Solved

squid proxy

Posted on 2013-10-24
3
983 Views
Last Modified: 2013-11-16
I have squid proxy on suse enterprise linux 11.2, for some maintenance puposes i have to swap the proxy ip with Windows ISA server. after that my squid is not working,so i am getting the following error in my access log file and none of user is able to browse the internet.

1382609509.685 239818 172.16.225.203 TCP_CLIENT_REFRESH_MISS/504 0 GET http://dnl-07.geo.kaspersky.com/index/u0607g.xml.dif - DIRECT/130.117.190.137 text/html
1382609515.918   9913 172.16.225.203 TCP_MISS/000 0 CONNECT 62.213.110.174:443 - NONE/- -
one more thing i am getting the different dns records in nslookup query

while i checked in the dns server there is only one record against the proxy with the new ip but on the linux machine itself there are three records.I have cleared the cache uodated the dns record even restarted the proxy server but in vain.

40.0.16.172.in-addr.arpa        name = isa.abc.local
40.0.16.172.in-addr.arpa        name = proxy-web.abc.local.
40.0.16.172.in-addr.arpa        name = proxy-server.abc.local
0
Comment
Question by:kastro Abbasi
  • 2
3 Comments
 
LVL 13

Accepted Solution

by:
Daniel Helgenberger earned 500 total points
ID: 39599153
I am not sure if I get what you have done?
1 shutdown squid
2 swapped IPs with another proxy
3 start squid
4 swiched back IPs
All was working well until after step 4.

TCP_CLIENT_REFRESH_MISS/504
TCP/504 is a gateway timeout - can you confirm squid can connect to the requested site? Maybe someth. went wrong when switching IPs or something (firewall) is blocking squid? Maybe iptables?

Basic debug on the cache server:
curl http://dnl-07.geo.kaspersky.com/index/u0607g.xml.dif

Open in new window

0
 

Author Comment

by:kastro Abbasi
ID: 39601837
no i can not even browse on the proxy itself. But why i am geting the two records against this server updating the old records in dns server and clear the cache on this machine.
0
 
LVL 13

Expert Comment

by:Daniel Helgenberger
ID: 39601904
no i can not even browse on the proxy itself
What does this mean? Proxy has no wan connectivity?

There are many reasons why you could get those PTR's, most likely they are in the DNS you do your lookup against - and a left over from the IP switching. But don't worry, they to no harm and have nothing to do with your current problem. Consider cleaning up your reverse lookup zones to get rid of those PTRs.
0

Featured Post

Master Your Team's Linux and Cloud Stack!

The average business loses $13.5M per year to ineffective training (per 1,000 employees). Keep ahead of the competition and combine in-person quality with online cost and flexibility by training with Linux Academy.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Little introduction about CP: CP is a command on linux that use to copy files and folder from one location to another location. Example usage of CP as follow: cp /myfoder /pathto/destination/folder/ cp abc.tar.gz /pathto/destination/folder/ab…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question