Skip to content

IIS 10 + ModSec 2.9.1 breaks websocket/socket.io even if turned off #1435

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
globules-io opened this issue May 27, 2017 · 5 comments
Closed

IIS 10 + ModSec 2.9.1 breaks websocket/socket.io even if turned off #1435

globules-io opened this issue May 27, 2017 · 5 comments
Assignees
@victorhora
Labels
2.x Related to ModSecurity version 2.x Platform - IIS RIP - Type - Usage Related with usage (not a bug)
Milestone
v2.9.3

Comments

@globules-io
Copy link

globules-io commented May 27, 2017
edited
Loading

  1. IIS 10 + socket.io = OK
  2. Install mod sec 2.9.1 x64
  3. Use default config file
  4. Socket.io = Broken (can't connect from client)
  5. Turn off Mod Sec in Server = no change
  6. Turn off Mod Sec in web.config in site = no change
  7. Uninstall Mod Sec = IIS broken (some config files broken)
  8. Reinstall Mod Sec = see step 3
    Pls help
@globules-io globules-io changed the title IIS 10 + ModSec 2.9.1 break websocket even if turned off IIS 10 + ModSec 2.9.1 breaks websocket/socket.io even if turned off May 27, 2017
@globules-io
Copy link
Author

Found one error : when uninstalling modsec (windows server/IIS), there are some leftovers in applicationHost.config (<ModSecurity enabled=false"/>) if you have set that rule per site and not globally. This causes IIS to refuse to start with an error 500.
That being fixed, my sockets are now properly working again (running on port 8080).

@victorhora victorhora self-assigned this May 29, 2017
@victorhora
Copy link
Contributor

Hi @globules-io, looks like the uninstaller is a bit buggy. I'll have a look at it.

In the meantime, were you able to solve your issue? If not, please try going over these instructions to see if it solves your problem:

https://github.com/SpiderLabs/ModSecurity/wiki/Reference-Manual#installation-for-microsoft-iis

https://github.com/SpiderLabs/ModSecurity/wiki/IIS-Troubleshooting

@globules-io
Copy link
Author

I could solve the issue by removing by hand any mention of ModSecurity inside applicationHost.config. My only issue left is that, for some reason, ModSec blocks another process running on port 8080 (socket.io). Note that socket.io here is not handled by IIS so any modification to IIS should not have effect on this I suppose. So my only issue is how to allow that process on 8080 while ModSec is installed on IIS?

@globules-io
Copy link
Author

Any update on this? Any of it solved?

@victorhora victorhora added this to the v2.9.3 milestone Nov 8, 2018
@victorhora victorhora added 2.x Related to ModSecurity version 2.x RIP - Type - Usage Related with usage (not a bug) labels Nov 8, 2018
@victorhora
Copy link
Contributor

Hi @globules-io

As a follow up from uninstallation issues: When uninstalling, please try to run the .msi as Administrator or using msiexec. See #1868 (comment) for more information.

As for the issue you described about ModSec blocking other process on a different port, I could not reproduce it here. I'm wondering if it's any particularity on your environment?

Please check if with a fresh installation of Windows + IIS + ModSecurity 2.9.3 + Socket.io the issue stills persists. If so, please let us know and we can reopen the issue to investigate further if it's an issue with ModSecurity for IIS.

Thanks.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@victorhora victorhora

Labels
2.x Related to ModSecurity version 2.x Platform - IIS RIP - Type - Usage Related with usage (not a bug)
Projects
None yet
Milestone
v2.9.3
Development

No branches or pull requests
2 participants
@globules-io @victorhora