some computers responding slowly to dansguardian/squid
This is a stumper.
I've set up dansguardian 18.104.22.168 and squid 2.5. I've hit a really weird problem.
We've set it up so that all network traffic goes to the linux computer running dansguardian/squid before being routed back to the originiating computer.
Some computers on the network operate perfectly. Blocking sites like it's suppose to, letting traffic through. However, there are a two computers that are hanging. When the web browser comes up, it says "Opening page ..." and sits there for a good two minutes before loading the page.
Neither the squid logs or dansguardian logs report anything interesting. What's frustrating is that it works for some computers and not others.
For example, I run linux and windows and both work fine. The other two computers are both windows xp.
I'm hoping for some insight as to where to look for a problem. I thought it had to do with iptables. But I'm not sure anymore. Here's my iptables entry:
as a netwrok tech, my first point of call would be to do some packet sniffing on the connection between the client and the server to see what is happening during this lull. Install ethereal or just use tcpdump on the server itself and run "tcpdump -vn host client.ip.address.here" and you'll see all the interations. if it's an inconsistency there could be many random things affecting it, a common one is DNS lookings timing out, and if you're sure no logs shed any light see what the wire has to say about it.
thanks for the idea. I"m going to try this out and let you know.
sorry for the delay in a reply...it's been a sick couple of weeks. Gettings dansguardian wasn't a high priority.
I've run tcpdump and I'm running into the same problem. It seems like the problem is in the router itself.
The setup is that there's a linux computer doing the filtering and a linksys router doing the routing.
here's the IPTABLES setup for the router:
When running tcpdump on the filter computer, it still hangs.
It seems the hiccup is in the router, which really doesn't make sense because other computers work correctly. I don't have tcpdump on the router to check this.
I'm very willing to hear other thoughts and ideas, because I have none!
|All times are GMT -5. The time now is 03:37 PM.|