2025-09-14 21:52:36 +00:00
|
|
|
|
# K现场21.09版本avg.com拦截失败
|
|
|
|
|
|
|
|
|
|
|
|
| ID | Creation Date | Assignee | Status |
|
|
|
|
|
|
|----|----------------|----------|--------|
|
|
|
|
|
|
| OMPUB-307 | 2021-12-23T14:05:37.000+0800 | 焦建致 | 已关闭 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
|
|
2021.12.22 [~jiaojianzhi] 反馈:
|
|
|
|
|
|
|
|
|
|
|
|
业主下发拦截策略,其他网站可以正常替换证书,但是对于avg.com无法替换证书;
|
|
|
|
|
|
|
|
|
|
|
|
策略和效果参见附件
|
|
|
|
|
|
|
|
|
|
|
|
**liuyang** commented on *2021-12-23T14:07:16.109+0800*:
|
|
|
|
|
|
|
|
|
|
|
|
目前日志查询报错暂时看不到安全事件日志详情,待可以查看日之后,[~jianghuihui] 补充命中日志详情
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
|
|
**jiaojianzhi** commented on *2021-12-23T23:06:58.321+0800*:
|
|
|
|
|
|
|
|
|
|
|
|
由于客户催促下班,今日未能完成此项工作,下次去数据中心继续处理。
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
|
|
**liuyang** commented on *2021-12-24T10:14:26.256+0800*:
|
|
|
|
|
|
|
|
|
|
|
|
* [~jianghuihui] 补充命中该策略的日志详情参见附件;
|
|
|
|
|
|
* 麻烦[~jianghuihui] 慧慧下次过去增加搜索条件看看能不能找到访问www.avg.com的日志:policy id=**& ssl.sni like %avg.com
|
|
|
|
|
|
* 日志中可以看到:双向流,ssl.intercept state=intercept, ssl.error=client-side close
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
|
|
**luwenpeng** commented on *2022-02-11T11:22:54.682+0800*:
|
|
|
|
|
|
|
|
|
|
|
|
[~jiaojianzhi] [~jianghuihui] 修复 TSG-9526 问题后,测试当前问题是否依然存在。
|
|
|
|
|
|
|
|
|
|
|
|
当测试机访问 avg.com 的流量经过 NP 系统的情况下,若依然无法替换证书�请提供以下信息以供排查问题:
|
|
|
|
|
|
|
|
|
|
|
|
1.拦截策略对应的配置信息
|
|
|
|
|
|
|
|
|
|
|
|
2.对应的拦截日志
|
|
|
|
|
|
|
|
|
|
|
|
3.在客户端捕获访问当前 avg.com 的数据包
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
|
|
**jiaojianzhi** commented on *2022-02-11T21:40:58.983+0800*:
|
|
|
|
|
|
|
|
|
|
|
|
安装新版sapp升级补丁后,故障已经得到解决。
|
|
|
|
|
|
|
|
|
|
|
|
证书已经可以正常替换。
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
---
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
# Attachments
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
Attachment: decreption+profile.jpg
|
|
|
|
|
|
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
Attachment: decreption+profile2.jpg
|
|
|
|
|
|
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
Attachment: FQDN.jpg
|
|
|
|
|
|
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
Attachment: FQDN2.jpg
|
|
|
|
|
|
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
Attachment: 拦截策略.jpg
|
|
|
|
|
|
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 22:26:17 +00:00
|
|
|
|
Attachment: 日志详情1.jpg
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Attachment: 日志详情2.jpg
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Attachment: 证书未替换效果.jpg
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
2025-09-14 21:52:36 +00:00
|
|
|
|
|
