[squid-users] gateway failure

Eliezer Croitoru eliezer at ngtech.co.il
Tue Sep 5 16:58:48 UTC 2017 

Hey Vieri,

You can run a crontab job(s) that will run periodic tests against public dns and http(s) servers.
Also try to enable path mtu discovery which might help in some cases.
You can also try to use iptables clamp-mss  \ set-mss to either set a static or by the path mtu. Take a peek at:
http://lartc.org/howto/lartc.cookbook.mtu-mss.html

You can try first to use:
iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS --set-mss 1450

or:
iptables -I FORWARD -p tcp --tcp-flags SYN,RST SYN -j TCPMSS  --clamp-mss-to-pmtu

Also try to actually discover the path mtu using:
# tracepath -n www.squid-cache.org

I don't know what OS you are running there but it's nice to have either munin or nagios on the squid server to debug such issues.(after you verify it's not or is mtu issue).

Let me know if you need any help setting up a couple testing scripts.

Eliezer

----
Eliezer Croitoru
Linux System Administrator
Mobile: +972-5-28704261
Email: eliezer at ngtech.co.il



-----Original Message-----
From: squid-users [mailto:squid-users-bounces at lists.squid-cache.org] On Behalf Of Vieri
Sent: Tuesday, September 5, 2017 12:32
To: squid-users at lists.squid-cache.org
Subject: [squid-users] gateway failure

Hi,

I'm sometimes getting hit by ERR_GATEWAY_FAILURE. I'd like to know what could be causing this issue.
When this happens on a production server, I don't have much time to investigate.
I usually only have enough time to ssh into the squid server, test internet access via command line, and before I know it, the issue's gone.

Nothing much in cache.log. I have debug_options rotate=1 ALL,1. I'd rather not set ALL,9 on a production system for something that happens maybe only once every 2 or 3 days.
I'm not sure however which sections and levels to  set so I can get an idea as to why I'm getting ERR_GATEWAY_FAILURE.

https://wiki.squid-cache.org/KnowledgeBase/DebugSections

Any suggestions?

Thanks,

Vieri
_______________________________________________
squid-users mailing list
squid-users at lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users

More information about the squid-users mailing list