2

I run on CentOS 6.x in dedicated rackspace cloud hosting and recently I installed SSL and enabled https access for my website. 443 port is enabled in iptables and APF firewall as well. But every 18-20 hours HTTPS suddenly gets blocked(http and 80 port always OK) and only after restating APF firewall makes https accessible again. After the restart it lasts for another 20 hours and again the same thing happening regularly. I tried to stop APF suspecting it causing the issue but something else looks still causing it. I suspect iptables may cause it but unfortunately have no idea how to track the issue down.

Any help or direction will be highly appreciated.

Thanks.

taras
  • 259
  • 2
  • 9
  • 20

1 Answers1

1

I believe (but I can't really prove it) that this is an issue with upstream routing in some providers. I manage a large number of machines using apf, many of which are at one particular provider, and these machines have no problems. Other similarly configured machines at other providers have done in the past, and we never managed to find a cause on the servers apart from restarting iptables fixing the issue. It was always HTTPS on port 443 and never HTTP, so I think it must be either in an upstream firewall or router and is affected by a firewall being reloaded, which would suggest something to do with arp or other mechanisms at that level.

Simon Greenwood
  • 1,343
  • 9
  • 12