Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 6 replies
  • Subscribers 1 subscriber
  • Views 5408 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Server closed connection unexpected

Stupots
Hi All,

Can anyone else access or not access www.lawtel.com using the http proxy on 7.101?  I get the error above on two separate Astaros using four different ISP links.

Here's the appropriate excerpt from the http log - due to the search facilities on the forum, I can't find any threads which refer to the HTTP 502 status code.


[FONT="Courier New"]2008:01:16-13:46:32 (none) httpproxy[24922]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="block" method="GET" srcip="10.*.*.*" user="*****" statuscode="502" cached="0" profile="profile_3" filteraction="action_REF_CRyVoxQrTe" size="2170" time="168 ms" request="0xb0500d10" url="www.lawtel.com/.../ Books"
2008:01:16-13:46:36 (none) httpproxy[24922]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="block" method="GET" srcip="10.*.*.*" user="*****" statuscode="502" cached="0" profile="profile_3" filteraction="action_REF_CRyVoxQrTe" size="2148" time="48 ms" request="0xb05e78d0" url="www.lawtel.com/.../ Books"
2008:01:16-13:47:26 (none) httpproxy[24922]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="block" method="GET" srcip="10.*.*.*" user="*****" statuscode="502" cached="0" profile="profile_3" filteraction="action_REF_CRyVoxQrTe" size="2148" time="63 ms" request="0xb0525768" url="www.lawtel.com/.../ Books"
2008:01:16-13:47:27 (none) httpproxy[24922]: id="0001" severity="info" sys="SecureWeb" sub="http" name="http access" action="block" [/FONT]

Thanks in advance,
Stuart


This thread was automatically locked due to age.
Parents
  • 0
    Can anyone else access or not access www.lawtel.com using the http proxy on 7.101?


    Hello, anyone?  Anyone willing to try accessing this site for me?!?

    Further research shows that other vendors' appliances have problems with this particular site, for example:

    http://forums.bluecoat.com/viewtopic.php?t=1580

    Unfortunately for Astaro, the competition allow customers to configure persistent or non-persistent connections on a site-per-site basis.

    Anyone from Astaro want to comment on whether this functionality will be reintroducted in 7.2 (I seem to recall it was added in version 6) - coincidentally this site stopped working roundabout the time when Squid was dropped as the HTTP proxy in version 7.

    Stuart
  • 0 in reply to Stupots
    Works fine for me in 7.101 using transparent proxy.

    Perhaps you can try adding it as an exception?
  • 0 in reply to Mike H
    you're hitting a proxy bug.  It manifests itself here as resetting connection to peer.  Astaro support says they have a fix coming out for the broken pipe issue and think it should fix the reset peer connection issue as well..we'll see once it's released.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

Reply
  • 0 in reply to Mike H
    you're hitting a proxy bug.  It manifests itself here as resetting connection to peer.  Astaro support says they have a fix coming out for the broken pipe issue and think it should fix the reset peer connection issue as well..we'll see once it's released.

    Owner:  Emmanuel Technology Consulting

    http://etc-md.com

    Former Sophos SG(Astaro) advocate/researcher/Silver Partner

    PfSense w/Suricata, ntopng, 

    Other addons to follow

Children