Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 10 replies
  • Subscribers 2 subscribers
  • Views 19026 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Connection reset by peer

rjorissen
I read a lot of topics on this message. I have a Sophos UTM with firmware 9.106-17. I configured a basic web filtering profile and tested with standard and transparent operation mode.

I would like to download an ISO file from 2.98GB. The download starts but after a minute or 2 the download stops. I see the following message at the moment that the download stops:

2014:02:04-11:04:32 fw01-1 httpproxy[16093]: id="0002" severity="info" sys="SecureWeb" sub="http" name="web request blocked" action="block" method="GET" srcip="172.16.6.111" dstip="95.101.0.83" user="" statuscode="500" cached="0" profile="REF_HttProTest (test)" filteraction="REF_DefaultHTTPCFFAction (Default content filter action)" size="288876624" request="0xe9431b8" url="msft.digitalrivercontent.net/.../octet-stream" application="http"

I even tried to disable AV scanning, but that doesn't help. Is somebody familiar with this issue?


This thread was automatically locked due to age.
  • 0
    Is your UTM behind a 2nd firewall? Sounds a bit like a firewall closing the connection after some time. They usually do this to save CPU and RAM resources. Could be worth a quick check.
    We've had similar issues.
  • 0
    The Sophos UTM is directly connected to the internet. I tried to download the file without using the proxy and that is working perfectly.
  • 0
    is the firewall on the UTM active then?
    is a download of a smaller but still large file working? e.g. some Windows Servicepack?
  • 0
    The UTM has the firewall configured to allow access from internet to LAN and from LAN to internet.

    I tried different downloads and it looks like all larger (Microsoft) downloads are blocked after approx. 2 minutes. I downloaded the Ubuntu ISO without any problems.
  • 0
    Were those smaller downloads below the "magical" 2GB limit? 
    Unfortunately, I do not have a UTM9 box here, only 8.
    What happen, when you create an exception for the 
    msft.digitalrivercontent.net

    URL to skip everything except logging?
    Does this still happen?
    What is your internet access point? Is that a router?

    Connection reset by peer is usually something behind the proxy.
  • 0
    Been there, done that. I created an exemption and skipped everything except logging, but still the same.

    The uplink is ISP router, but I am sure that the router isn't the cause of the problem.
  • 0
    No, if you're directly connected to the ISP's router, and it works, bypassing the UTM, this device won't be the device, that cuts your conection.
    So this in definateley inside the UTM.

    What, when you disable web proxy, and use the UTM only as default gateway?
  • 0
    I haven't disabled the complete web proxy, but I configured a firewall policy to allow all traffic from my pc and I don't removed the proxy setting in IE. I can download all files with this set up. The problems only occurs when using the proxy settings in IE and only with specific websites / downloads, because I can download other files (like ISO Ubuntu Desktop).
  • 0

    I have the same issue im downloading file 38k only.  I tried my PC using without proxy and its working but with proxy I cannot download the .pdf file.

    I even include the website in the exception in filtering options

  • 0 in reply to JasonCantos

    Hi, Jason, and welcome to the UTM Community!

    Please show one or two lines from the Web Filtering log that relate to this problem.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML