Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 12 replies
  • Subscribers 1 subscriber
  • Views 18729 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

error="Connection to server timed out"

onats
hi everyone,

Just creating a new thread for "Connection to server timed out" error in webfiltering. We have an intensive browsing requirement in our team. And users noticed that Sophos was blocking many sites which are supposedly allowed. Further investigation, we concluded that these sites weren't responding from our request. Furthermore, we disabled the web filtering module in the Sophos - Astaro UTM9 220. We noticed that some site are in fact responding if the webfilter module was disable. sample websites are 

http://www.autonation.com

http://www.howbill.com


Need your help.

Best regards,

Onats.


This thread was automatically locked due to age.
Parents
  • 0
    Unless your hardware is underpowered, running single-scan with Avira should only occasionally be noticible.  If you're using an online speed test, then those give bad results because they are single-threaded.

    In this case, since AV isn't causing the problem, you will need to skip the Proxy for these sites.

    I was able to access the howbill site from behind a V8.309 box from both a laptop using the Transparent Proxy and from a desktop using Standard/AD-SSO.  So, I wonder if this isn't an issue with V9 or a hardware problem.  Try posting the output of ifconfig eth1 from the command line (assuming that that's your External interface).

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Unless your hardware is underpowered, running single-scan with Avira should only occasionally be noticible.  If you're using an online speed test, then those give bad results because they are single-threaded.

    In this case, since AV isn't causing the problem, you will need to skip the Proxy for these sites.

    I was able to access the howbill site from behind a V8.309 box from both a laptop using the Transparent Proxy and from a desktop using Standard/AD-SSO.  So, I wonder if this isn't an issue with V9 or a hardware problem.  Try posting the output of ifconfig eth1 from the command line (assuming that that's your External interface).

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    Works fine from V9 box...

    Onats, check your Speed and Duplex settings for your interfaces on your UTM (make sure they match your switch / ISP equipment).  I have seen wierd timeouts before for certain websites when there was a speed or duplex mismatch on the NIC interfaces.  If you see a lot of CRCs or other drops, try statically setting speed and duplex on both ends of the connection.  Also make sure your MTU settings are valid (1500 is the default, may need to be different for DSL on the Internet connection side if that's what you use).

    Sounds crazy, but several times over the past years when the symptom was intermittent browsing to particular websites, we found in the end it was an error at Layer 2 [:)]

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Sophos Platinum Partner

    --------------------------------------

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

Unfiltered HTML