Google.com blocked but local google domains are not....
-
Hi
I cant search on google.com but local google sites works fine.
I cant see anything in Suricata or pfblocker logs...
-
That would be a question for "forum.google.com" I guess
@cool_corona said in Google.com blocked but local google domains are not....:
Suricata or pfblocker logs...
That's a non issue.
The logs of both of these should be checked 24/24h, because they auto load lists / feeds / rules that you don't control.
If some smart guy manages to include *.google.com on a list or rule you use, you might have an issue. Up to you, as the admin, to check all the rules / feeds / etc you use.
If doubt, don't use them. -
@cool_corona said in Google.com blocked but local google domains are not....:
I cant search on google.com
Do you mean you can't visit www.google.com or that you've unable to search when you get there?
How does it fail, what error do you see?
What sites can you use? Like google.ca?
Steve
-
I can visit google.com but search doesnt work. Results dont show.
Firefox default page doesnt work either.
When I use google.de or something like that, then search works as expected.
Its only the .com domain thats troublesome....
-
Hmm, odd.
Does the results page just timeout? Do you see any errors?Yeah, ythe first thing I would do here is disable Suricata and pfBlocker and retest.
Steve
-
@stephenw10 said in Google.com blocked but local google domains are not....:
Hmm, odd.
Does the results page just timeout? Do you see any errors?Yeah, ythe first thing I would do here is disable Suricata and pfBlocker and retest.
Steve
Allready did that to no avail. It just times out with no error other than the standard "firefox cant display the page you are looking for"....
-
Only Firefox, or other browsers on the same device show the same behaviour ?
IPv6 issues ?
-
@gertjan said in Google.com blocked but local google domains are not....:
Only Firefox, or other browsers on the same device show the same behaviour ?
IPv6 issues ?
Chrome and IE is the same. Dont use IPv6 as of now.
-
@cool_corona i don't have any solution. but please follow up if you find one ... a lot of folks will be interested enable this feature (especially fascist governments and such)
-
Something is being blocked or null routed etc. Either an IP or by DNS.
It will be logged somewhere if you have enough logging enabled.
You should be able to see exactly what domain or IPs are failing to load when you search.
Steve
-
@cool_corona said in Google.com blocked but local google domains are not....:
I can visit google.com but search doesnt work. Results dont show.
How do you think this is a pfsense thing? You understand when you go to google.. Your inside a https tunnel.
Pfsense has zero idea what your doing in this tunnel.. Pfsense is not stopping you from searching google. It could stop you from getting to google.. But once your there - what you do there is not something pfsense has any control over..
-
@johnpoz said in Google.com blocked but local google domains are not....:
@cool_corona said in Google.com blocked but local google domains are not....:
I can visit google.com but search doesnt work. Results dont show.
How do you think this is a pfsense thing? You understand when you go to google.. Your inside a https tunnel.
Pfsense has zero idea what your doing in this tunnel.. Pfsense is not stopping you from searching google. It could stop you from getting to google.. But once your there - what you do there is not something pfsense has any control over..
Thank you. It works when pfsense is not a part of the equation. On a local pc on an ASUS RT-AX88U it works like a charm.
Switching to pfsense, it does not. Same pc, same settings.
So you tell me.
-
@cool_corona said in Google.com blocked but local google domains are not....:
On a local pc on an ASUS RT-AX88U it works like a charm.
Then use that.. Lets go over this again... Pfsense has NO freaking clue what your doing inside a https tunnel.
Are you doing mitm with pfsense? Are you running proxy? I know for sure your not doing that with your asus router.
Lets actually see this problem - go to google and search something.. What happens..
Your IP would be different using your asus router vs pfsense - maybe google is blocking you?
How would pfsense know that google.com (ipX) intercept internal traffic inside this https via "magic"?? going to google.tld (ipY) don't intercept the search via "magic"
-
Mmm, it could be Google blocking you.
Though they usually throw an error at you when they do that.I imagine it could be some subdomain you are blocking somehow.
Steve
-
Maybe he is blocking the captcha they would present him in some browser tool?
But what he is saying is happening has nothing to do with pfsense.
When you go to google.com and search sonething - its inside a tunnel.. You do not get redirected to some other url/IP for the answer to your query.
sniff it - what do you see.. You going to ipX.. and then traffic flow..
How would pfsense just kill off the search results inside this https tunnel? Sniff show if connection is being reset? Having connectivity issues - lots of retrans? But pfsense isn't going to go inside this https tunnel and say oh your searching - kill this connection..
-
The content of the google search results page does not come only from www.google.com or from one IP. I could certainly imagine it blocking partially.
I would expect the page to fail to load correctly before the search results also. But I could imagine it failing like this with the right sub domain blocked. I've never tried. -
@stephenw10 said in Google.com blocked but local google domains are not....:
The content of the google search results page does not come only from www.google.com or from one IP. I could certainly imagine it blocking partially.
I would expect the page to fail to load correctly before the search results also. But I could imagine it failing like this with the right sub domain blocked. I've never tried.I have no clue since its very odd.
-
Fire up web developer in firefox.. What is not loading exactly..
I agree stuff from your results could be hosted elsewhere - images and stuff.
But the overall results are returned via the same tunnel you opened to go to www.google.com
Lets see this when you go to google and then search..
-
Yup, exactly. Do that ^.
It should be pretty obvious what's failing load.Steve
-