Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Server
User Name
Linux - Server This forum is for the discussion of Linux Software used in a server related context.


  Search this Thread
Old 05-09-2010, 02:17 PM   #1
LQ Newbie
Registered: May 2010
Distribution: Ubuntu; Fedora
Posts: 4

Rep: Reputation: 0
Unhappy Squid 2.6 DNS Timeout Issue

Hello all...

This is my first post, so be gentle with me...

I am trying to replace an aging Microsoft ISA server (Windows 2000 Server, ISA Server 2000) with a Cent OS 5.4 server running Squid 2.6.

This box was built using the PBX in a Flash distro. I have the PBX up and running and three extensions working on my internal network. I eventually want my daughter at college to be able to establish a SIP connection back to this box, so I planned on having it replace the ISA server as my Internet Gateway/firewall. My next step was to get the Squid proxy running, then Sendmail, then a firewall package (haven't settled on one yet, but I like what I have seen of Endian).

My problem is that Squid cannot seem to resolve FQDNs when a client wants to surf out. I get the following message consistently, from either XP Pro, SP3 or my Ubuntu laptop, using either IE, Chrome or Firefox:

The requested URL could not be retrieved


While trying to retrieve the URL:

The following error was encountered:

Unable to determine IP address from host name for
The dnsserver returned:

This means that:

The cache was not able to resolve the hostname presented in the URL.
Check if the address is correct.
Your cache administrator is root.


Generated Sun, 09 May 2010 13:24:44 GMT by (squid/2.6.STABLE21)

Yet, I can ping the same address form the command line on the Cent OS box and get a reply.

Technical Info:

Contents of resolve.conf:

# Generated by NetworkManager

# No nameservers found; try putting DNS servers into your
# ifcfg files in /etc/sysconfig/network-scripts like so:

Contents of Squid.conf (non-commented lines only shown):

acl all src
acl manager proto cache_object
acl localhost src
acl to_localhost dst
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http

icp_access allow all

hierarchy_stoplist cgi-bin ?

access_log /var/log/squid/access.log squid

acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY

refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320

acl apache rep_header Server ^Apache
acl Errantry-Local src
http_access allow manager localhost
http_access allow localhost
http_access allow Errantry-Local
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny all
broken_vary_encoding allow apache

cache_effective_user squid

cache_effective_group squid



coredump_dir /var/spool/squid


The Internet connection is a Bell South/AT&T DSL line with a static IP, connected through a Westell DSL 2+ router in IP Passthrough mode. ETH0 of the Cent OS box gets DHCP from this router in the 192.168.2 network; DNS is set to be the address of the Westell. ETH1 is static on the internal network, Clients connect to this address at port 8080.

This same setup works fine for the ISA box. I think my problem has to be in the Squid.conf file, because (a) ISA works with the Westell using DNS from the Westell router, (b) Cent OS can ping out and get replies from the command line and (c) multiple clients experience the same problem.

Any help is appreciated.


Shawn, just your Average_joe...
Old 05-10-2010, 01:31 AM   #2
Registered: Apr 2010
Location: Mumbai
Distribution: RHEL, Debian, Fedora, Ubuntu
Posts: 39
Blog Entries: 1

Rep: Reputation: 16
It seems that you have not allowed the rules which gives access to your local network.

You have to add the below two lines to your squid.conf file as

acl myNetwork src
http_access allow myNetwork

add these lines above the line
"http_access deny all"
'coz sequence matters here..

In your browser you should set up proxy to point to your squid server's IP and port to 8080 to access the web.

Restart squid and you should be able to browse your way.

Hope this helps.
Old 05-10-2010, 12:14 PM   #3
LQ Newbie
Registered: May 2010
Distribution: Ubuntu; Fedora
Posts: 4

Original Poster
Rep: Reputation: 0
Talking Still Not Working

Thank you for the suggestion to add to the list of allowed networks. I didn't think this was going to fix the issue, but I applied the change anyway and all clients still have the same issue.

The network is between the Westell modem and the Squid server only. There are no other devices on that network. The client network is Please see the attached diagram.

The clients do not have an issue connecting to the squid server and do get a reply from the server, using, port 8080 for their proxy settings.

Researching this further, I looked at the DNS options in Squid and found a reference to any such errors being written to /var/log/squid/cache.log. In there, I found a bunch of entries like so (date and time stamp removed):

comm_udp_sendto: FD 6,, port 53: (22) Invalid argument
idnsSendQuery: FD 6: sendto: (22) Invalid argument

I googled the second line and found a bug report here:

Looking at this, I saw that I had also tried to restrict incoming UDP cache to my local network. Removing the line udp_incoming_address and going back to the default udp_incoming_address seems to have fixed the problem, and I am writing this reply using the Squid server to proxy my XP desktop.

Thanks everyone!
Old 09-26-2011, 04:17 AM   #4
LQ Newbie
Registered: Feb 2011
Posts: 2

Rep: Reputation: 0
Question in cache.log ....comm_udp_sendto: FD 6,, port 53: (105) No buffer space available

hi everyone i am using squid2.6..
when client uses internet they faces problem

buffer space is not available(105)..

when i chk the cache_log file
comm_udp_sendto: FD 6,, port 53: (105) No buffer space available
plz smbody help me



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Squid/DNS Intermittent Issue win32sux Slackware 4 10-29-2009 04:59 PM
DNS timeout scarvenger Linux - Networking 1 08-24-2007 04:45 AM
Squid DNS issue in FC5 paulqwinn Linux - Networking 3 02-02-2007 12:33 PM
TEMP_FAILURE: DNS Error: Timeout while contacting DNS servers when receiving emails tonysutherland Linux - Networking 2 02-10-2006 09:04 AM
Squid Timeout Jubalint Linux - Networking 1 10-24-2005 06:40 AM > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 04:54 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration