On 4/5/08, Kenneth Gonsalves lawgon@au-kbc.org wrote:
hi,
I have a firewall server which runs squid. The firewall is configured by shorewall. We have 3 ISPs,
- bsnl broadband 2 Mbps
- leased line 2 Mbps
- an internal line - not relevant to this issue
The LAN has 150 machines.
The problem I face with the first two is this: the line works well, iftop shows 2 Mbps or more of traffic. Then at random intervals - sometimes after several days, sometimes after a few hours, traffic stops flowing. Checking the interface with ping, sometimes I am unable to ping the gateway, at other times I can ping the gateway, but cannot ping anything beyond the gateway. I stop traffic to that line, and after some time restart traffic and it works ok.
umm.. Did you try stoping squid ? do you face the same problem when the firewall server is not running squid ? I faced such situation once and decided to have two separate squid caches (one for each floor) and one machine running firewall only (though an overkill IMHO). This solved the problem.
regards VK