503 Service Unavailable when using firewall

Wed Dec 7 19:15:35 CET 2011

Ivan,

Try to disable SELinux (enforced by default), and re-check your iptables
rules.

Regards,
Roberto.

2011/12/7 Ivan Martinez <ivan.martinez at masterion.com>

> **
>
> Thank you Roberto,
>
> There is only one server running both services, and if I can browse
> http://server:8000 from my local machine, I suppose the telnet works as
> well.
>
> Ivan
>
> On Wed, 7 Dec 2011 14:43:50 -0300, Roberto O. Fernández Crisial wrote:
>
> Ivan,
> Have you tried telnet from Varnish server to Zotonic server?
> $ telnet zotonic.address 8000
> Check if there is any response.
> --
> Roberto O. Fernández Crisial
> @rofc
>
> On Wed, Dec 7, 2011 at 1:52 PM, Ivan Martinez <ivan.martinez at masterion.com
> > wrote:
>
>> Hello all,
>> In a CentOS 6 server, I'm running Varnish in port 80 serving pages from a
>> Zotonic site in port 8000. It works fine when I leave all the ports open.
>> However, if I close all ports from 0 to 631 and explicitly open 80 and
>> 8000, the following happens:
>>
>> - I can see the website in server:8000.
>> - In server:80, I get the following after some seconds:
>>
>> Error 503 Service Unavailable
>>
>> Service Unavailable
>> Guru Meditation:
>>
>> XID: 544990083
>>
>> Varnish cache server
>>
>> I have read about the sysctl issues with firewalls but it seems I have it
>> right:
>>
>> [root at server ivanmr]# sysctl -A | grep tw
>> net.ipv4.tcp_max_tw_buckets = 2048
>> net.ipv4.tcp_tw_recycle = 0
>> net.ipv4.tcp_tw_reuse = 0
>>
>> varnish.log is empty. What can be the problem?. Thank you.
>>
>> Ivan
>>
>> _______________________________________________
>> varnish-misc mailing list
>> varnish-misc at varnish-cache.org
>> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.varnish-cache.org/lists/pipermail/varnish-misc/attachments/20111207/a6e7c846/attachment-0003.html>