Ubuntu Networking :: Slow Response For HTTP Proxy Over SSH?
Dec 3, 2010
I'm a little stumped on this one so I reaching out to see if anyone here has any idea. I just changed my ISP to Surewest as they're doing fiber straight to the house in my area so I have 8Mbps up and down.
I have my linux box running openssh and I have no problems SSHing into it from my remote laptop at work. I use putty to connect to it and create a tunnel so I can configure my firefox to use it as a SOCKS proxy. The problem is my response time for page loads in firefox is atrocious now. It'll take over a minute to load yahoo.com. The only real differences in my setup now are my ISP and router hardware at home. Previously, I was using the firewall that was built into my AT&T Uverse gateway. Now, I'm using my old Linksys WRT54G v5.0 router with the latest firmware. My linux box is wired directly into it with ethernet. When I run the speed tests from that box I get my correct speeds of 8Mbps up and down with <15ms ping. From what I can tell, all of my router settings are correct.
A Linux (CentOS5.3) server is setup with apache reverse proxy. The reverse proxy server is opened to outside and an internal server is mapped to ProxyPass configuration. SSL certificate is also installed on the Apache reverse proxy server. The problem is, it is extremely slow in serving http requests through reverse proxy. There is no problem with server resources or bandwidth. When the internal server is directly accessed through Internet, there is no delay. The backend server and the reverse proxy server are also on the same switch (same subnet). When I searched the Net, there were recommendations to enable cache in Apache. I did so as follows in httpd.conf.
But still there is no progress. Do I want to enable cache in ssl.conf too? Or is there any other workaround to speed up Apache reverse proxy. Is there a way to check that caching is happening?
when I try to access any page even small html pages it stays like 3 seconds in HTTP request sent; waiting for response. state..even when I use Lynx locally on the server..bypassing any possible network issues..logs dont show a thing..the server itself is a high end server with nothing running on it apart from apache which is not serving anny clients now, firewall is disabled and hostnamelookups are set to OFF.
I'm behind a very blocked firewall that only allows connections through port 80 and 443. I wish to ssh to my machine at home, but the port is blocked. Is there a simple server that I can run to route my ssh connection through http?
I've noticed over the past few months that my internet connection speed (D/Ls, browsing) are getting incredibly slow, but only on my linux box (my laptop, for instance, is fine - in fact, I'm dual-booting with WinXP and it isn't happening there, so I think I've managed to narrow it down to the OS alone):
My school network uses a http proxy to access the internet, but I am dubious about the security, and so I would like to use http inside ssh to keep my data secure. I don't really know where to start on this, so a step-by-step guide, or links to resources, would be helpful.
I have a http proxy account. It works well under windows through wodTunnel(an active X control component). But, I usually works under linux. I want to use it here. But I don't know how. I tried gstm, it can connect to the server successfully, but it seems can't respond to my http request. What should I do next?
Machine 1) I have a Server with RHEL5. eth0 = 192.168.48.x (static class C ip connected to VLAN switch)
Internet available via HTTP proxy through vlan but from other main server but not from machine below.
Machine 2) I also have a Server with RHEL4. eth0 = 124.30.XXX.xxx (public IP for availing internet) eth1 = 192.168.60.xxx (class c ip to share internet via squid on the same LAB) eth2 = 192.168.16.xxx (class c ip connected to VLAN switch)
Now what I want is ssh connectivity available to Machine 1, so as to enable remote machines on the internet connected. I know that it might be hard for Machine 1 to share ssh directly on the internet but if there is any kind of tool or tricks to setup pls tell. So the only chance is ssh via machine 2 then after connected to Machine 2 then again ssh to Machine 1. But how do I make ssh available online? IPtables are set correctly machine 2 can't be ping on the internet.
I am trying to configure an eBox to act as an http proxy but having trouble using that proxy on client computers to browse internet. The ifconfig on ebox returns the following:
eth0 is on the internal lan with the client from which I want to access the internet eth1 is can access internet all right.
The ifconfig on a client returns eth0 Link encap:Ethernet HWaddr 00:0C:29:46:58:7F inet addr:10.45.48.102 Bcast:10.45.255.255 Mask:255.255.0.0 inet6 addr: fe80::20c:29ff:fe46:587f/64 Scope:Link UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 RX packets:16014030 errors:0 dropped:0 overruns:0 frame:0 TX packets:835276 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:1297106653 (1237.0 Mb) TX bytes:738158694 (703.9 Mb)
I configured the Firefox on the client to use eBox's ip address/port in the proxy settings but I still can't get on the internet.
eBox is on a vmware workstation 7. It is eBox 1.4.1 eBox has two virtual nics (above) - one is NAT (eth1) and the other is bridged (eth0) The client is on vmware ESXi 4.0. It's an openSUSE 11.2.
i want to redirect the packet to proxy server. can u help me.
Present network.
MY internal network ==> switch ==> proxyserver ==> router ==> internet. (for internet i use to connect proxy, in web browser==> lan settings ==> proxy server ip address )
What i want is
My internal network ==> getway or firewall ==> switch ==> proxy server ==> router==> internet. ( where this getway or firewall i can configure for forward http request to proxy server.)
so that i can separate my internal network from intranet but able to access the internet.
I have a problem setting up a SSH tunnel. I know how it's usually done, but the setup is different this time. I am behind a HTTP(S) and FTP proxy, that does NTLM authentication, and I want to access a server beyond the proxy. MY CLIENT <-> LAN <-> HTTP PROXY <-> INTERNET <-> MY SERVER
So far, the best I have achieved is installing and configuring CNTLM as a local proxy for the authentication part. Using CNTLM, I managed to access and mount a secured (https) DAV share using davfs2. In theory, CNTLM should let me setup permanent tunnels from local ports to distant ports, and it does; however these tunnels don't seem to work for SSH nor for IMAP (another protocol I tried).
I suspect the problem is that neither SSH nor IMAP is HTTP- or FTP-based, but anyway it does not work. So back to square one: how should I proceed to get ssh to connect through the HTTP proxy (with NTLM authentication) to the remote server? For that matter, if there's a better way than SSH to create a tunnel, that would work in my situation, that's OK with me. Just in case, here are the relevant parts from my firewall setup on the server:
# allow continuation of established connections iptables -t filter -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT iptables -t filter -A INPUT -f -j ACCEPT
# allow local connections iptables -t filter -A INPUT -i lo -j ACCEPT
# open ports: # ssh iptables -t filter -A INPUT -p tcp --dport 22 -j ACCEPT Yves.
I'm trying to set up a server for an NPO who connects to the Internet through an internal proxy (Websense). I can't access the Internet unless through the proxy.
Since it's a server I did not install a GUI so I'm wondering how to connect the new server to said proxy server. I have the IP address, port number and username-password for the proxy server. The new server has a static IP address and is ready too go!
I need to redirect all http/https/ftp traffic through the remote proxy, but when I changes connection settings in browser or in System->Preferences->Network Proxy it doesn't work well: instead of getting page content browser asks for saving some short (8 bytes) file with the same content for all requested pages. It happens in Chrome/Opera/Firefox. This proxy requires authorization and works on computer with Windos XP. It worked well when I was using Windows 7 and Proxifier, now I have Ubuntu 9.10 with all available updates.
I've been trying to make myself anonymous, but I cant find 'Tor' anywhere, tried 'yum & kpackagekit' neither have it. I did find 'Privoxy', installed it, set proxy for HTTP and HTTPS in Firefox, but it says 'unknown proxy' when I try to use it! I've been to the Privoxy web site and read through the 'User manual', but most of it is 'geek' to me!
I've been doing some security testing in a lab environment that does not have direct internet access. It's actually a little complicated: From home to connect to my lab machine, I
1. SSH to machineA. 2. SSH from machineA to machineB
where machineB is my actual lab machine. neither machineA or machineB allow anything other than SSH, and machineB is only accessible from machineA. However, I really need to run yum on machineB. I have managed to get internet access via Firefox on machineB by creating a series of SOCKS proxy via SSH.
where machineC has internet without limits placed. This is the only way I have managed to get internet working. I tried using ssh -L all the way from machineB->machineA->machineC but it didn't work (even when setting Firefox to use http proxy). I tried using ssh -D all the way, but again that doesn't work either.
I do have access via Firefox using socks proxy. However, yum update fails to retrieve mirror list, and from what I have found I don't believe yum supports socks proxy directly. Instead, it uses http_proxy / ftp_proxy. how to get yum to go out over the SOCKS proxy I created (same one using in Firefox)? It seems like since Firefox can access the internet and everything without issues, i should be able to get yum to tunnel through the same connection to access everything.... I tried
I'm trying to see regular http responses from my wireless ipad (victim) from my wired pc (attacker). Everything's working great but I can only see the http requests not the responses.
I've done much reading and googling and tried registering in more relevant forums but some forums were shutdown, so I've come here.
Code: # setup ip forwarding echo 1 | sudo tee /proc/sys/net/ipv4/ip_forward # use ettercap to do the mitm using only mitm sudo ettercap --iface eth0 --text --plugin autoadd --only-mitm --mitm arp:remote /192.168.0.1/ /192.168.0.155/
I'm trying to setup a Centos 5.6 Squid Proxy Server with Content Filtering & Antivirus Scanning Incoming HTTP Traffic from the Internet
I then proceeded to setup an configure the Proxy Server, i was able to test and confirm that Squid and Dansguardian Content Filter is working, however i dont know if Clamav is scanning HTTP traffic before it hits the client/server. Is there a way i can check if the Antivirus scanning is working.. is there some log file or real world test i can i can do to confirm that Clamav is scanning incoming traffic or even blocking potential viruses ??
Anyone who has squid proxy server with Clamav configured and its working can share there settings/setup with me and how they tested it ??
I am new to web server support. I have a request from my management to modify the logging slightly. Effectively I need to redirect a custom string from our http response into the apache access logs. When a user navigates to our site they receive a "dye" number that is associated with them. This number follows them to whatever cluster they are directed too. The string is formatted as such, com-company-dye: d0a2#6dfce. I need that that header dye to appear in the access logs so we can use that dye number as a key for troubleshooting issues though out our various monitoring systems.
My Kubuntu installation (9.10) boots up normally and seems to run fine, other than it is very slow to respond to inputs or change screens/ applications etc. It can take 5-10 seconds to respond to simple requests like changing from firefox to dolphin by clicking in the taskbar. It is dual boot with XP, which also seems sluggish, but is bearable.
The computer is barely useable in Kubuntu because of the slow response. I had 9.04 installed before, same problem. I tried searching for drivers for the on board video, thinking that might be it, but came up empty.
I have an Ubuntu 10.04 server here, and this week internet sharing got too slow... i dunno if it is a squid problem... but it's too slow. And when i try to registar a domain for that server, bind gives do response. If i dig my server inside lan, it's working pretty well.
I have Fedora 11 installed on a Dell Precision M60 lap-top, running KDE. I've used KDE for years, but a number of issues with KDE 4 had forced me to look at alternatives recently. With F11, KDE 4 seems to be getting more functional, being more or less usable for real work... However, a couple weeks ago, I ran "yum update" and picked up KDE 4.3.1, and while it seems to have fixed a few more things, there also seems to be a regression in terms of performance - on this lap-top anyway.
Basically any window operation -- opening a new one, moving, resizing, even moving the mouse from one window to another (I use auto-focus) -- is slow, and during this time the CPU load from the "X" process becomes very high -- close to 100% according to "top". When not "touching" any windows, CPU load goes back to normal. I did run across some advice to turn off desktop effects, which I did -- it reduced the sluggish response slightly, but the problem is still present. And I had the same settings before the update, and performance was fine.
Here is some info about this machine: Dell Precision M60 lap-top CPU: Intel(R) Pentium(R) M processor 1.70GHz RAM: 1 GiB (not a lot by today's standards, but this issue does not seem related to swapping) video: nVidia Quadro FX Go700 (using default installation, nouveau driver) display: 1920 x 1200 kernel: 2.6.30.5-43.fc11.i586 KDE: kdebase-4.3.1-2.fc11.i586 nouveau: xorg-x11-drv-nouveau-0.0.12-40.20090528git0c17b87.fc11.i586
I know this doesn't matter to most people because most people hold shift to capitalize letters. I tap the caps lock with my pinky whenever I need something capitalized. I'm a pretty fast typer, I just don't type correctly. How do I get it so that when I'm typing and I hit Caps Lock for it to be an instant effect? For example this is what I'm getting annoyed with, here is an example of what I am having to recorrect everytime I type.
My problem is that when i try to open port 25 with telenet it takes lot of time like more than 1 minute to open session and another 30 - 40 seconds to respond to "ehlo" command.
Also when i try to open telnet session on port 25 in another server it hardly takes 1-2 seconds open session.
firstly it took a very long time to display the browser.After the browser was working on my localmachine it took really long time to show the response.I am doing all this on internet and the server has bandwidth as 6Mbps and my internet connection has a speed 1Mbps what could be the reason for such a slow response.The same exists in case of Chromium is there a way to make it fast.Ubuntu 10.04 server edition and ssh2.
I am having some issues with the typing speed in gedit. When typing the response is usually really slow,It can be up to a second or so between rendering keystrokes. I don't believe it has anything to do with resources. I have checked the processes running when it happens and everything looks pretty normal cpu usuage is also very low at the time. The system is very responsive with everything else at the time.
I only have this problem with gedit, gvim, vim, nano etc are fine. Maybe an issue with a GTK lib of some sort? The problem happens with very small files like little bash scripts. I have including some info about the system ...
While Blender 2.5 may be stable, the Python API is not. According to the Blender website... Note: The Blender Python API has areas which are still in development. The following areas are subject to change. -operator behavior, names and arguments -mesh creation and editing functions.
I am running Wheezy on a Lenovo ThinkPad W530. When using the hotkeys to control screen brightness (Fn+F8/9) there is a 10-30 sec delay before the screen changes.
From Brightness Settings it changes instantaneously. It seems to be the same issue as this. I tried the fix in comment #5.
I added "acpi_backlight=vendor" to GRUB_CMDLINE_LINUX_DEFAULT in /etc/default/grub then ran update-grub. After restarting I could not control the screen brightness at all.
I have opensuse 11.3 (64 bit) with nvidia 8400GS (256 MB ram). The system is a core 2 T7500 with 4GB Ram. I have installed nvidia drives (through nvidia's .run file, versison 256.35)
1) When i connect an external monitor (1440x900) and use separate x-screen+ xinerama (laptop has 1280x800), desktop response is really slow. Moving windows,switch tabs etc make desktop (kde) barely useful. Especially if i open a large txt file it is almost impossible to scroll through this file.
xorg file (see attached file) is been created by nvidia-settings.
One minor solution I found is to use 16 bit (instead of 24bit) color. This makes everything better, but still not fast enough. I do not use desktop effects.
An important note: This happens only after some period of time. After reboot everything seems to be ok for some time, but suddenly something changes and I have slow response.
I do not have the same problem under windows.
2) How can i specify that laptop's screen be the default, so it can have the taskbar?
3) When i disconnect the external monitor and restart x, then the laptop screen goes to 1024x768 and not to 1280x800. I have to create another xorg.conf and restart x. How can I make just one xorg file, and the system automatically adjust resolutions regarding if i have one or dual monitors?
Code: # nvidia-settings: X configuration file generated by nvidia-settings # nvidia-settings: version 256.35 (buildmeister@builder97.nvidia.com) Wed Jun 16 19:14:45 PDT 2010 Section "ServerLayout"
My notebook is using intel core 2 duo T6400 CPU and 2GB Ram, when I am playing MP3 with Amarok and at the same time running Firefox, the computer tends to hang and slow in response to open new website.IS it due to my hardware?
