I'm working with astaro support but i wanted to see if anyone is getting random but often errors from astaro about connection resets or timeouts with the proxy turned on?
We have also had to disable the web proxy on 7.1, granted we had all kinds of problems with 7.011 also. I was told that 7.1 would be the saving grace for the service, yet now we've been forced to turn it back off due to timeouts and REALLY slow web browsing.
I had ALOT of expectations from 7.1. It was supposed to improve dramatically the surfing speed, which is my major Issue. I don't have any experience with ver 6, but after moving to Astaro half a year ago, the surfing speed dropped down and is very slow. Also, it seems ver 7 al together is quit buggy. Right now, in order to be able to work, I had to stop the Reporting, QOS, and the “Content Filter”. It’s very difficult to work this way. Even with all this functions stopped, during heavy load (6000-10000 concurrent connections), the surfing speed is extremely slow (10 – 20 seconds). Lately, I always hear the "the next patch will fix it", and then the next patch. I have about 900 costumers (500 computers) and frankly I’m very tired to hear there complains about surfing problem. For me, Ver 7.1 didn’t make the Astaro better. It actually made it even worse. I really love this firewall, but I doubt if I can stay with it much longer…
PS: Since it seems that the content filter cause so many problem due to time out, why not sending a query to a few severs at once and get the first that return, Or in big machines, would it be possible to mirror the database of the content filter server locally (it can do it during Idle time).
as mentioned in other postings, as a workaround for bad performance caused by dropped HTTP proxy packets (have a look in your packetfilter log) you can create the following packetfilter rule:
External Address, Any, Any, Allow
If you have multiple external address, look at the source ip in the packetfilter log.
We found the cause and will release an official fix in the next update.
Thank you for the report.
Regarding your problems with OSPF: you are actually the first customer reporting an OSPF related issue ever. Please contact me via email (dstutz(at)astaro.com).
1.My Clients start getting the following error message: "While trying to retrieve the URL: http://******/my_drives.php Error message: Broken pipe".
2. I have started getting once a day the flowing message from the FireWall: "Root partition is filling up - please check. Current usage: 88%"
3. Most of my clients have Kaspersky AV install on them. last two days, some of them has malfunction and cause error message which I think have that have some thing to do with Astaro. [:@]
"3. Most of my clients have Kaspersky AV install on them. last two days, some of them has malfunction and cause error message which I think have that have some thing to do with Astaro."
At least in this case Astaro is not to blame.
Kaspersky published update which Ff#$*&^** alot of my work stations.
It Seems I can kiss this weekend goodbye...
First, a disclaimer. I'm far from being any kind of expert on this stuff as I've only been using ASG for about a month now. I am a home user with two desktops, a laptop, an HTPC, and an Xbox 360 running through the gateway.
At any rate, I was also having problems with web browsing. Some of the issues I was experiencing were timeouts/connection errors, and pages taking forever to load.
About half an hour ago I turned off Accounting (under the Network section) and all of a sudden my browsing doesn't feel like I'm on a 56k modem anymore. I realise that this turns off network reporting, which may be problematic for some. Not sure if this impacts security in any other way.
I'll be testing this further and will report back if things remain 'improved'.
