On 25/11/13 17:45, Petros wrote:

Hi,

I have a new ADSL connection for our office, and a new firewall behind it.

I pointed a proxy server (squid) to it, and.. it works most of the time.

Just a few websites don't seem to like it. E.g.:

1385361294.211 18410 192.168.50.199 TCP_MISS/502 1217 GET http://www.zeit.de/index - DIRECT/217.13.68.220 text/html

There are a few sites that don't work, most of the time it is a 502, occasionally a 504.

I suspected the new firewall but cannot see any related packets dropped (and logged) there.

Check that you haven't disabled the "forwarded for" setting in squid. A large number of sites break with this off (I maintain that those sites are bad, but sadly they'll likely never fix things. I know Wordpress used to be this way for a long time). Snipped from my home squid.conf: # TAG: forwarded_for on|off # If set, Squid will include your system's IP address or name # in the HTTP requests it forwards. By default it looks like # this: # # X-Forwarded-For: 192.1.2.3 # # If you disable this, it will appear as # # X-Forwarded-For: unknown # #Default: # forwarded_for on -- Julien Goodwin Studio442 "Blue Sky Solutioneering"