Hi All
i have a problem when i try to open specific web site via mikrotik.
if i try to open it via normal router it opens.
this site is www.arabseed.com
the main site open but if you try to open any of it’s link for example http://www.arabseed.com/refresh-21886
it give me in internet explorer a blank page please mikrotik team help me to get rid of this error
i am using mikrotik 4.15 on pc with hotspot enableing cache
this problem is general problem not in just my mikrotik it is in all mikrotik you can test it in your routers
Works perfectly fine for me here in the office behind a MikroTik. A router does not care what web site you are going to or what DNS name you have (baring configuring it to care with filtering traffic to certain IP addresses or using the proxy), it routes packets and doesn’t care where they are headed. We will need your configuration to see if there is any problems with that.
Please post the results of the following commands in a code bracket.
Well you have two things in your proxy rule that won’t do anything there, they are better placed in the firewall filter:
add action=deny comment="block telnet & spam e-mail relaying" disabled=no \
dst-port=23-25
add action=deny comment="Deny access from WAN to Web Proxy " disabled=no \
src-address=!10.10.10.0/23
The proxies only works for HTTP, not telnet or SMTP, so having those rules there is meaningless. Also I believe it will take fewer resources to block proxy requests from address you don’t want in the firewall filter than in the proxy itself.
As for why you cannot access that website, I didn’t see anything in your firewall to prevent it, so I’m guessing it’s tied to the proxy itself. Try setting always-from-cache=yes to no, and test. If that doesn’t work, disable the transparent proxy rule, and disable it in the hotspot profile and sign back in and see what happens. If it works then, re-enable the proxy and disable all of the deny rules, try again, if it works, enable the rules one by one until you run across the one causing your problem.
If ether1 is not your wan interface, then change that.
Then remove the masquerade with the src-address.
It will masquerade your localnet, but when you go through the proxy, it is not masquerading the proxy server (127.0.0.1). At least that is what I have discovered.
For this error i had fixed it but nothing changed it is the same.
i discovered that when i disable the proxy at all, the site works normally (i discover this after i tried working with proxy but disabling all rules and cache (also does not work)) please Feklar try to open this links with enabling proxy in Mikrotik you will find that it won’t work as i did.
now i need to know why Mikrotik not opening this site while enabling proxy.
for solution i did found one (by putting site ip addresses before Proxy Rule in nat section and accept it) but it is not logical to do this for every site does not work
yes i did (i try with pure proxy setting (default also without cache))
also there is a strange thing happen with the parent proxy. parent proxy can not retrieve this link for me also (give me error from apache proxy server). it maybe a problem from the site but i think Mikrotik router need to solve this problem for such sites in web proxy.
if parent proxy cannot open the page, neither will proxy in the RouterOS. Check if anything else is working properly, also note that RouterOS proxy works with HTTP and does NOT with HTTPS.
Last I checked, the proxy won’t cache dynamic pages. And that dynamic page is loaded with warnings and a couple errors, according to my Firefox error console.
How many sites don’t work besides the one you listed in your original post? How about http://www.yahoo.com? Or http://www.google.com? Do they work? They are both dynamic pages.
I agree with you no doubt that Mikrotik is a very high performance server.
but if the two sites is dynamic pages why mikrotik didn’t open the one we have problem with? (sorry if i have weak knowledge for understanding the previous posts)
/ip proxy direct
add action=allow dst-host=forum.arabseed.com
And you are certain you are not blocking anything on that page with the proxy, by either domain name or file type? I noticed a Flash Player app running on that page.
You might try a simple php page in that same server.