Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 657 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

7.306 - Transparent proxy not accessing internal webserver on DMZ

markcasey
This week all of a sudden trying to access our webserver in the DMZ via the transparent HTTP proxy fails with the error "Connection to server timed out".

It works on everything externally but the webserver in the dmz, not using the proxy it works fine. Is there a way to flush squid?

Restarting the firewall itself didn't make a difference, I think it may be some weird cache issue with squid.

I have had to temporarily add the network to the "Transparent mode skiplist" so people can access our webserver in the DMZ.


This thread was automatically locked due to age.
  • 0
    Have you tried flushing the DNS cache?

    /var/mdw/scripts/named restart

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Have you tried flushing the DNS cache?

    /var/mdw/scripts/named restart

    Cheers - Bob


    I haven't tried that yet with root, will doing that void our support contract? (Using an Astaro 220 with a platinum support contract)

    Using just loginuser: 


    

    Astaro Security Gateway

    (C) Copyrights by Astaro and by others 2000-2008.

    

    NOTE: Any modifications done by root will void your support.

          Please use WebAdmin for any configuration changes.

    

    loginuser@firewall:/home/login > /var/mdw/scripts/named restart

    :: Stopping DNS Proxy

    touch: cannot touch `/etc/no-selfmonitor/named': Permission denied

    [ failed ]

    :: Starting DNS Proxy

    cp: cannot create regular file `/var/chroot-bind/etc/hosts': Permission denied

       Already running

    [ failed ]

    :: Restarting DNS Proxy

    [ failed ]
  • 0 in reply to markcasey
    I'm confidant that that won't void the warranty.  You aren't changing anything, just "pushing the button" that will be available in version 7.5.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA