[9.100][BUG] Http reading configuration

The message occurs intermittently and access are left without access.

Poxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="main" file="httpproxy.c" line="241" message="reading configuration"

2013:04:26-10:07:53 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="parse_address" file="util.c" line="568" message="getaddrinfo: passthrough6.fw-notify.net: Name or service not known"

2013:04:26-10:07:53 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="confd_config_filter" file="confd-client.c" line="2770" message="failed to resolve passthrough6.fw-notify.net, using 2a01:198:200:680::8080"

2013:04:26-10:07:53 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="main" file="httpproxy.c" line="261" message="reading profiles"

2013:04:26-10:07:55 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="disk_cache_zap" file="diskcache.c" line="445" message="creating cache"

2013:04:26-10:07:56 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs01.astaro.com' access time: 499ms"

2013:04:26-10:07:56 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs02.astaro.com' access time: 405ms"

2013:04:26-10:07:56 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs03.astaro.com' access time: 312ms"

2013:04:26-10:07:57 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs04.astaro.com' access time: 371ms"

2013:04:26-10:07:57 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs05.astaro.com' access time: 480ms"

2013:04:26-10:07:58 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs06.astaro.com' access time: 317ms"

2013:04:26-10:07:58 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs07.astaro.com' access time: 287ms"

2013:04:26-10:07:58 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs08.astaro.com' access time: 544ms"

2013:04:26-10:07:59 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs09.astaro.com' access time: 687ms"

2013:04:26-10:08:00 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs10.astaro.com' access time: 706ms"

2013:04:26-10:08:00 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs11.astaro.com' access time: 477ms"

2013:04:26-10:08:01 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs12.astaro.com' access time: 373ms"

2013:04:26-10:08:01 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs13.astaro.com' access time: 387ms"

2013:04:26-10:08:01 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs14.astaro.com' access time: 308ms"

2013:04:26-10:08:02 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="scanner_init" file="saviscanner.c" line="223" message="Successfully loaded SAVI threat data, engine 3.41.0, threat data 4.87 from 13/3/2013 (4726367 detected threats)"

2013:04:26-10:08:02 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="main" file="httpproxy.c" line="305" message="finished startup"

2013:04:26-10:08:02 secg97 httpproxy[7388]: Integrated HTTP-Proxy (c) 2007-2013 Astaro GmbH & Co. KG, Release 18.g8a6c66d

2013:04:26-10:08:02 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs15.astaro.com' access time: 720ms"

2013:04:26-10:08:03 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="(nil)" function="sc_check_servers" file="scr_scanner.c" line="754" message="server 'cffs16.astaro.com' access time: 535ms"

2013:04:26-10:08:03 secg97 httpproxy[7388]: id="0003" severity="info" sys="SecureWeb" sub="http" request="0x16b980d8" function="is_server_certificate_valid" file="ssl.c" line="683" message="Unable to get peer certificate"

Parents

0 Siarom over 11 years ago

In none of the times, I restarted the proxy manually.
- Capture.PNG
- View
- Hide
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 utm_kid over 11 years ago in reply to Siarom

yes when you have segfault that time httpproxy restart and httpproxy could restart becase of out of memory also but it seems you are not running out of memory

segfault seems to be problem for you

2013:04:26-07:35:07 acenn kernel: [73197.306654] Out of memory: Kill process 5468 (httpproxy) score 203 or sacrifice child

https://community.sophos.com/products/unified-threat-management/astaroorg/f/80/t/65129

edit:can you also post the segfault message from kernel
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Siarom over 11 years ago in reply to utm_kid

yes when you have segfault that time httpproxy restart and httpproxy could restart becase of out of memory also but it seems you are not running out of memory

segfault seems to be problem for you

2013:04:26-07:35:07 acenn kernel: [73197.306654] Out of memory: Kill process 5468 (httpproxy) score 203 or sacrifice child

http://www.astaro.org/beta-versions/utm-9-1-public-beta/47229-9-091-bug-segfault-httpproxy.html

edit:can you also post the segfault message from kernel

We'll still have updates while the GA version is released?
The fix for this problem could be released independently? URL (http://www.astaro.org/beta-versions/utm-9-1-public-beta/47229-9-091-bug-segfault-httpproxy-2.html) appears in the problem as yet uncorrected!
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Billybob over 11 years ago in reply to Siarom

What are your system specs
1. Memory... (sorry I see you have 8GB)
2. Are you using dual AV scan
3. Are you using proxy profiles
4. Does the problem only happen when enable ssl scan?
5. Can you post a screenshot of your dashboard to see what services are running.

@Shrikant, can't be OOM killer with 8GB ram[:O]

Regards
Bill
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Siarom over 11 years ago in reply to Billybob

What are your system specs
1. Memory... (sorry I see you have 8GB)
2. Are you using dual AV scan
3. Are you using proxy profiles
4. Does the problem only happen when enable ssl scan?
5. Can you post a screenshot of your dashboard to see what services are running.

@Shrikant, can't be OOM killer with 8GB ram[:O]

Regards
Bill

1. 8GB Ram (XEN Server Host)
2. Single Scan - Sophos Engine
3. Yes, with a transparent proxy profiles and Standard SSO
4. After disabling SSL SCAN (profiles and profile default) the problem did not happen. When enabled, in about 1 hour 04 stops had Internet access, with the proxy restarting).

Attached core dump configuration.
Tomorrow I will apply my license production, 250 virtual users (net and web security).
- Capturar.PNG
- View
- Hide
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Reply

0 Siarom over 11 years ago in reply to Billybob

What are your system specs
1. Memory... (sorry I see you have 8GB)
2. Are you using dual AV scan
3. Are you using proxy profiles
4. Does the problem only happen when enable ssl scan?
5. Can you post a screenshot of your dashboard to see what services are running.

@Shrikant, can't be OOM killer with 8GB ram[:O]

Regards
Bill

1. 8GB Ram (XEN Server Host)
2. Single Scan - Sophos Engine
3. Yes, with a transparent proxy profiles and Standard SSO
4. After disabling SSL SCAN (profiles and profile default) the problem did not happen. When enabled, in about 1 hour 04 stops had Internet access, with the proxy restarting).

Attached core dump configuration.
Tomorrow I will apply my license production, 250 virtual users (net and web security).
- Capturar.PNG
- View
- Hide
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel

Children

No Data