fireware w/ firebox x750e cannot passthrough https for owa

Posted on 2008-10-21
Last Modified: 2013-11-16
We recently purchased an upgrade from x500 to x750e and i cannot make the HTTPS service rule work.  No matter how I have configured the HTTPS proxy, HTTPS, or made a manual 443 rule to forward traffic to my exchange server for OWA it won't work.  Ive set it up to NAT from ANY to (external ip)--->internal IP of exchange as it is on our x500 but it won't forward the traffic getting a page cannot be displayed.  I get the error in the traffic monitor:
2008-10-21 16:05:01 Allow xx.xx.xx.xx xx.xx.xx.xx tcp 3521 443 0-External 1-Trusted Connect timeout   (HTTPS-proxy-00) HTTPS-Client rc="590" proxy_act="HTTPS-Client"       Traffic

What's going on here?

Question by:cambee72
  • 6
  • 2

Author Comment

ID: 22772175
nevermind.  Failed to look at the OWA page expecting nothing to be wrong.  Well, I can't browse it locally so I'll be looking at that 1st.  :/

Author Comment

ID: 22772184
thats fixed.  still having the issue stated above.  
LVL 32

Expert Comment

ID: 22855992
As you have fixed one of the problems internally; has the logs changed on firewall when you attempt the connection.

Please update.

Thank you.

Author Comment

ID: 22936431
I put upgrading the firewall aside to pick up on other ones.  I have rebuilt the new firewalls policies and will try it again hopefully this weekend.
How to improve team productivity

Quip adds documents, spreadsheets, and tasklists to your Slack experience
- Elevate ideas to Quip docs
- Share Quip docs in Slack
- Get notified of changes to your docs
- Available on iOS/Android/Desktop/Web
- Online/Offline


Author Comment

ID: 22936433
on other issues that is.
LVL 32

Accepted Solution

dpk_wal earned 500 total points
ID: 22936785
Please update if you need any assistance with firewall configuration.

Thank you.

Author Comment

ID: 23205808
This is resolved now.  Forgot the question was open...sorry bout that.  

I was simply missing a route between the Trusted and External which I do not believe was necessary on the older firebox.


Author Comment

ID: 23205816
posted previous resolution for a different issue but this one is resolved

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Join & Write a Comment

Suggested Solutions

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This article offers some helpful and general tips for safe browsing and online shopping. It offers simple and manageable procedures that help to ensure the safety of one's personal information and the security of any devices.
Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

744 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now