with something let me know.

Kind regards,

S.O.

system · 2017-04-19T14:20:24.000Z

I have exactly same issue with the access to authentication page on SAP.com. With the option “Enable HTTPS scanning” enabled I am unable to login using SAP SID. Sample:

Entering URL: https://launchpad.support.sap.com/
I am forwarded to: https://authn.hana.ondemand.com/saml2/sp/mds
Ending with: https://accounts.sap.com/saml2/idp/sso/accounts.sap.com - No page available

With “Enable HTTPS scanning” disabled - everything is OK!

I tried to add exceptions for sites and scenarios:
.hana.ondemand.com/
.sap.com/
But no luck!

May be I have to use different format for exceptions?
Like:
https://.sap.com/
?

P.S.
Tested:
https://.sap.com/
https://.hana.ondemand.com/
Same negative result!

P.P.S.
I am using the latest free version: 17.3.2291
I had no issues on the previous Avast versions to access SAP!

system · 2017-06-29T08:15:44.000Z

Hello,

I too have a similar issue. I am running avast business v17.4.2520 (build 17.4.3482.0). I need some computers that have constant dealings with the internet to also connect to a local ip server, fitted with a work related database that you operate on through internet explorer. So i prefer to have avast shields up. But for some reason web shield is restricting download of certain forms from the local server. Working on the platform is just fine otherwise.
I have tried to find if it’s a specific option in web shield component but none seems to work regardless if it’s on or off. Only “fix” is to entirely disable web shield.
I have tried to add exclusion for this local ip on general and on web shield component. And also tried different versions of the ip string in the exclusion box: “/*” “/” “just ip” . Gave same results no matter what. I also checked avast report in which it was clear that the exclusion is indeed seen by the program. But i still fail to understand why does it still blocks download…
Any ideas?

Asyn · 2017-06-29T08:17:04.000Z

p3rfect_aim post:40:

I am running avast business v17.4.2520 (build 17.4.3482.0).

→ https://forum.avast.com/index.php?board=65.0

Announcements