Firefox Sync and Zscaler Firewall/Proxy not working
Our network has been recently upgraded with the zscaler proxy solution. I was able to regain internet access by following this question: Firefox: This connection is untrusted + Behind corporate firewall
Unfortunately, that did not work out for Firefox Sync.
I'm able to log-in (verified by getting a mail from Firefox Accounts) but Firefox isn't still able to sync.
I suspect that is somehow related to the certification signing process what is properly blocked by zscaler:
1443703953083 FirefoxAccounts ERROR error POSTing /certificate/sign: {"code":401,"errno":109,"error":"Unauthorized","message":"Missing authentication","info":"https://github.com/mozilla/fxa-auth-server/blob/master/docs/api.md#response-format"}
firefox proxy sync firewall
edited Jan 30 at 19:01
Kevin Panko
5,819113648
asked Oct 1 '15 at 13:25
Stefan
29111
add a comment |
Our network has been recently upgraded with the zscaler proxy solution. I was able to regain internet access by following this question: Firefox: This connection is untrusted + Behind corporate firewall
Unfortunately, that did not work out for Firefox Sync.
I'm able to log-in (verified by getting a mail from Firefox Accounts) but Firefox isn't still able to sync.
I suspect that is somehow related to the certification signing process what is properly blocked by zscaler:
1443703953083 FirefoxAccounts ERROR error POSTing /certificate/sign: {"code":401,"errno":109,"error":"Unauthorized","message":"Missing authentication","info":"https://github.com/mozilla/fxa-auth-server/blob/master/docs/api.md#response-format"}
firefox proxy sync firewall
edited Jan 30 at 19:01
Kevin Panko
5,819113648
asked Oct 1 '15 at 13:25
Stefan
29111
add a comment |
Our network has been recently upgraded with the zscaler proxy solution. I was able to regain internet access by following this question: Firefox: This connection is untrusted + Behind corporate firewall
Unfortunately, that did not work out for Firefox Sync.
I'm able to log-in (verified by getting a mail from Firefox Accounts) but Firefox isn't still able to sync.
I suspect that is somehow related to the certification signing process what is properly blocked by zscaler:
1443703953083 FirefoxAccounts ERROR error POSTing /certificate/sign: {"code":401,"errno":109,"error":"Unauthorized","message":"Missing authentication","info":"https://github.com/mozilla/fxa-auth-server/blob/master/docs/api.md#response-format"}
firefox proxy sync firewall
edited Jan 30 at 19:01
Kevin Panko
5,819113648
asked Oct 1 '15 at 13:25
Stefan
29111
Our network has been recently upgraded with the zscaler proxy solution. I was able to regain internet access by following this question: Firefox: This connection is untrusted + Behind corporate firewall
Unfortunately, that did not work out for Firefox Sync.
I'm able to log-in (verified by getting a mail from Firefox Accounts) but Firefox isn't still able to sync.
I suspect that is somehow related to the certification signing process what is properly blocked by zscaler:
1443703953083 FirefoxAccounts ERROR error POSTing /certificate/sign: {"code":401,"errno":109,"error":"Unauthorized","message":"Missing authentication","info":"https://github.com/mozilla/fxa-auth-server/blob/master/docs/api.md#response-format"}
firefox proxy sync firewall
firefox proxy sync firewall
edited Jan 30 at 19:01
Kevin Panko
5,819113648
asked Oct 1 '15 at 13:25
Stefan
29111
edited Jan 30 at 19:01
Kevin Panko
5,819113648
asked Oct 1 '15 at 13:25
Stefan
29111
edited Jan 30 at 19:01
Kevin Panko
5,819113648
edited Jan 30 at 19:01
Kevin Panko
5,819113648
edited Jan 30 at 19:01
Kevin Panko
5,819113648
5,819113648
asked Oct 1 '15 at 13:25
Stefan
29111
asked Oct 1 '15 at 13:25
Stefan
29111
asked Oct 1 '15 at 13:25
Stefan
29111
29111
add a comment |
add a comment |
2 Answers
2
active
oldest
votes
Bypass the proxy for *.services.mozilla.com; I believe Firefox browser pins the cert for Sync.
If using PAC, use a line like:
shExpMatch(host, "*.services.mozilla.com")
If using PBR, WCCP or a Tunnel, bypass it at that edge device.
edited Apr 20 '16 at 22:17
techraf
3,975111729
answered Apr 20 '16 at 20:46
BrianV
111
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
add a comment |
It is not the perfect answer but there is a ticket on Bugzilla what has gone in some more details recently what I cannot cover here in a compressive and satisfying answer.
I hope the reference to Bugzilla may help others to find a solution.
All that I can say that as from Firefox V54 sync works may even as from V53 but I cannot tell the reason.
answered Dec 5 at 12:51
Stefan
29111
add a comment |
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f980721%2ffirefox-sync-and-zscaler-firewall-proxy-not-working%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
2 Answers
2
active
oldest
votes
2 Answers
2
active
oldest
votes
active
oldest
votes
active
oldest
votes
Bypass the proxy for *.services.mozilla.com; I believe Firefox browser pins the cert for Sync.
If using PAC, use a line like:
shExpMatch(host, "*.services.mozilla.com")
If using PBR, WCCP or a Tunnel, bypass it at that edge device.
edited Apr 20 '16 at 22:17
techraf
3,975111729
answered Apr 20 '16 at 20:46
BrianV
111
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
add a comment |
Bypass the proxy for *.services.mozilla.com; I believe Firefox browser pins the cert for Sync.
If using PAC, use a line like:
shExpMatch(host, "*.services.mozilla.com")
If using PBR, WCCP or a Tunnel, bypass it at that edge device.
edited Apr 20 '16 at 22:17
techraf
3,975111729
answered Apr 20 '16 at 20:46
BrianV
111
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
add a comment |
Bypass the proxy for *.services.mozilla.com; I believe Firefox browser pins the cert for Sync.
If using PAC, use a line like:
shExpMatch(host, "*.services.mozilla.com")
If using PBR, WCCP or a Tunnel, bypass it at that edge device.
edited Apr 20 '16 at 22:17
techraf
3,975111729
answered Apr 20 '16 at 20:46
BrianV
111
Bypass the proxy for *.services.mozilla.com; I believe Firefox browser pins the cert for Sync.
If using PAC, use a line like:
shExpMatch(host, "*.services.mozilla.com")
If using PBR, WCCP or a Tunnel, bypass it at that edge device.
edited Apr 20 '16 at 22:17
techraf
3,975111729
answered Apr 20 '16 at 20:46
BrianV
111
edited Apr 20 '16 at 22:17
techraf
3,975111729
edited Apr 20 '16 at 22:17
techraf
3,975111729
edited Apr 20 '16 at 22:17
techraf
3,975111729
3,975111729
answered Apr 20 '16 at 20:46
BrianV
111
answered Apr 20 '16 at 20:46
BrianV
111
answered Apr 20 '16 at 20:46
BrianV
111
111
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
add a comment |
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can provide some more details, I reckon you mean: PAC = proxy auto-config file PBR = Policy Based Routing WCCP = Web Cache Communication Protocol It seams I can download the PAC file although I cannot read the entire url in LAN Settings of Win 7 and haven't found a command for cmd to do so yet. Do you want me to edit the PAC save it locally and point firefox to it? Beware I'm not system or it admin.
– Stefan
Apr 26 '16 at 16:17
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
can you provide some details?
– Stefan
Jun 6 '16 at 8:13
add a comment |
It is not the perfect answer but there is a ticket on Bugzilla what has gone in some more details recently what I cannot cover here in a compressive and satisfying answer.
I hope the reference to Bugzilla may help others to find a solution.
All that I can say that as from Firefox V54 sync works may even as from V53 but I cannot tell the reason.
answered Dec 5 at 12:51
Stefan
29111
add a comment |
It is not the perfect answer but there is a ticket on Bugzilla what has gone in some more details recently what I cannot cover here in a compressive and satisfying answer.
I hope the reference to Bugzilla may help others to find a solution.
All that I can say that as from Firefox V54 sync works may even as from V53 but I cannot tell the reason.
answered Dec 5 at 12:51
Stefan
29111
add a comment |
It is not the perfect answer but there is a ticket on Bugzilla what has gone in some more details recently what I cannot cover here in a compressive and satisfying answer.
I hope the reference to Bugzilla may help others to find a solution.
All that I can say that as from Firefox V54 sync works may even as from V53 but I cannot tell the reason.
answered Dec 5 at 12:51
Stefan
29111
It is not the perfect answer but there is a ticket on Bugzilla what has gone in some more details recently what I cannot cover here in a compressive and satisfying answer.
I hope the reference to Bugzilla may help others to find a solution.
All that I can say that as from Firefox V54 sync works may even as from V53 but I cannot tell the reason.
answered Dec 5 at 12:51
Stefan
29111
answered Dec 5 at 12:51
Stefan
29111
answered Dec 5 at 12:51
Stefan
29111
answered Dec 5 at 12:51
Stefan
29111
29111
add a comment |
add a comment |
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Some of your past answers have not been well-received, and you're in danger of being blocked from answering.
Please pay close attention to the following guidance:
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f980721%2ffirefox-sync-and-zscaler-firewall-proxy-not-working%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
