*nix Thread, Squid won't handle more than x sessions to a site in Technical; Here is a funny one, have a Fedora server running Squid in transparent proxy mode. It uses 'chains'? to foward ...
9th November 2010, 06:46 AM #1
Squid won't handle more than x sessions to a site
Here is a funny one, have a Fedora server running Squid in transparent proxy mode. It uses 'chains'? to foward from port 80 internally to the proxy. The issue is that with certain sites it can only handle exactly x number of sessions then fails for the next client. Unfortunatly the site is used for class lots of testing and x < class size.
I have looked through the squid.conf and there are no session limits set, it could be a bandwidth constraint but it seems odd that it would present at exactly x users each time. Addidionally ISA handles it fine as another site so I am guessing that it is a misconfiguration or limitation(unlikely) of Squid. I think that the site may use SSL for certain parts incase this could effect it.
Any helpful hints?
Last edited by SYNACK; 9th November 2010 at 06:49 AM.
9th November 2010, 11:12 AM #2
If you are using transparent proxy, the SSL bits must be going elsewhere. Maybe that's got something to do with it?
Is there any connecting factor between all these sites? Sometimes sites upstream get tetchy when all your traffic appears to come from one IP - definitely seen this where it's an LA provided site and the school in question is on a separate ISP.
Thanks to tom_newton from:
SYNACK (9th November 2010)
9th November 2010, 11:47 AM #3
Thats a point I did not check the chains for 443, the site itself should be fine as it is designed to be used by schools with single IPs, unfortunately it is not very fault tolerant and unless you are proxied you can never fit a whole class on a NZ grade internet link (<- nicest way I can put it).
Its just the one site that is the issue but as it is mandated for testing not having it working causes issues. I had not even thought of the fact that SSL based traffic would not be possible to proxy so I'm assuming that squid just passes it through untouched. Any likelyhood of an SSL session limit stored somewhere weird. My main area is pretty much Windows so although I know enough to find out whats running and look for the basics anything above that is over my head for the time being.
By bart21 in forum Internet Related/Filtering/Firewall
Last Post: 23rd April 2010, 10:12 AM
By mctnguy in forum How do you do....it?
Last Post: 3rd March 2010, 12:49 PM
By RallyTech in forum How do you do....it?
Last Post: 6th November 2009, 09:08 PM
By Little-Miss in forum General Chat
Last Post: 5th October 2009, 10:20 PM
Users Browsing this Thread
There are currently 1 users browsing this thread. (0 members and 1 guests)