503 Service Unavailable when using firewall

[David Birdsong]

2011/12/7 Ivan Martinez <ivan.martinez at masterion.com>:
> Thank you Roberto,
>
> There is only one server running both services, and if I can browse
> http://server:8000 from my local machine, I suppose the telnet works as
> well.

Right, but you should still try to telnet *from* the varnish machine
to the backend despite the fact that your local machine can reach the
backend.

>
> Ivan
>
> On Wed, 7 Dec 2011 14:43:50 -0300, Roberto O. Fernández Crisial wrote:
>
> Ivan,
>
> Have you tried telnet from Varnish server to Zotonic server?
> $ telnet zotonic.address 8000
> Check if there is any response.
> --
> Roberto O. Fernández Crisial
> @rofc
>
> On Wed, Dec 7, 2011 at 1:52 PM, Ivan Martinez <ivan.martinez at masterion.com>
> wrote:
>>
>> Hello all,
>> In a CentOS 6 server, I'm running Varnish in port 80 serving pages from a
>> Zotonic site in port 8000. It works fine when I leave all the ports open.
>> However, if I close all ports from 0 to 631 and explicitly open 80 and 8000,
>> the following happens:
>>
>> - I can see the website in server:8000.
>> - In server:80, I get the following after some seconds:
>>
>> Error 503 Service Unavailable
>>
>> Service Unavailable
>> Guru Meditation:
>>
>> XID: 544990083
>>
>> Varnish cache server
>>
>> I have read about the sysctl issues with firewalls but it seems I have it
>> right:
>>
>> [root at server ivanmr]# sysctl -A | grep tw
>> net.ipv4.tcp_max_tw_buckets = 2048
>> net.ipv4.tcp_tw_recycle = 0
>> net.ipv4.tcp_tw_reuse = 0
>>
>> varnish.log is empty. What can be the problem?. Thank you.
>>
>> Ivan
>>
>> _______________________________________________
>> varnish-misc mailing list
>> varnish-misc at varnish-cache.org
>> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc
>
>
>
> _______________________________________________
> varnish-misc mailing list
> varnish-misc at varnish-cache.org
> https://www.varnish-cache.org/lists/mailman/listinfo/varnish-misc