This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connection to server timed out

Hi there,
I got a problem with my ASG 8.002.
There is a standard Proxy installed and an exeption for yousendit.com. I allowed this website under the URL Filtering and added it without any checks as an exception (*yousendit.com*). I also allowed it in my filter list.

But every time a user is trying to upload a file to yousendit.com I get the following block action:

bcnagw-1 httpproxy[6386]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="192.168.X.X" dstip="204.107.28.181" user="" statuscode="502" cached="2" profile="REF_KiUBYdLqhx (Default_Proxy)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="4608" time="64589 ms" request="0xadb5bc10" url="dropbox.yousendit.com/skyventure" exceptions="" error="Connection to server timed out"

Anyone have an idea why this site is blocked although this site is in the exceptions?

This thread was automatically locked due to age.

0 Cyric297 over 15 years ago

I am also getting a bunch of 'Connection to server timed out' messages when trying to view slow sites.  From the research I have tried, it appears to be the http/s proxy.

I have tried:
  - Adding sites to the skip list

I am running:
  - Astaro v8.001
  - HTTP/S Proxy in Transparent mode
Cancel
Vote Up 0 Vote Down

Cancel
0 DayFly over 15 years ago in reply to Cyric297

No one here who knows anything about these Astaro problems?

The only thing I know how to send Files to YouSendit atm is to turn off the proxy. Than the files are going trought the Astaro to this site. But I think this ist not spirit and purpose of a firewall and proxy.
Cancel
Vote Up 0 Vote Down

Cancel
0 jonf_01 over 15 years ago

There is a standard Proxy installed and an exeption for yousendit.com. I allowed this website under the URL Filtering and added it without any checks as an exception (*yousendit.com*). I also allowed it in my filter list.

I'm not too familiar with this website myself, but I'm guessing that since it appears to be a file hosting service like Rapidshare, they would probably have more than one IP address/hostname for each and every one of their dedicated storage servers. This would make sense since you wouldn't want to overload one server running on a single IP address/hostname given the amount of content being uploaded to or downloaded from their servers.

dstip="204.107.28.181"

Try uploading your file again, and check the log to see what IP address it points to on that occasion. If it's different from what you get here that'll confirm the above, meaning that simply defining the main website address [yousendit.com] as an exception may not be sufficient. But then again there's no telling how many different IP addresses/hostnames you're going to come across doing it this way [:D]! Also are you uploading from your web browser or using some 3rd party uploader?

statuscode="502"

All I know is HTTP 502 points to a 'Bad Gateway' error, which is described as follows on Wikipedia:

The server was acting as a gateway or proxy and received an invalid response from the upstream server.

Hope this helps.

Regards,

Jon.
Cancel
Vote Up 0 Vote Down

Cancel
0 BAlfson over 15 years ago

Hi DayFly and Cyric, and welcome to the User BB!

I can't add much to what Jon told you except to confirm that 502 means the webserver on the other end isn't happy with the Astaro Proxy.

Sometimes you can fix this by checking antivirus to be skipped in the exception. Sometimes, it's necessary to skip the proxy for a site; in this case, since you're using the Proxy in a transparent mode, you could make a DNS Group definition for dropbox.yousendit.com and add that to the 'Transparent mode skiplist' on the 'Advanced' tab.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel