Astaro feels it's dns. I'm thinking it's not. I could br wrong. Let me tell you my configurations and we will go from there:
network commonalities:
Both networks are AD integrated. Root hints are disabled on both AD machines. Both machines use opendns for their forwarders. Both are on comcast. Another client using opendns and another product with content filtering does NOT experience this issue. Me and my client are on separate subnets of comcast but routing goes to the same initial router. When this occurs traces show no loss or routing issues. When this issue presents nslookups resolve correctly. IPS is being used on both machines.
Network 1: 50 user home license:ASL 7.5x p-4 celey 2.53 2 gigs ram 80 gig hdd intel/3com nics
AD is sbs 2008. Forwarders are removed from Astaro. DNS routing in Astaro points back to the AD server.(this is a recent change for troubleshooting this issue). DNS forwarders inside of windows dns are 208.67.220.220 and 208.67.222.222. http proxy is set to transparent with no https scanning. Dual http scanning is on with 25 megs as the limit and i am using the content filter. Since i have made a recent change for troubleshooting this issue I will keep my opinion quiet for now.
Network two: 50 user home license:ASL 7.5x p-4 xeon 2.8 ghz HT, 2 gigs ram, 250 gig HDD, 2 x Intel gig-e, 3com 3c905B
There are two networks on the Astaro. The internal network(which is there Ad is located) and a guest wifi network(which uses the Astaro box for it's dns and dhcp). These two networks are physically separate on separate nics with different ip ranges(192.168.22.x for internal and 192.168.100.x for guest). AD is server 2003 standard. DNS from Astaro is NOT routed back to AD. AD is setup With Astaro as the forwarder. Astaro forwarders are set to 208.67.220.220 and 208.67.222.222. http proxy is set to transparent with no https scanning. Dual http scanning is on with 25 megs as the limit and i am using the content filter.
symptoms on both are the same. things will go swimmingly and then sites fail to load. They RESOLVE but fail to load either at all or properly. I then get connection refused errors or timeout errors from Astaro directly. If i do a nslookup on the failed site dns resolves fine. if i retry the request failure is a very repeatable occurrence. When this issue first starting presenting i tried disabling http a/v with no success. I have tried disabling ips in all facets with no resolution.
Resolution: disable the content filtering by unchecking everything in allow mode or checking everything in deny mode...sometimes this fails to resolve the issue.
Resolution 2: disable http proxy completely which always works. Then sites load fine without issues.
Any questions...thoughts...requests? I want to get this resolved..not just for me but for others who have had this issue since 7.x
This thread was automatically locked due to age.
