EDIT: found this on one webpage:
If you see some asterisks (timeouts) in your trace for some routers, then this router (or firewall) is probably configured with an access-list and configure not to respond with any TTL expired messages.
I just tried the same my.ur.de url and got the same timeout response.
I then disabled ipblocklist but the error stayed the same.
Then I disabled the IPS and the error changed to a problem with the proxy.
I then set the browser proxy to system and the url opened.
I then saw that the url is looking to use port 8443 and not just 443.
8443 is not enabled by default in the secure ports list of the web proxy.
So I added 8443 in the secure ports table, saved and restatrted the proxy and set the browser proxy back to my normal auto detect and the site was able to open again.
I turned back on the IPS and the IPblocklist and the site is still working fine.
Looks like the web site decided to change from using 443 to a custom 8443 and the IPFire proxy then blocks that as it is, by default, not allowed.
IPS on IPfire is not running on green interface. Nevertheless, I’ve switched it off completely, this did not change the game either.
I found the issue, silly me! I had to open port 8443 that the website uses for automatic redirection or similor. After setting up a FW rule from green to red network for port 8443. I finally reach the correct site.
FWIW, I’ve set up this rule before, but not on position 1 as I just created. Maybe some other blocking rules jumped in before?
Thanks Jon for reading and your hints!
Edit: Thanks Adolf!