(E2Guardian) Header Add not working
drmwndr opened this issue · comments
Hi there,
I was trying to use the header add resource for Google Apps and Office 365 to allow only some domains. For both services altough on "Real Time Log" E2 Guardian shows HEADERADD to all requests containing any domain from microsoft possible domains list, but the services work like no header was added.
I couldn't trace any error, tested on different computers. Did I miss something?
I have non transparent MITM proxy setted up.
My "Add Header" section contains:
"((^(http.*:\/\/)?login\.microsoft\.com)|(^(http.*:\/\/)?login\.microsoftonline\.com)|(^(http.*:\/\/)?login\.windows\.net))"->"Restrict-Access-To-Tenants: mydomain.com,mydomain.onmicrosoft.com" "((^(http.*:\/\/)?login\.microsoft\.com)|(^(http.*:\/\/)?login\.microsoftonline\.com)|(^(http.*:\/\/)?login\.windows\.net))"->"Restrict-Access-Context: xxx-xxx-xxx-xxxx759" "(^(http.*:\/\/)?login\.live\.com)"->"sec-Restrict-Tenant-Access-Policy: restrict-msa"
I tried something like this too:
"((login\.microsoft\.com)|login\.microsoftonline\.com)|login\.windows\.net))"->"Restrict-Access-To-Tenants: mydomain.com,mydomain.onmicrosoft.com" "((login\.microsoft\.com)|(login\.microsoftonline\.com)|(login\.windows\.net))"->"Restrict-Access-Context: xxx-xxx-xxx-xxxx759" "(login\.live\.com)"->"sec-Restrict-Tenant-Access-Policy: restrict-msa"
with no success either.
Is it possible to get any help about it here? I just forced this header manually and it works, so I believe it's an E2Guardian problem.
Thanks in advance for any help.
Hey,
Have you had any luck getting this to work? I gave up on this feature as it was bugging out for me too. The better place to ask this question maybe on the E2 Guardian official repo.
Hey there,
Unfortunally not. I asked a question in PfSense forum either and nobody answered.
By coincidence I'm leaving E2Guardian for PfSense today and getting back to Squid since I couldn't make it work properly.