Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Liberando OneDriver LANNET

    Scheduled Pinned Locked Moved Portuguese
    7 Posts 4 Posters 2.4k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      ttercio
      last edited by

      Olá a todos!!!
      Pessoal é o seguinte.
      Estou tentando liberar o Aplicativo do OneDriver. Tenho PfSense 2.1.2-RELEASE (i386) + Squid + SquiGuard.
      Já liberei algumas urls na ACL pelo SquidGuard, porém não consigo efetuar o login no aplicativo do OneDriver, so quando eu libero o acesso total a estação.

      Já tenho liberado para o mesmo:

      
onedrive.live.com blog.onedrive.com c.microsoft.com blogs.office.com p.sfx.ms c1.microsoft.com cs.microsoft.com c.bing.com redirector.gvt1.com crl.microsoft.com lync.com microsoftonline.com microsoftonline-p.com outlook.com office365.com onmicrosoft.com skydrive.com live.com live.net gfx.ms sfx.ms demdex.net omtrdc.net microsoft.com livefilestore.com redirector.gvt1.com spoprod-a.akamaihd.net go.microsoft.com g.live.com www.download.windowsupdate.com oneclient.sfx.ms directory.services.live r1.res.office365.com skyapi.live.net browser.pipe.aria.microsoft.com ad.atdmt.com cdn.optimizely.com skydrivesync.policies.live.net dm2306.storage.live.com 2523150420.log.optimizely.com sr.symcd.com auth.gfx.ms login.live.com skydrive.wns.windows.com officeclient.microsoft.com odc.officeapps.live.com register.mesh.com device.ra.live

      Porém quando vou fazer login tenho fico parado em:

      
1470858700.958      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -

      lí que quando agente tem esse problema temos que configurar no Squid o parâmetro: "never_direct allow", então adicionei o mesmo nas conf personalizadas do Squid

      Se alguém puder me ajudar …..

      1 Reply Last reply Reply Quote 0
      • E
        edubicalho
        last edited by

        Bom dia amigo ! Experimente colocar nas acls de liberação o seguinte domínio :  1drv.ms
        Este é um dos diversos domínios que a microsoft usa para o aplicativo.

        1 Reply Last reply Reply Quote 0
        • T
          ttercio
          last edited by

          @edubicalho:

          Bom dia amigo ! Experimente colocar nas acls de liberação o seguinte domínio :  1drv.ms
          Este é um dos diversos domínios que a microsoft usa para o aplicativo.

          Bom dia, coloquei na lista de permissões porém não carregou ainda.

          e no squid

          
1470921942.698      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921945.700      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921948.702      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921951.704      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921954.706      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921957.708      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921960.710      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921963.712      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921966.714      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921969.716      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921972.718      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921975.720      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921978.722      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921981.724      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921984.727      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921987.729      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921990.731      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921993.733      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921996.735      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470921999.737      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470922006.799  69702 10.20.0.2 TCP_MISS/200 19643 CONNECT auth.gfx.ms:443 - DIRECT/23.4.40.70 -
1470922006.800  69702 10.20.0.2 TCP_MISS/200 8651 CONNECT auth.gfx.ms:443 - DIRECT/23.4.40.70 -
1470922006.800  69702 10.20.0.2 TCP_MISS/200 47749 CONNECT auth.gfx.ms:443 - DIRECT/23.4.40.70 -
1470922052.139 119989 10.20.0.2 TCP_MISS/200 50437 CONNECT officeclient.microsoft.com:443 - DIRECT/40.124.14.212 -
1470922052.139 118652 10.20.0.2 TCP_MISS/200 6453 CONNECT odc.officeapps.live.com:443 - DIRECT/40.84.192.103 -
1470922059.737      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
1470922119.738      0 10.20.0.2 TCP_MISS/404 0 CONNECT directory.services.live.com:443 - DIRECT/- -
          1 Reply Last reply Reply Quote 0
          • E
            edubicalho
            last edited by

            Meu caro, conhecendo pouco de sua estrutura e forma de acesso ( tipo de autenticação ) ou mesmo sem autenticação, oque te indicaria é personalizar seu squid da seguinte forma :

            acl whitelist_pro dstdom_regex -i "/var/squid/acl/whitelist.acl";
            http_access allow whitelist_pro;

            Declarando esta acl  na personalização do squid e antes de qualquer outra regra que tenha configurado, tudo que estiver em whitelist no seu squid nem sequer pedirá autenticação.

            Qualquer coisa só chamar …

            1 Reply Last reply Reply Quote 0
            • T
              ttercio
              last edited by

              Bom dia… bem consegui hoje  :-\

              Vou deixar todos os domínios aqui caso alguém tenho o mesmo problema.

              
live.com lync.com glbdns.microsoft.com microsoft.com microsoftonline.com microsoftonline-p.net microsoftonline-p.com microsoftonlineimages.com microsoftonlinesupport.net msn.com msn.co.jp msn.co.uk msecnd.net msocdn.com office.microsoft.com office.net office365.com officeapps.live.com outlook.com Sharepoint.com Sharepointonline.com activedirectory.windowsazure.com phonefactor.net


              
onedrive.live.com blog.onedrive.com c.microsoft.com blogs.office.com p.sfx.ms c1.microsoft.com cs.microsoft.com c.bing.com redirector.gvt1.com crl.microsoft.com lync.com microsoftonline.com microsoftonline-p.com outlook.com office365.com onmicrosoft.com skydrive.com live.com live.net gfx.ms sfx.ms demdex.net omtrdc.net microsoft.com livefilestore.com redirector.gvt1.com spoprod-a.akamaihd.net go.microsoft.com g.live.com www.download.windowsupdate.com oneclient.sfx.ms directory.services.live r1.res.office365.com skyapi.live.net browser.pipe.aria.microsoft.com ad.atdmt.com cdn.optimizely.com skydrivesync.policies.live.net dm2306.storage.live.com 2523150420.log.optimizely.com sr.symcd.com auth.gfx.ms login.live.com skydrive.wns.windows.com officeclient.microsoft.com odc.officeapps.live.com register.mesh.com device.ra.live www.microsoft.com

              Também tem a que fiz pro hotmail que talvez influencie

              
www.hotmail.com mail.live.com login.live.com auth.gfx.ms account.live.com outlook.live.com xsi.outlook.com r1.res.office365.com www.msn.com c.live.com users.storage.live.com
              R 1 Reply Last reply Reply Quote 1
              • B
                brunorrjj
                last edited by

                Você colocou no Bypass Proxy???

                @ttercio:

                Bom dia… bem consegui hoje  :-\

                Vou deixar todos os domínios aqui caso alguém tenho o mesmo problema.

                
live.com lync.com glbdns.microsoft.com microsoft.com microsoftonline.com microsoftonline-p.net microsoftonline-p.com microsoftonlineimages.com microsoftonlinesupport.net msn.com msn.co.jp msn.co.uk msecnd.net msocdn.com office.microsoft.com office.net office365.com officeapps.live.com outlook.com Sharepoint.com Sharepointonline.com activedirectory.windowsazure.com phonefactor.net


                
onedrive.live.com blog.onedrive.com c.microsoft.com blogs.office.com p.sfx.ms c1.microsoft.com cs.microsoft.com c.bing.com redirector.gvt1.com crl.microsoft.com lync.com microsoftonline.com microsoftonline-p.com outlook.com office365.com onmicrosoft.com skydrive.com live.com live.net gfx.ms sfx.ms demdex.net omtrdc.net microsoft.com livefilestore.com redirector.gvt1.com spoprod-a.akamaihd.net go.microsoft.com g.live.com www.download.windowsupdate.com oneclient.sfx.ms directory.services.live r1.res.office365.com skyapi.live.net browser.pipe.aria.microsoft.com ad.atdmt.com cdn.optimizely.com skydrivesync.policies.live.net dm2306.storage.live.com 2523150420.log.optimizely.com sr.symcd.com auth.gfx.ms login.live.com skydrive.wns.windows.com officeclient.microsoft.com odc.officeapps.live.com register.mesh.com device.ra.live www.microsoft.com

                Também tem a que fiz pro hotmail que talvez influencie

                
www.hotmail.com mail.live.com login.live.com auth.gfx.ms account.live.com outlook.live.com xsi.outlook.com r1.res.office365.com www.msn.com c.live.com users.storage.live.com
                1 Reply Last reply Reply Quote 0
                • R
                  ranieri.arantes @ttercio
                  last edited by

                  @ttercio Me ajudou aqui, obrigado!

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.