SSL VPN
Reply
Contributor
andre
Posts: 279
Registered: ‎12-18-2007
0

Core Access method to access Zimbra Server

Hi Guys,

 

I have an issue about accessing Internal mail server Zimbra Via Juniper SA using core access method.

 

for other applications are success using core access, except for Zimbra server, the content for zimbra server page did not show up when the web browser status was done.

 

example for the zimbra server url : https://mail.xyz.com:7071

 

Thse Zimbra server using HTTPS with port 7071 and certificate's server has already add to trusted server certificate on SA.

 

here is the user log from SA when user try to access Zimbra server Via core access:

 

2011-04-04 16:36:46 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest ok : Host: mail.xyz.com, Request: GET / HTTP/1.1
2011-04-04 16:36:46 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - Requesting user to confirm access to invalid SSL site - Host: mail.xyz.com, Port: 7071, Request: GET / HTTP/1.1
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - User chose to continue accessing invalid SSL site - Host: mail.xyz.com, Port: 7071, Request: /
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest ok : Host: mail.xyz.com, Request: GET / HTTP/1.1
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest completed, GET to https://mail.xyz.com:7071// from 10.21.1.39 result=302 sent=14 received=0 in 0 seconds
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest ok : Host: mail.xyz.com, Request: GET /zimbraAdmin HTTP/1.1
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest completed, GET to https://mail.xyz.com:7071//zimbraAdmin from 10.21.1.39 result=302 sent=25 received=0 in 0 seconds
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest ok : Host: mail.xyz.com, Request: GET /zimbraAdmin/ HTTP/1.1
2011-04-04 16:36:47 - ive - [10.25.2.104] roy.mangapul(Users)[Network Security] - WebRequest completed, GET to https://mail.xyz.com:7071//zimbraAdmin/ from 10.21.1.39

 

Does anyone have experience about this? or any suggestion?

 

Really need help on this.

 

Thank you

Regards,

Andre
----------------------------------------------------------------------------------------------
JNCIA-FWV | JNCIS-FWV | JNCIS-AC | JNCIS-SSL | JNCIA-JUNOS | JNCIS-ENT | JNCIP-ENT

-Please mark "accept solution" if my post helps you-
Trusted Contributor
stine
Posts: 437
Registered: ‎05-05-2008
0

Re: Core Access method to access Zimbra Server

Enable the Autopolicy: Web rewriting.  

 

Use Passthrough Proxy

Use IVE port 11000

don't rewrite anything.

 

version 7.1.0_GA works fine (so far as I can tell.) for admin on port 7071.  I have not tried the enduser interface.

Theodore E Van Iderstine
Stream Networks
+1 678 373 4200 x125
JNCIA-ER (expired), JNCIA-SSL (ditto)
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.