Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

(E2Guardian) Header Add not working #98

Open
drmwndr opened this issue Dec 14, 2021 · 3 comments
Open

(E2Guardian) Header Add not working #98

drmwndr opened this issue Dec 14, 2021 · 3 comments

Comments

@drmwndr
Copy link

drmwndr commented Dec 14, 2021
edited
Loading

Hi there,
I was trying to use the header add resource for Google Apps and Office 365 to allow only some domains. For both services altough on "Real Time Log" E2 Guardian shows HEADERADD to all requests containing any domain from microsoft possible domains list, but the services work like no header was added.
I couldn't trace any error, tested on different computers. Did I miss something?

I have non transparent MITM proxy setted up.
My "Add Header" section contains:

"((^(http.*:\/\/)?login\.microsoft\.com)|(^(http.*:\/\/)?login\.microsoftonline\.com)|(^(http.*:\/\/)?login\.windows\.net))"->"Restrict-Access-To-Tenants: mydomain.com,mydomain.onmicrosoft.com" "((^(http.*:\/\/)?login\.microsoft\.com)|(^(http.*:\/\/)?login\.microsoftonline\.com)|(^(http.*:\/\/)?login\.windows\.net))"->"Restrict-Access-Context: xxx-xxx-xxx-xxxx759" "(^(http.*:\/\/)?login\.live\.com)"->"sec-Restrict-Tenant-Access-Policy: restrict-msa"

I tried something like this too:

"((login\.microsoft\.com)|login\.microsoftonline\.com)|login\.windows\.net))"->"Restrict-Access-To-Tenants: mydomain.com,mydomain.onmicrosoft.com" "((login\.microsoft\.com)|(login\.microsoftonline\.com)|(login\.windows\.net))"->"Restrict-Access-Context: xxx-xxx-xxx-xxxx759" "(login\.live\.com)"->"sec-Restrict-Tenant-Access-Policy: restrict-msa"

with no success either.

Is it possible to get any help about it here? I just forced this header manually and it works, so I believe it's an E2Guardian problem.

Thanks in advance for any help.
@drmwndr drmwndr changed the title Header Add not working (E2Guardian) Header Add not working Dec 14, 2021
@forid786
Copy link
Contributor

Hey,

Have you had any luck getting this to work? I gave up on this feature as it was bugging out for me too. The better place to ask this question maybe on the E2 Guardian official repo.

@drmwndr
Copy link
Author

drmwndr commented Feb 24, 2022

Hey there,
Unfortunally not. I asked a question in PfSense forum either and nobody answered.
By coincidence I'm leaving E2Guardian for PfSense today and getting back to Squid since I couldn't make it work properly.

@forid786
Copy link
Contributor

@drmwndr The issue with Squid is that it's very limited, can't do any fancy phrase based filtering and pretty much purely works off a list.

In the past when I tried it, I also struggled to get seperate lists for seperate groups of users. For example kids and adults.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@drmwndr @forid786