[IAG] Aliwangwang cannot be logged in, direct access prompts http packet loss—Internet access policy prohibits http, ssl standard port uses other protocols
Problem Description
Device bridge deployment, intranet users cannot log in to Aliwangwang, and HTTP packet loss is prompted when direct access is enabled. Aliwangwang application has been enabled
Warning Information
677915c9cbe35ea00d.png (66.49 KB)
Process——
- Enable direct pass-through and check to improve the readability of the log, prompting the use of standard ports of http or ssl protocols to transmit other protocol data packet loss
493935c9b6eba570ea.png (17.4 KB)
744715c9cbe57483fd.png (99.96 KB) - Check the policy and find that the proxy control option is not allowed to transmit other protocols on the standard ports of http and ssl protocols.
736005c9b6f26095d4.png (27.07 KB) - After checking this option, port 80 can only use http protocol, and port 443 can only use https protocol, which will cause other protocols to use ports 80 and 443 and be lost by the device
solution
Uncheck the "Do not allow other protocols to be transmitted on the standard ports of http and ssl protocols" checkbox in the proxy control policy.
Original Link
https://support.sangfor.com.cn/cases/list?product_id=22&type=1&category_id=6813&isOpen=true