On Thursday 27 November 2003 21:19, Ounsted, Toby wrote:
> Mauro - what kind of firewall is it? Toby.
It's a hardware firewall, a Netscreen ns 204.
It has all the ports closed except for 80, 443, 21, 53, 22.
Why?
Mauro
>
>
> -----Original Message-----
> From: Mauro [mailto:mauro.sanna6@tin.it]
> Sent: 27 November 2003 12:00
> To: squid-users@squid-cache.org
> Subject: Re: [squid-users] serious problem with squid.
>
> On Thursday 27 November 2003 11:56, Henrik Nordstrom wrote:
> > On Thu, 27 Nov 2003, Mauro wrote:
> > > Here is the file in attach.
> > > I hope can have an help to solve this problem.
> > > Thank you.
> >
> > Looks like there is serious packet loss between your proxy and
> > the DNS servers causing DNS retransmissions to queue up and never
> > get answered.
> >
> > Or maybe the DNS servers rate limit questions/responses per
> > client (effectively the same).
> >
> > It might help running a caching DNS between Squid and your ISPs
> > DNS servers.
>
> Squid caches dns queries with ipcache, isn't it?
> My proxy go through a firewall to connect to internet.
> This firewall has port 53 open to permit dns queries.
> If I restart squid it goes well for about 1 hour, what about this?
> May be the problem depends by many client requests?
> I have only about 600 clients using the proxy.
> May be I solve putting a second network card, one to lan and one to
> firewall?
> Thank you.
Received on Thu Nov 27 2003 - 14:11:28 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:21:40 MST