Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 16 replies
  • Subscribers 1 subscriber
  • Views 5336 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Proxy not working v7

kabbott
I have upgraded to v7.001 and everything seems fine except for the proxies.
I can surf the web fine but cannot download anything.
The browser just hangs with no astaro download screen (If there even is one in v7).

Proxy config is
   standard mode
   port 8080
   allowed network= my internal net
   browser set to use proxy=astaro ip on port 8080

I also tried transparent with same result.
I had v6.303 before using transparent proxy with no problems.
does not seem to matter if i disable virus scaning or not.

No luck downloading FTP, same deal I can browse directory but cannot download.

My hardware is
   p4 2.4 ghz
   768 meg memory
   10 gig hard disk
   intel motherboard w/100 meg Nic
   intel pro 1000 Pci Nic

Any help will be appreciated.
Tnx Kris


This thread was automatically locked due to age.
  • 0 in reply to svens
    I'll see if I can get the logs from Monday.. also, a SSH login is impossible when this happens (I tried)... the system wasn't even responding to pings.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0 in reply to BrucekConvergent
    Here are the log files.. I saw nothing really interesting in them, though.  I will note one thing... I was having what I perceived to be proxy issues with it Sunday, when trying to access the VerizonWireless.com site for a friend, to change their ringback tones (they don't have internet access at home)... the browser would intermittently hang... went in and saw that the simple proxy traffic between my client machine and the Astaro was being flagged as a SYN Flood attack (this is with default settings).. so I went in and added exceptions, the problem has gone away... not sure if they are related, probably not, but perhaps Astaro should adjust the defaults or the algorithm for the flood detection part.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

    kernel-2007-02-01.log.zip
  • 0 in reply to BrucekConvergent
    Bruce,
    thank you for the pointer, I had seen a lot of syn traffic from my PC to the ASG, now having put my PC in the exception list the webadmin screen refreshes a lot faster and changes menu levels quicker.

    Ian M[[[:)]]][[[:)]]][[[:)]]]
  • 0 in reply to RFCat_vk_01
    Your welcome.. IMHO, they should make this either a default setting, or set the defaults for the SYN flood detection properly so just browsing the web won't trigger it.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0 in reply to BrucekConvergent
    I did some testing with real, end-user traffic with v7.001 today and I ran into the same issue. What is odd, to me, is that I see dropped SYN packets even though I do not have TCP SYN flood or any other IPS enabled. There is definitely an issue here.
  • 0 in reply to boquinn
    boquinn you might need to try turning off spoof protection to stop that.