This is the same person, just answering from work.
Anyway, you asked if I can ping the addresses, yes I can. Web access is the
only thing that sufferes. My son plays some of the mud games (Telnet) and he
continues to work fine when the web access is having problems. This tells me
that it is something to do with the http(s) protocol. I did notice, this
morning, that I would get constant packet deny's in the logs when this
happens. Squid is running in transparen mode. I have the network set to
restart snort when I get my new IP from my internet provider. Yes, it is
DHCP. I really think it is a problem with the firewall and dial-up that uses
dhcp. I have tried disabling snort and squid and the problem doesn't go
away. I even tried disabling the firewall when the problem was occuring but
I still had to reboot the system in order for the problem to go away.
Is there more info that you need? I'll be happy to send logs or whatever. I
really like Mandrake Security and want it to be very succesfull. I just
think that if I am having this problem other people may have the same
problem. My setup is not that different. It is a basic system and a dial-up
provider. I use Bellsouth in the United States which is a very big internet
provider.
Stephen W. Thomas
Network Engineer
Technical Software Services
[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>
-----Original Message-----
From: Florin [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, June 05, 2001 4:07 PM
To: [EMAIL PROTECTED]
Subject: Re: [Cooker-firewall] WWW Access fails
Stephen Thomas <[EMAIL PROTECTED]> writes:
> Is anyone else having a problem with the WWW access failing? My system
runs
> fine for a couple of days at a time and then it just stops allowing access
to
> web pages. Telnet, FTP, and everything else seems to continue to work
fine. I
> can't even get to the Firewall configuration web.
(https://192.168.x.x:8443)
> This has been happening ever since the last release.
>
> My system is a dial-up and my provider kicks me off every twelve hours. I
am
> running squid but do not have any sites banned. I am also running snort. I
am
> not running dhcp. There is nothing in the logs about any errors.
>
> When I try to go to an external site I get the error from Konqueror: Could
> not connect to host www.mandrake.com
>
> When I try to connect to the firewall configuration program I get: The
> process for the https://192.168.x.x protocol died unexpectedly.
>
> I have tried stopping squid but that doesn't fix the problem. The only way
to
> fix it is to reboot the firewall. I will try running it without squid and
see
> if that fixes it.
Hi there,
we talked about similar problems in some older questions.
You didn't say the mode in which squid is running.
Also, if your "provider kicks you off every twelve hours" that means that
your internet network interface will be down every 12 hours (is it with dhcp
IP ?)
and therefore you should restart snort.
can you ping any of the network cards from within your inside network.
I don't have enough information, so how could I help ?
cheers,
--
Florin http://www.mandrakesoft.com
