Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Replies 26 replies
  • Subscribers 0 subscribers
  • Views 10604 views
  • Users 0 members are here
Options
Suggested

[9.060][BUG] HTTP Proxy Broken Pipe And Timeout Errors are back

Billybob
Hi, first let me say that I find the proxy response a lot better in this version than the 9.0x tree. Having said that, there are certain periods where the proxy stops responding for no apparent reason. So looking at the logs it appears that we had some regression and http://www.astaro.org/closed-forums-read-only/utm-9-betas/utm-9-public-beta-closed/43208-http-proxy-timeout-broken-pipe-consolidation.html problem is back[:(] 
gatekeeper:/var/log # grep -c "Broken pipe" /var/log/http.log

112


gatekeeper:/var/log # grep -c Timeout /var/log/http.log

316

Here are a few lines from the http.log also

cat http.log |grep "Broken pipe"
2013:01:24-16:40:00 gatekeeper httpproxy[32708]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.0.11" dstip="173.194.43.37" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="0" request="0x9e71ae0" url="http://i1.ytimg.com/vi/0pcUEKIthoU/default.jpg" exceptions="av" error="Broken pipe" country="United States" category="177" reputation="unverified" categoryname="Content Server" content-type="image/jpeg" application="youtube"
2013:01:24-16:40:00 gatekeeper httpproxy[32708]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x9b63860" function="tunnel_response_send_chunk" file="tunnel.c" line="265" message="write: Broken pipe"
2013:01:24-16:40:00 gatekeeper httpproxy[32708]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.0.11" dstip="173.194.43.37" user="" statuscode="502" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="2586" request="0x9b63860" url="http://i2.ytimg.com/vi/98mCq7CbZvU/mqdefault.jpg" exceptions="av" error="Broken pipe" country="United States" category="177" reputation="unverified" categoryname="Content Server" content-type="image/jpeg" application="youtube"

and the timeouts
2013:01:24-10:21:23 gatekeeper httpproxy[12146]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="POST" srcip="192.168.0.11" dstip="207.46.125.65" user="" statuscode="504" cached="0" profile="REF_DefaultHTTPProfile (Default Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="2476" request="0x9346510" url="http://by2msg4020818.gateway.messenger.live.com/gateway/gateway.dll?Action=poll&Lifespan=60&SessionID=1046072096.996363977" exceptions="av,content,url,mime,fileextension" error="Timeout while reading response from Server"

All the timeouts are on the same live.com server so the server maybe down.

Regards
Bill
Parents
  • 0
    Issue: Using * in the "additional sites to block/allow".
    There are no open defects about this, we think it is working correctly.
    If you have a case where an entry was working in 9.0 and does not work after being imported to 9.1 please post a new thread.  To my knowledge, both 9.0 and 9.1 have the same rule - it must be valid regex.

    Issue: Broken pipe and timeouts
    We fixed several issues for this.  If you are running 9.090 and are still experiencing issues with broken pipes, please open a new thread.  Please try to be explicit about reproduction steps.
Reply
  • 0
    Issue: Using * in the "additional sites to block/allow".
    There are no open defects about this, we think it is working correctly.
    If you have a case where an entry was working in 9.0 and does not work after being imported to 9.1 please post a new thread.  To my knowledge, both 9.0 and 9.1 have the same rule - it must be valid regex.

    Issue: Broken pipe and timeouts
    We fixed several issues for this.  If you are running 9.090 and are still experiencing issues with broken pipes, please open a new thread.  Please try to be explicit about reproduction steps.
Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?