• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Port 443 with protocols http & SSL-tunnel?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA 2006 Firewall] >> Access Policies >> Port 443 with protocols http & SSL-tunnel? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Port 443 with protocols http & SSL-tunnel? - 9.Feb.2013 11:18:31 AM   
JimGrafe

 

Posts: 3
Joined: 9.Feb.2013
Status: offline
I recently started using Fidelity Active Trader Pro Beta 9.7.262.0. Below is a summary of the URLs and IPs that it's attempting to contact via port 443. Am I correct in thinking that these outbound TCP requests should be using protocol HTTPS instead of http and SSL-tunnel? I could define an SSL-tunnel protocol as a workaround but I don't think it makes sense to define an http protocol for port 443.

155.199.18.88 443 http http://atbtnews.fidelity.com:443/...
155.199.160.20 443 SSL-tunnel login.fidelity.com:443
23.64.241.202 443 SSL-tunnel www.fidelity.com:443
155.199.18.25 443 SSL-tunnel rtmwsprod.fidelity.com:443
155.199.18.105 443 SSL-tunnel instant.fidelity.com:443
155.199.206.105 443 SSL-tunnel instant.fidelity.com:443
155.199.193.144 443 SSL-tunnel oltxws.fidelity.com:443
155.199.149.38 443 SSL-tunnel oltx.fidelity.com:443

The Fidelity tech support guy told me that I'm the only user who is having a firewall issue. He declined to even pass along my findings.

Aside from ditching Fidelity or by-passing my firewall, what's the most elegant option?
Post #: 1
RE: Port 443 with protocols http & SSL-tunnel? - 12.Feb.2013 8:10:32 AM   
JimGrafe

 

Posts: 3
Joined: 9.Feb.2013
Status: offline
I created a URL set and an allow rule. Some of it works, but I can't get the news to stream nor can I get the About screen to say that the app is connected.

(in reply to JimGrafe)
Post #: 2
RE: Port 443 with protocols http & SSL-tunnel? - 13.Feb.2013 8:27:35 AM   
JimGrafe

 

Posts: 3
Joined: 9.Feb.2013
Status: offline
I can't get past the http protocol request for port 443. I think the Fidelity app must be miss-configured. Or am I wrong?

(in reply to JimGrafe)
Post #: 3
RE: Port 443 with protocols http & SSL-tunnel? - 25.Feb.2013 4:10:57 PM   
pwindell

 

Posts: 2244
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
My understanding is that HTTP runs over any port specified in the URL because the port being specified in the URL overrides the default and the HTTP Application Filter will handle it. We from time to time access HTTP site on "odd-ball" ports and I have never created a custom protocol to do that.

You cannot create a custom protocol for 443 because the default HTTP Protocol is already using it.

_____________________________

Phillip Windell

(in reply to JimGrafe)
Post #: 4
RE: Port 443 with protocols http & SSL-tunnel? - 25.Feb.2013 4:11:27 PM   
pwindell

 

Posts: 2244
Joined: 12.Apr.2004
From: Taylorville, IL
Status: offline
quote:

ORIGINAL: JimGrafe

I can't get past the http protocol request for port 443. I think the Fidelity app must be miss-configured. Or am I wrong?


I think you are correct.

_____________________________

Phillip Windell

(in reply to JimGrafe)
Post #: 5

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA 2006 Firewall] >> Access Policies >> Port 443 with protocols http & SSL-tunnel? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts