Astaro UTM 110 warnings


I get this warnings:

[MOSFW01][WARN-129] Spam Filter cannot query database servers

The spam filter daemon is unable to reach the database servers via HTTP. Please make sure that the device is able to send HTTP (TCP port 80) requests to the Internet. You may have to allow such traffic on upstream devices.
System Uptime      : 14 days 15 hours 58 minutes
System Load        : 0.39
System Version     : Sophos UTM 9.105-9

Please refer to the manual for detailed instructions.

But HTTP is open. Any idea? Or how can users surf?

Many thanks in advance
LVL 19
*** Hopeleonie ***IT ManagerAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

*** Hopeleonie ***Connect With a Mentor IT ManagerAuthor Commented:
A Senior is still troubleshooting the Problem. I think we will have to open a case.
btanConnect With a Mentor Exec ConsultantCommented:
Usually it is caused by your link failing or DNS not responding in time when it makes the request. In the firum also stated if it is in HA mode can be likely case or going through pool if service like akamai or opendns that may block access to the online db. Good to check proxy log if going through that in the path to db.
*** Hopeleonie ***IT ManagerAuthor Commented:
Dear breadtan

We are still troubleshooting the problem
Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

*** Hopeleonie ***IT ManagerAuthor Commented:
Hi breadtan

We still didn't find a solution. I have escalated the case to a Senior.
btanConnect With a Mentor Exec ConsultantCommented:
They may not necessarily be down, but there could be a high latency issue that is causing large amounts of packets to be dropped for example. If the messages are happening regularly have a look at your network connection log to see if you are getting line drops. Also check to see if your ISP has network congestion or chocking in place to some sites.

I was thinking maybe to look out for  "ctasd" error messages in smtp.log, ctasd connects to commtouch for IP reputation info. If that can work then HTTP should be alright.

Also in case of an HA setup with dynamic interfaces (e.g. PPPoE) the slave node can't reach the query database server and will send out such notification. One mean is to change the dynamic interface to a static interface. E.g. by moving the PPPoE dial-in to a router.

Worst case, reboot it to see any difference as sometimes there is hogging socket that is orphaned and not closed hence causing socket connection limiting and dropping...

Another concurrent task may be to activate vendor and raise support call if needed since it been a while.
*** Hopeleonie ***IT ManagerAuthor Commented:
Thanks a lot breadtan.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.