Community Forum

Resolved
0 votes
I have a host running CentOS and VirtualBox. I have a VM for ClearOS 7.3 running Squid 2.3.4-1 in transparent proxy mode. That in turn feeds another VM.

If the host goes down and restarts it's configured to auto-start the VMs. They start OK and ClearOS shows that Squid is running. From the downstream VM I can ping Yahoo, so IP packets are getting through end-to-end, but wget (HTTP) fails. I then go to the Squid page (https://192.168.57.200:81/app/web_proxy) to check and it reports that Squid is running. If I stop Squid and restart it then it starts working. The downstream VM can fetch wget yahoo.com.

What logs can I pull to help debug this? It seems as if Squid isn't starting properly somehow, even though it's indicated as running, but stopping and restarting Squid (NOT the VM that ClearOS is running on) fixes it.

Worst case I can kluge something into crontab that restarts Squid a couple of minutes after booting, but I'd like to do it the right way.

Any help is appreciated.
Sunday, September 10 2017, 11:55 PM
Share this post:
Responses (23)
  • Accepted Answer

    Monday, September 11 2017, 06:45 AM - #Permalink
    Resolved
    0 votes
    I don't know the proxy and don't know which command to use to stop and start it. Hopefully you do as I can't hunt it down until this evening. When it has failed, if you run a "systemctl status proxy_service_name.status" (obviously replace proxy_service_name with the correct name) it may give you clues and it also should give you another command (journalctl ..?) which you can run.
    The reply is currently minimized Show
  • Accepted Answer

    Monday, September 11 2017, 08:57 PM - #Permalink
    Resolved
    0 votes
    Do you not have a VM startup sequence with VirtualBox?
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, September 19 2017, 12:59 AM - #Permalink
    Resolved
    0 votes
    Philippe Eveleigh wrote:

    Do you not have a VM startup sequence with VirtualBox?


    I'm not sure I understand the question. VirtualBox launches the ClearOS VM upon boot. It's invoked by cron with this:
    @reboot VBoxManage startvm --type headless "Squid ClearOS"

    Nothing seems odd when the ClearOS VM launches except for the supposedly "running" Squid proxy not passing any HTTP traffic. Logging into the ClearOS VM's dashboard, from there stopping and then restarting Squid fixes it.

    My configuration seems very vanilla, I'd be surprised if nobody else has encountered this Squid startup problem. Maybe so?
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, September 19 2017, 03:17 AM - #Permalink
    Resolved
    0 votes
    It just got weirder. I rebooted the ClearOS VM and it killed all traffic downstream, no pings or anything getting through. Looking at the ClearOS dashboard I found the firewall was in panic mode. I connected via SSH and issued "service firewall restart". That didn't help. Then from the web UI I stopped and then started Squid. That fixed it.

    Examing the log I see that the Squid restart triggered another firewall restart. Excerpt:
    Sep 18 21:06:27 gateway webconfig: Redirecting to /bin/systemctl stop  squid.service
    Sep 18 21:06:27 gateway systemd: Stopping Squid caching proxy...
    Sep 18 21:06:27 gateway systemd: Stopped Squid caching proxy.
    Sep 18 21:06:27 gateway systemd: Reloading.
    Sep 18 21:06:32 gateway webconfig: Redirecting to /bin/systemctl start squid.service
    Sep 18 21:06:32 gateway systemd: Starting Squid caching proxy...
    Sep 18 21:06:32 gateway systemd: Started Squid caching proxy.
    Sep 18 21:06:32 gateway squid[3168]: Squid Parent: will start 1 kids
    Sep 18 21:06:32 gateway squid[3168]: Squid Parent: (squid-1) process 3172 started
    Sep 18 21:06:32 gateway systemd: Reloading.
    Sep 18 21:06:34 gateway systemd: Stopping ClearOS Firewall Engine...
    Sep 18 21:06:34 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 18 21:06:34 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:35 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:35 gateway systemd: Started ClearOS Firewall Engine.
    Sep 18 21:06:39 gateway systemd: Stopping ClearOS Firewall Engine...
    Sep 18 21:06:39 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 18 21:06:39 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:40 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:40 gateway systemd: Started ClearOS Firewall Engine.

    So I've now seen 2 separate failure modes, one due to an unexplained firewall panic mode and the other due to an unexplained Squid failure to run properly. Both are fixed by going through the web UI to stop and restart Squid. Restarting Squid and the firewall via SSH doesn't help.

    Any ideas?
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, September 19 2017, 07:00 AM - #Permalink
    Resolved
    0 votes
    If you get another firewall panic, please can you restart the firewall in debug mode with the following command:
    firewall-start -d
    If it then panics, please post the output.
    Like
    1
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, September 19 2017, 02:50 PM - #Permalink
    Resolved
    0 votes
    Hello Peter

    Sorry, I may have misunderstood your problem. I was under the impression that your second VM was attempting to access your Gateway VM prior to it being operational.

    You may be running into hardware contention issues which in you case creating a racing situation? I have read that it is not recommended to run a Gateway as VM's, mostly because of clock issues but who knows what else? I am as culprit as you are, I also run my home gateway from a VM though I do not use Dropbox and Squid.

    You may have to experiment and delay the start of Squid? or maybe you can try this fix: Attack Detector(fail2ban) sshd iptables rule missing at boot time This solution is for another problem and a bit of a shot in the dark but I recently discovered that I was having a conflict with the start of the firewall and fail2ban.
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, September 19 2017, 10:09 PM - #Permalink
    Resolved
    0 votes
    Philippe Eveleigh wrote:

    Hello Peter

    Sorry, I may have misunderstood your problem. I was under the impression that your second VM was attempting to access your Gateway VM prior to it being operational.


    I've uploaded a system diagram to make it clearer. Hopefully a picture is worth 1,000 words. ;)

    You may be running into hardware contention issues which in you case creating a racing situation?


    I initially thought that might be the root cause, so I tried invoking it via cron after a 2 minute delay in the host's bootup. It hasn't seemed to make a difference.

    I have read that it is not recommended to run a Gateway as VM's, mostly because of clock issues but who knows what else?


    I wondered about that as well. I'm really pleased at the performance when it finally boots properly. Our performance requirements are quite modest, which helps.

    You may have to experiment and delay the start of Squid? or maybe you can try this fix: Attack Detector(fail2ban) sshd iptables rule missing at boot time This solution is for another problem and a bit of a shot in the dark but I recently discovered that I was having a conflict with the start of the firewall and fail2ban.


    Thanks I will experiment with hold off Squid and / or iptables. I can't really try anything new until Wednesday evening, in order to minimize the risk of downtime for production.

    Thanks
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 11:14 AM - #Permalink
    Resolved
    0 votes
    Can you also have a look at /var/log/system and /var/log/messages for anything odd when squid or the firewall fails?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 02:10 PM - #Permalink
    Resolved
    0 votes
    Nick Howitt wrote:

    Can you also have a look at /var/log/system and /var/log/messages for anything odd when squid or the firewall fails?


    Here are some relevant excerpts from /var/log/messages. Since this post is long I'll make a separate reply for /var/log/system.

    In parsing the errors it looks like the NETWORKING environment variable isn't set, possibly due to a race condition? It's causing some syntax errors when parsing some init.d files. The firewall segfaults when it tries to start.

    The race could explain why it's OK when I manually restart later.

    Most recent bootup where the FW failed to start.
    Note the syntax error in /etc/rc.d/init.d/syswatch, this is a standard ClearOS config file that I have not manually touched. I have uploaded the file.
    Note the segfault and "error 4", whatever that is.
    Sep 18 20:34:56 gateway snortsam: Starting snortsam: [  OK  ]
    Sep 18 20:34:56 gateway systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Sep 18 20:34:56 gateway systemd: Starting SYSV: Snort Network Intrusion Detection System...
    Sep 18 20:34:56 gateway systemd: Starting SYSV: Provides a way to trigger a post-boot event....
    Sep 18 20:34:56 gateway systemd: Starting SYSV: This daemon keeps an eye on your Internet connection and other critical systems....
    Sep 18 20:34:56 gateway syswatch: /etc/rc.d/init.d/syswatch: line 18: [: =: unary operator expected
    Sep 18 20:34:56 gateway kernel: AVX or AES-NI instructions are not detected.
    Sep 18 20:34:56 gateway kernel: AVX or AES-NI instructions are not detected.
    Sep 18 20:34:56 gateway kernel: AVX instructions are not detected.
    Sep 18 20:34:56 gateway kernel: AVX instructions are not detected.
    Sep 18 20:34:56 gateway kernel: PCLMULQDQ-NI instructions are not detected.
    Sep 18 20:34:56 gateway kernel: Bluetooth: Core ver 2.21
    Sep 18 20:34:56 gateway kernel: NET: Registered protocol family 31
    Sep 18 20:34:56 gateway kernel: Bluetooth: HCI device and connection manager initialized
    Sep 18 20:34:56 gateway kernel: Bluetooth: HCI socket layer initialized
    Sep 18 20:34:56 gateway kernel: Bluetooth: L2CAP socket layer initialized
    Sep 18 20:34:56 gateway kernel: Bluetooth: SCO socket layer initialized
    Sep 18 20:34:56 gateway kernel: AVX instructions are not detected.
    Sep 18 20:34:56 gateway kernel: AVX instructions are not detected.
    Sep 18 20:34:56 gateway kernel: AVX instructions are not detected.
    Sep 18 20:34:56 gateway clearsyncd[597]: System Events: Socket hang-up: 29
    Sep 18 20:34:56 gateway zbootevent: Starting bootevent: [ OK ]
    Sep 18 20:34:56 gateway systemd: Started SYSV: Provides a way to trigger a post-boot event..
    Sep 18 20:34:56 gateway syswatch: Starting syswatch: [ OK ]
    Sep 18 20:34:56 gateway systemd: PID file /var/run/syswatch.pid not readable (yet?) after start.
    Sep 18 20:34:56 gateway systemd: Started SYSV: This daemon keeps an eye on your Internet connection and other critical systems..
    Sep 18 20:34:56 gateway kernel: ip6_tables: (C) 2000-2006 Netfilter Core Team
    Sep 18 20:34:56 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 18 20:34:57 gateway kernel: NET: Registered protocol family 15
    Sep 18 20:34:57 gateway kernel: IPv4 over IPsec tunneling driver
    Sep 18 20:34:57 gateway ipsec: nflog ipsec capture disabled
    Sep 18 20:34:57 gateway systemd: Started Internet Key Exchange (IKE) Protocol Daemon for IPsec.
    Sep 18 20:34:57 gateway kernel: app-firewall[2093]: segfault at 0 ip 0000000000404893 sp 00007ffea79fa6a0 error 4 in app-firewall[400000+10000]
    Sep 18 20:34:57 gateway clearsyncd[597]: System Events: Socket hang-up: 29
    Sep 18 20:34:57 gateway systemd: firewall.service: main process exited, code=exited, status=1/FAILURE
    Sep 18 20:34:57 gateway systemd: Failed to start ClearOS Firewall Engine.
    Sep 18 20:34:57 gateway systemd: Unit firewall.service entered failed state.
    Sep 18 20:34:57 gateway systemd: firewall.service failed.
    Sep 18 20:34:58 gateway kernel: alg: No test for fips(ansi_cprng) (fips_ansi_cprng)
    Sep 18 20:34:58 gateway systemd: Stopping SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 18 20:34:58 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 18 20:34:58 gateway kernel: device enp0s3 entered promiscuous mode
    Sep 18 20:34:58 gateway systemd: Started SYSV: Snort Network Intrusion Detection System.
    Sep 18 20:34:59 gateway snortsam: Stopping snortsam: [ OK ]Sep 18 20:34:59 gateway systemd: Starting SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 18 20:34:59 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 18 20:34:59 gateway snortsam: Starting snortsam: [ OK ]
    Sep 18 20:34:59 gateway systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Sep 18 20:34:59 gateway systemd: Reached target Multi-User System.
    Sep 18 20:34:59 gateway systemd: Starting Multi-User System.
    Sep 18 20:34:59 gateway systemd: Starting Update UTMP about System Runlevel Changes...
    Sep 18 20:34:59 gateway systemd: Started Update UTMP about System Runlevel Changes.
    Sep 18 20:34:59 gateway systemd: Startup finished in 816ms (kernel) + 3.940s (initrd) + 24.271s (userspace) = 29.027s.



    About 30 minutes later I rebooted.
    Note the syntax error in /etc/rc.d/init.d/syswatch, this is a standard ClearOS config file that I have not manually touched. I have uploaded the file.
    Sep 18 21:01:18 gateway systemd: Starting SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 18 21:01:18 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 18 21:01:18 gateway systemd: Started The Webconfig Apache HTTP Server.
    Sep 18 21:01:18 gateway snortsam: Starting snortsam: [ OK ]
    Sep 18 21:01:18 gateway systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Sep 18 21:01:18 gateway systemd: Starting SYSV: This daemon keeps an eye on your Internet connection and other critical systems....
    Sep 18 21:01:18 gateway systemd: Starting SYSV: Snort Network Intrusion Detection System...
    Sep 18 21:01:18 gateway systemd: Starting SYSV: Provides a way to trigger a post-boot event....
    Sep 18 21:01:18 gateway syswatch: /etc/rc.d/init.d/syswatch: line 18: [: =: unary operator expected
    Sep 18 21:01:18 gateway kernel: PPP generic driver version 2.4.2
    Sep 18 21:01:18 gateway kernel: sha512_ssse3: Using SSSE3 optimized SHA-512 implementation
    Sep 18 21:01:18 gateway syswatch: Starting syswatch: [ OK ]
    Sep 18 21:01:18 gateway systemd: Started SYSV: This daemon keeps an eye on your Internet connection and other critical systems..


    My reading of the syntax error is that NETWORKING is undefined. Presumably some other process was supposed to set that environment variable?

    [root@gateway init.d][root@gateway init.d]# cat -n syswatch
    1 #!/bin/sh
    2 #
    3 # Startup script for the Syswatch daemon.
    4 #
    5 # chkconfig: 2345 99 01
    6 # description: This daemon keeps an eye on your Internet connection \
    7 # and other critical systems.
    8 # processname: syswatch
    9 # pidfile: /var/run/syswatch.pid
    10
    11 # Source function library.
    12 . /etc/rc.d/init.d/functions
    13
    14 # Source networking configuration.
    15 . /etc/sysconfig/network
    16
    17 # Check that networking is up.
    18 [ ${NETWORKING} = "no" ] && exit 0
    19
    20 prog="syswatch"
    21 RETVAL=0
    22
    23 # See how we were called.
    24 case "$1" in
    25 start)
    26 echo -n $"Starting $prog: "
    27 daemon /usr/sbin/syswatch
    28 RETVAL=$?
    29 echo
    30 [ $RETVAL -eq 0 ] && touch /var/lock/subsys/syswatch
    31 ;;
    32 stop)
    33 echo -n $"Stopping $prog: "
    34 killproc syswatch
    35 RETVAL=$?
    36 echo
    37 [ $RETVAL -eq 0 ] && rm -f /var/lock/subsys/syswatch
    38 ;;
    39 status)
    40 status syswatch
    41 RETVAL=$?
    42 ;;
    43 reload)
    44 echo -n $"Reloading $prog: "
    45 killproc syswatch -HUP
    46 RETVAL=$?
    47 echo
    48 ;;
    49 condrestart)
    50 if [ -e /var/lock/subsys/syswatch ]; then
    51 $0 stop
    52 $0 start
    53 RETVAL=$?
    54 fi
    55 ;;
    56 restart)
    57 $0 stop
    58 $0 start
    59 RETVAL=$?
    60 ;;
    61 *)
    62 echo "Usage: $prog {start|stop|restart|condrestart|reload|status}"
    63 exit 1
    64 esac
    65
    66 exit $RETVAL



    Another syntax error, this time in /etc/rc.d/init.d/snortsam, which I have not touched. I have uploaded the file.
    Sep 18 21:01:20 gateway systemd: Startup finished in 721ms (kernel) + 3.019s (initrd) + 18.388s (userspace) = 22.129s.
    Sep 18 21:01:20 gateway systemd: Stopping SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 18 21:01:20 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 18 21:01:22 gateway snortsam: Stopping snortsam: [ OK ]
    Sep 18 21:01:22 gateway systemd: Starting SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 18 21:01:22 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 18 21:01:22 gateway snortsam: Starting snortsam: [ OK ]
    Sep 18 21:01:22 gateway systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Sep 18 21:01:40 gateway chronyd[671]: Selected source 216.229.0.50
    Sep 18 21:01:41 gateway chronyd[671]: Selected source 66.7.96.1
    Sep 18 21:02:01 gateway systemd: Started Session 4 of user root.
    Sep 18 21:02:01 gateway systemd: Starting Session 4 of user root.
    Sep 18 21:02:24 gateway systemd: Started Session 5 of user root.
    Sep 18 21:02:24 gateway systemd-logind: New session 5 of user root.
    Sep 18 21:02:24 gateway systemd: Starting Session 5 of user root.
    Sep 18 21:05:01 gateway systemd: Started Session 7 of user root.
    Sep 18 21:05:01 gateway systemd: Starting Session 7 of user root.
    Sep 18 21:05:01 gateway systemd: Started Session 9 of user root.
    Sep 18 21:05:01 gateway systemd: Starting Session 9 of user root.
    Sep 18 21:05:01 gateway systemd: Started Session 8 of user root.
    Sep 18 21:05:01 gateway systemd: Starting Session 8 of user root.
    Sep 18 21:05:01 gateway systemd: Started Session 6 of user root.
    Sep 18 21:05:01 gateway systemd: Starting Session 6 of user root.
    Sep 18 21:06:27 gateway webconfig: Redirecting to /bin/systemctl stop squid.service
    Sep 18 21:06:27 gateway systemd: Stopping Squid caching proxy...
    Sep 18 21:06:27 gateway systemd: Stopped Squid caching proxy.
    Sep 18 21:06:27 gateway systemd: Reloading.
    Sep 18 21:06:32 gateway webconfig: Redirecting to /bin/systemctl start squid.service
    Sep 18 21:06:32 gateway systemd: Starting Squid caching proxy...
    Sep 18 21:06:32 gateway systemd: Started Squid caching proxy.
    Sep 18 21:06:32 gateway squid[3168]: Squid Parent: will start 1 kids
    Sep 18 21:06:32 gateway squid[3168]: Squid Parent: (squid-1) process 3172 started
    Sep 18 21:06:32 gateway systemd: Reloading.
    Sep 18 21:06:34 gateway systemd: Stopping ClearOS Firewall Engine...
    Sep 18 21:06:34 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 18 21:06:34 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:35 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:35 gateway systemd: Started ClearOS Firewall Engine.
    Sep 18 21:06:39 gateway systemd: Stopping ClearOS Firewall Engine...
    Sep 18 21:06:39 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 18 21:06:39 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:40 gateway clearsyncd[590]: System Events: Socket hang-up: 30
    Sep 18 21:06:40 gateway systemd: Started ClearOS Firewall Engine.



    [root@gateway init.d]# cat -n snortsam
    1 #!/bin/sh
    2 #
    3 # Startup script to for SnortSAM
    4 #
    5 # chkconfig: - 98 02
    6 # description: SnortSAM dynamic firewall plug-in for Snort
    7
    8 # Source function library.
    9 . /etc/rc.d/init.d/functions
    10
    11 # Source networking configuration.
    12 . /etc/sysconfig/network
    13
    14 # Check that networking is up.
    15 [ ${NETWORKING} = "no" ] && exit 0
    16
    17 RETVAL=0
    18 prog="snortsam"
    19
    20 # See how we were called.
    21 case "$1" in
    22 start)
    23 echo -n $"Starting $prog: "
    24 DNSCHECK=`host -W 5 ns1.clearsdn.com 2>&1 | grep ns1.clearsdn.com`
    25 if test "x`/sbin/pidof snortsam`" != x; then
    26 echo
    27 elif [ -z "$DNSCHECK" ]; then
    28 echo -n "... delaying"
    29 success
    30 echo
    31 else
    32 daemon snortsam /etc/snortsam.conf >/dev/null 2>&1
    33 RETVAL=$?
    34 if [ $RETVAL -eq 0 ]; then
    35 success
    36 touch /var/lock/snortsam
    37 else
    38 failure
    39 fi
    40 echo
    41 fi
    42 ;;
    43 stop)
    44 echo -n $"Stopping $prog: "
    45 killproc snortsam
    46 RETVAL=$?
    47 echo
    48 if [ $RETVAL -eq 0 ]; then
    49 rm -f /var/lock/snortsam
    50 fi
    51 ;;
    52 status)
    53 status snortsam
    54 RETVAL=$?
    55 ;;
    56 condrestart)
    57 if test "x`/sbin/pidof snortsam`" != x; then
    58 $0 stop
    59 sleep 2
    60 $0 start
    61 RETVAL=$?
    62 fi
    63 ;;
    64 restart|reload)
    65 $0 stop
    66 sleep 2
    67 $0 start
    68 RETVAL=$?
    69 ;;
    70 *)
    71 echo "Usage: $prog {start|stop|status|restart|reload}"
    72 exit 1
    73 esac
    74
    75 exit $RETVAL
    76


    Thanks for all the help!
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 02:25 PM - #Permalink
    Resolved
    0 votes
    Nick Howitt wrote:

    Can you also have a look at /var/log/system and /var/log/messages for anything odd when squid or the firewall fails?


    /var/log/system. "Error: /usr/clearos/apps/firewall/deploy/firewall.lua:3155: Unable to acquire xtables lock." Race condition?

    [root@gateway log]# grep fire system
    Sep 18 20:34:54 gateway firewall: Starting firewall...
    Sep 18 20:34:54 gateway firewall: Loading environment
    Sep 18 20:34:54 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 20:34:54 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 20:34:54 gateway firewall: Setting kernel parameters
    Sep 18 20:34:54 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 20:34:54 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 20:34:54 gateway firewall: Using gateway mode
    Sep 18 20:34:54 gateway firewall: Loading kernel modules
    Sep 18 20:34:55 gateway firewall: Loading kernel modules for NAT
    Sep 18 20:34:55 gateway firewall: Setting default policy to DROP
    Sep 18 20:34:55 gateway firewall: Defining custom chains
    Sep 18 20:34:55 gateway firewall: Running blocked external rules
    Sep 18 20:34:55 gateway firewall: Running custom rules
    Sep 18 20:34:55 gateway firewall: Running common rules
    Sep 18 20:34:55 gateway firewall: Running incoming denied rules
    Sep 18 20:34:55 gateway firewall: Running user-defined incoming rules
    Sep 18 20:34:55 gateway firewall: Allowing incoming tcp port/range 22
    Sep 18 20:34:55 gateway firewall: Allowing incoming tcp port/range 81
    Sep 18 20:34:55 gateway firewall: Running default incoming allowed rules
    Sep 18 20:34:55 gateway firewall: Running user-defined port forward rules
    Sep 18 20:34:55 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 18 20:34:55 gateway firewall: Running 1-to-1 NAT rules
    Sep 18 20:34:55 gateway firewall: Running user-defined proxy rules
    Sep 18 20:34:55 gateway firewall: Content filter is offline
    Sep 18 20:34:55 gateway firewall: Web proxy is online
    Sep 18 20:34:55 gateway firewall: Enabled proxy transparent mode
    Sep 18 20:34:56 gateway firewall: Running multipath
    Sep 18 20:34:56 gateway firewall: Running Masquerading
    Sep 18 20:34:56 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 18 20:34:56 gateway firewall: Running user-defined outgoing block rules
    Sep 18 20:34:56 gateway firewall: Running default forwarding rules
    Sep 18 20:34:56 gateway firewall: Execution time: 2.042s
    Sep 18 20:34:56 gateway firewall: Running post-firewall: 120730
    Sep 18 20:34:56 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 18 20:34:57 gateway firewall: Starting firewall...
    Sep 18 20:34:57 gateway firewall: Error: /usr/clearos/apps/firewall/deploy/firewall.lua:3155: Unable to acquire xtables lock.
    Sep 18 20:34:57 gateway firewall: Loading environment
    Sep 18 20:34:57 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 20:34:57 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 20:34:57 gateway firewall: Setting kernel parameters
    Sep 18 20:34:57 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 20:34:57 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 20:34:57 gateway firewall: Using gateway mode
    Sep 18 20:34:57 gateway firewall: Loading kernel modules
    Sep 18 20:34:57 gateway firewall: Loading kernel modules for NAT
    Sep 18 20:34:57 gateway firewall: Setting default policy to DROP
    Sep 18 20:34:57 gateway firewall: Running firewall panic mode...
    Sep 18 20:58:33 gateway firewall: Starting firewall...
    Sep 18 20:58:33 gateway firewall: Loading environment
    Sep 18 20:58:33 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 20:58:33 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 20:58:33 gateway firewall: Setting kernel parameters
    Sep 18 20:58:33 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 20:58:33 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 20:58:33 gateway firewall: Using gateway mode
    Sep 18 20:58:33 gateway firewall: Loading kernel modules
    Sep 18 20:58:33 gateway firewall: Loading kernel modules for NAT
    Sep 18 20:58:33 gateway firewall: Setting default policy to DROP
    Sep 18 20:58:33 gateway firewall: Defining custom chains
    Sep 18 20:58:33 gateway firewall: Running blocked external rules
    Sep 18 20:58:33 gateway firewall: Running custom rules
    Sep 18 20:58:33 gateway firewall: Running common rules
    Sep 18 20:58:33 gateway firewall: Running incoming denied rules
    Sep 18 20:58:33 gateway firewall: Running user-defined incoming rules
    Sep 18 20:58:33 gateway firewall: Allowing incoming tcp port/range 22
    Sep 18 20:58:33 gateway firewall: Allowing incoming tcp port/range 81
    Sep 18 20:58:33 gateway firewall: Running default incoming allowed rules
    Sep 18 20:58:33 gateway firewall: Running user-defined port forward rules
    Sep 18 20:58:33 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 18 20:58:33 gateway firewall: Running 1-to-1 NAT rules
    Sep 18 20:58:33 gateway firewall: Running user-defined proxy rules
    Sep 18 20:58:33 gateway firewall: Content filter is offline
    Sep 18 20:58:33 gateway firewall: Web proxy is online
    Sep 18 20:58:33 gateway firewall: Enabled proxy transparent mode
    Sep 18 20:58:33 gateway firewall: Running multipath
    Sep 18 20:58:33 gateway firewall: Running Masquerading
    Sep 18 20:58:33 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 18 20:58:33 gateway firewall: Running user-defined outgoing block rules
    Sep 18 20:58:33 gateway firewall: Running default forwarding rules
    Sep 18 20:58:33 gateway firewall: Execution time: 0.202s
    Sep 18 20:58:33 gateway firewall: Running post-firewall: 120730
    Sep 18 20:58:33 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 18 20:58:33 gateway firewall6: Starting firewall...
    Sep 18 20:58:33 gateway firewall6: Loading environment
    Sep 18 20:58:33 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 18 20:58:33 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 18 20:58:33 gateway firewall6: Setting kernel parameters
    Sep 18 20:58:33 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 20:58:33 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 20:58:33 gateway firewall6: Using gateway mode
    Sep 18 20:58:33 gateway firewall6: Loading kernel modules
    Sep 18 20:58:33 gateway firewall6: Loading kernel modules for NAT
    Sep 18 20:58:33 gateway firewall6: Setting default policy to DROP
    Sep 18 20:58:33 gateway firewall6: Defining custom chains
    Sep 18 20:58:33 gateway firewall6: Running blocked external rules
    Sep 18 20:58:33 gateway firewall6: Running custom rules
    Sep 18 20:58:33 gateway firewall6: Running common rules
    Sep 18 20:58:33 gateway firewall6: Running incoming denied rules
    Sep 18 20:58:33 gateway firewall6: Running user-defined incoming rules
    Sep 18 20:58:33 gateway firewall6: Running default incoming allowed rules
    Sep 18 20:58:33 gateway firewall6: Running user-defined port forward rules
    Sep 18 20:58:33 gateway firewall6: Running Masquerading
    Sep 18 20:58:33 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 18 20:58:33 gateway firewall6: Running user-defined outgoing block rules
    Sep 18 20:58:33 gateway firewall6: Running default forwarding rules
    Sep 18 20:58:33 gateway firewall6: Execution time: 0.166s
    Sep 18 20:58:33 gateway firewall6: Running post-firewall: 120730
    Sep 18 20:58:33 gateway firewall6: Running /etc/clearos/firewall.d/local
    Sep 18 21:01:18 gateway firewall: Starting firewall...
    Sep 18 21:01:18 gateway firewall: Loading environment
    Sep 18 21:01:18 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 21:01:18 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 21:01:18 gateway firewall: Setting kernel parameters
    Sep 18 21:01:18 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:01:18 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:01:18 gateway firewall: Using gateway mode
    Sep 18 21:01:18 gateway firewall: Loading kernel modules
    Sep 18 21:01:18 gateway firewall: Loading kernel modules for NAT
    Sep 18 21:01:19 gateway firewall: Starting firewall...
    Sep 18 21:01:19 gateway firewall: Loading environment
    Sep 18 21:01:19 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 21:01:19 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 21:01:19 gateway firewall: Setting kernel parameters
    Sep 18 21:01:19 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:01:19 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:01:19 gateway firewall: Using gateway mode
    Sep 18 21:01:19 gateway firewall: Loading kernel modules
    Sep 18 21:01:19 gateway firewall: Loading kernel modules for NAT
    Sep 18 21:01:19 gateway firewall: Setting default policy to DROP
    Sep 18 21:01:19 gateway firewall: Defining custom chains
    Sep 18 21:01:19 gateway firewall: Running blocked external rules
    Sep 18 21:01:19 gateway firewall: Running custom rules
    Sep 18 21:01:19 gateway firewall: Running common rules
    Sep 18 21:01:19 gateway firewall: Running incoming denied rules
    Sep 18 21:01:19 gateway firewall: Running user-defined incoming rules
    Sep 18 21:01:19 gateway firewall: Allowing incoming tcp port/range 22
    Sep 18 21:01:19 gateway firewall: Allowing incoming tcp port/range 81
    Sep 18 21:01:19 gateway firewall: Running default incoming allowed rules
    Sep 18 21:01:19 gateway firewall: Running user-defined port forward rules
    Sep 18 21:01:19 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 18 21:01:19 gateway firewall: Running 1-to-1 NAT rules
    Sep 18 21:01:19 gateway firewall: Running user-defined proxy rules
    Sep 18 21:01:19 gateway firewall: Content filter is offline
    Sep 18 21:01:19 gateway firewall: Web proxy is online
    Sep 18 21:01:19 gateway firewall: Enabled proxy transparent mode
    Sep 18 21:01:19 gateway firewall: Running multipath
    Sep 18 21:01:19 gateway firewall: Running Masquerading
    Sep 18 21:01:19 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 18 21:01:19 gateway firewall: Running user-defined outgoing block rules
    Sep 18 21:01:19 gateway firewall: Running default forwarding rules
    Sep 18 21:01:19 gateway firewall: Execution time: 0.378s
    Sep 18 21:01:19 gateway firewall: Running post-firewall: 120730
    Sep 18 21:01:19 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 18 21:01:20 gateway firewall6: Starting firewall...
    Sep 18 21:01:20 gateway firewall6: Loading environment
    Sep 18 21:01:20 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 18 21:01:20 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 18 21:01:20 gateway firewall6: Setting kernel parameters
    Sep 18 21:01:20 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:01:20 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:01:20 gateway firewall6: Using gateway mode
    Sep 18 21:01:20 gateway firewall6: Loading kernel modules
    Sep 18 21:01:20 gateway firewall6: Loading kernel modules for NAT
    Sep 18 21:01:20 gateway firewall6: Setting default policy to DROP
    Sep 18 21:01:20 gateway firewall6: Defining custom chains
    Sep 18 21:01:20 gateway firewall6: Running blocked external rules
    Sep 18 21:01:20 gateway firewall6: Running custom rules
    Sep 18 21:01:20 gateway firewall6: Running common rules
    Sep 18 21:01:20 gateway firewall6: Running incoming denied rules
    Sep 18 21:01:20 gateway firewall6: Running user-defined incoming rules
    Sep 18 21:01:20 gateway firewall6: Running default incoming allowed rules
    Sep 18 21:01:20 gateway firewall6: Running user-defined port forward rules
    Sep 18 21:01:20 gateway firewall6: Running Masquerading
    Sep 18 21:01:20 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 18 21:01:20 gateway firewall6: Running user-defined outgoing block rules
    Sep 18 21:01:20 gateway firewall6: Running default forwarding rules
    Sep 18 21:01:20 gateway firewall6: Execution time: 0.745s
    Sep 18 21:01:20 gateway firewall6: Running post-firewall: 120730
    Sep 18 21:01:20 gateway firewall6: Running /etc/clearos/firewall.d/local
    Sep 18 21:06:34 gateway events: network_proxy - triggered hook: firewall
    Sep 18 21:06:34 gateway firewall: Starting firewall...
    Sep 18 21:06:34 gateway firewall: Loading environment
    Sep 18 21:06:34 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 21:06:34 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 21:06:34 gateway firewall: Setting kernel parameters
    Sep 18 21:06:34 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:06:34 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:06:34 gateway firewall: Using gateway mode
    Sep 18 21:06:34 gateway firewall: Loading kernel modules
    Sep 18 21:06:34 gateway firewall: Loading kernel modules for NAT
    Sep 18 21:06:34 gateway firewall: Setting default policy to DROP
    Sep 18 21:06:34 gateway firewall: Defining custom chains
    Sep 18 21:06:34 gateway firewall: Running blocked external rules
    Sep 18 21:06:34 gateway firewall: Running custom rules
    Sep 18 21:06:34 gateway firewall: Running common rules
    Sep 18 21:06:34 gateway firewall: Running incoming denied rules
    Sep 18 21:06:34 gateway firewall: Running user-defined incoming rules
    Sep 18 21:06:34 gateway firewall: Allowing incoming tcp port/range 22
    Sep 18 21:06:34 gateway firewall: Allowing incoming tcp port/range 81
    Sep 18 21:06:34 gateway firewall: Running default incoming allowed rules
    Sep 18 21:06:34 gateway firewall: Running user-defined port forward rules
    Sep 18 21:06:34 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 18 21:06:34 gateway firewall: Running 1-to-1 NAT rules
    Sep 18 21:06:34 gateway firewall: Running user-defined proxy rules
    Sep 18 21:06:34 gateway firewall: Content filter is offline
    Sep 18 21:06:34 gateway firewall: Web proxy is online
    Sep 18 21:06:34 gateway firewall: Enabled proxy transparent mode
    Sep 18 21:06:34 gateway firewall: Running multipath
    Sep 18 21:06:34 gateway firewall: Running Masquerading
    Sep 18 21:06:34 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 18 21:06:34 gateway firewall: Running user-defined outgoing block rules
    Sep 18 21:06:34 gateway firewall: Running default forwarding rules
    Sep 18 21:06:34 gateway firewall: Execution time: 0.191s
    Sep 18 21:06:34 gateway firewall: Running post-firewall: 120730
    Sep 18 21:06:34 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 18 21:06:35 gateway firewall6: Starting firewall...
    Sep 18 21:06:35 gateway firewall6: Loading environment
    Sep 18 21:06:35 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 18 21:06:35 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 18 21:06:35 gateway firewall6: Setting kernel parameters
    Sep 18 21:06:35 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:06:35 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:06:35 gateway firewall6: Using gateway mode
    Sep 18 21:06:35 gateway firewall6: Loading kernel modules
    Sep 18 21:06:35 gateway firewall6: Loading kernel modules for NAT
    Sep 18 21:06:35 gateway firewall6: Setting default policy to DROP
    Sep 18 21:06:35 gateway firewall6: Defining custom chains
    Sep 18 21:06:35 gateway firewall6: Running blocked external rules
    Sep 18 21:06:35 gateway firewall6: Running custom rules
    Sep 18 21:06:35 gateway firewall6: Running common rules
    Sep 18 21:06:35 gateway firewall6: Running incoming denied rules
    Sep 18 21:06:35 gateway firewall6: Running user-defined incoming rules
    Sep 18 21:06:35 gateway firewall6: Running default incoming allowed rules
    Sep 18 21:06:35 gateway firewall6: Running user-defined port forward rules
    Sep 18 21:06:35 gateway firewall6: Running Masquerading
    Sep 18 21:06:35 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 18 21:06:35 gateway firewall6: Running user-defined outgoing block rules
    Sep 18 21:06:35 gateway firewall6: Running default forwarding rules
    Sep 18 21:06:35 gateway firewall6: Execution time: 0.116s
    Sep 18 21:06:35 gateway firewall6: Running post-firewall: 120730
    Sep 18 21:06:35 gateway firewall6: Running /etc/clearos/firewall.d/local
    Sep 18 21:06:39 gateway events: network_proxy - triggered hook: firewall
    Sep 18 21:06:39 gateway firewall: Starting firewall...
    Sep 18 21:06:39 gateway firewall: Loading environment
    Sep 18 21:06:39 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 18 21:06:39 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 18 21:06:39 gateway firewall: Setting kernel parameters
    Sep 18 21:06:39 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:06:39 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:06:39 gateway firewall: Using gateway mode
    Sep 18 21:06:39 gateway firewall: Loading kernel modules
    Sep 18 21:06:39 gateway firewall: Loading kernel modules for NAT
    Sep 18 21:06:39 gateway firewall: Setting default policy to DROP
    Sep 18 21:06:39 gateway firewall: Defining custom chains
    Sep 18 21:06:39 gateway firewall: Running blocked external rules
    Sep 18 21:06:39 gateway firewall: Running custom rules
    Sep 18 21:06:39 gateway firewall: Running common rules
    Sep 18 21:06:39 gateway firewall: Running incoming denied rules
    Sep 18 21:06:39 gateway firewall: Running user-defined incoming rules
    Sep 18 21:06:39 gateway firewall: Allowing incoming tcp port/range 22
    Sep 18 21:06:39 gateway firewall: Allowing incoming tcp port/range 81
    Sep 18 21:06:39 gateway firewall: Running default incoming allowed rules
    Sep 18 21:06:39 gateway firewall: Running user-defined port forward rules
    Sep 18 21:06:39 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 18 21:06:39 gateway firewall: Running 1-to-1 NAT rules
    Sep 18 21:06:39 gateway firewall: Running user-defined proxy rules
    Sep 18 21:06:39 gateway firewall: Content filter is offline
    Sep 18 21:06:39 gateway firewall: Web proxy is online
    Sep 18 21:06:39 gateway firewall: Enabled proxy transparent mode
    Sep 18 21:06:39 gateway firewall: Running multipath
    Sep 18 21:06:39 gateway firewall: Running Masquerading
    Sep 18 21:06:39 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 18 21:06:39 gateway firewall: Running user-defined outgoing block rules
    Sep 18 21:06:39 gateway firewall: Running default forwarding rules
    Sep 18 21:06:39 gateway firewall: Execution time: 0.192s
    Sep 18 21:06:39 gateway firewall: Running post-firewall: 120730
    Sep 18 21:06:39 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 18 21:06:40 gateway firewall6: Starting firewall...
    Sep 18 21:06:40 gateway firewall6: Loading environment
    Sep 18 21:06:40 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 18 21:06:40 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 18 21:06:40 gateway firewall6: Setting kernel parameters
    Sep 18 21:06:40 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 18 21:06:40 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 18 21:06:40 gateway firewall6: Using gateway mode
    Sep 18 21:06:40 gateway firewall6: Loading kernel modules
    Sep 18 21:06:40 gateway firewall6: Loading kernel modules for NAT
    Sep 18 21:06:40 gateway firewall6: Setting default policy to DROP
    Sep 18 21:06:40 gateway firewall6: Defining custom chains
    Sep 18 21:06:40 gateway firewall6: Running blocked external rules
    Sep 18 21:06:40 gateway firewall6: Running custom rules
    Sep 18 21:06:40 gateway firewall6: Running common rules
    Sep 18 21:06:40 gateway firewall6: Running incoming denied rules
    Sep 18 21:06:40 gateway firewall6: Running user-defined incoming rules
    Sep 18 21:06:40 gateway firewall6: Running default incoming allowed rules
    Sep 18 21:06:40 gateway firewall6: Running user-defined port forward rules
    Sep 18 21:06:40 gateway firewall6: Running Masquerading
    Sep 18 21:06:40 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 18 21:06:40 gateway firewall6: Running user-defined outgoing block rules
    Sep 18 21:06:40 gateway firewall6: Running default forwarding rules
    Sep 18 21:06:40 gateway firewall6: Execution time: 0.228s
    Sep 18 21:06:40 gateway firewall6: Running post-firewall: 120730
    Sep 18 21:06:40 gateway firewall6: Running /etc/clearos/firewall.d/local


    [root@gateway log]# grep proxy system
    Sep 15 07:02:02 gateway proxy2db: Processed 1098 proxy log lines - 114 records added.
    Sep 15 10:02:01 gateway proxy2db: Processed 1170 proxy log lines - 72 records added.
    Sep 15 11:02:02 gateway proxy2db: Processed 1313 proxy log lines - 143 records added.
    Sep 15 12:02:02 gateway proxy2db: Processed 1348 proxy log lines - 35 records added.
    Sep 15 13:02:01 gateway proxy2db: Processed 1366 proxy log lines - 18 records added.
    Sep 15 14:02:01 gateway proxy2db: Processed 1377 proxy log lines - 11 records added.
    Sep 16 07:02:01 gateway proxy2db: Processed 1491 proxy log lines - 114 records added.
    Sep 16 11:02:01 gateway proxy2db: Processed 1495 proxy log lines - 4 records added.
    Sep 16 12:02:01 gateway proxy2db: Processed 1536 proxy log lines - 41 records added.
    Sep 16 13:02:01 gateway proxy2db: Processed 1576 proxy log lines - 39 records added.
    Sep 16 14:02:01 gateway proxy2db: Processed 1591 proxy log lines - 15 records added.
    Sep 16 15:02:02 gateway proxy2db: Processed 1597 proxy log lines - 6 records added.
    Sep 16 16:02:02 gateway proxy2db: Processed 1610 proxy log lines - 13 records added.
    Sep 17 07:02:01 gateway proxy2db: Processed 114 proxy log lines - 114 records added.
    Sep 18 07:02:01 gateway proxy2db: Processed 228 proxy log lines - 114 records added.
    Sep 18 20:34:55 gateway firewall: Running user-defined proxy rules
    Sep 18 20:34:55 gateway firewall: Web proxy is online
    Sep 18 20:34:55 gateway firewall: Enabled proxy transparent mode
    Sep 18 20:58:33 gateway firewall: Running user-defined proxy rules
    Sep 18 20:58:33 gateway firewall: Web proxy is online
    Sep 18 20:58:33 gateway firewall: Enabled proxy transparent mode
    Sep 18 21:01:19 gateway firewall: Running user-defined proxy rules
    Sep 18 21:01:19 gateway firewall: Web proxy is online
    Sep 18 21:01:19 gateway firewall: Enabled proxy transparent mode
    Sep 18 21:02:03 gateway proxy2db: Processed 229 proxy log lines - 1 records added.
    Sep 18 21:06:34 gateway events: network_proxy - event occurred
    Sep 18 21:06:34 gateway events: network_proxy - triggered hook: firewall
    Sep 18 21:06:34 gateway firewall: Running user-defined proxy rules
    Sep 18 21:06:34 gateway firewall: Web proxy is online
    Sep 18 21:06:34 gateway firewall: Enabled proxy transparent mode
    Sep 18 21:06:39 gateway events: network_proxy - event occurred
    Sep 18 21:06:39 gateway events: network_proxy - triggered hook: firewall
    Sep 18 21:06:39 gateway firewall: Running user-defined proxy rules
    Sep 18 21:06:39 gateway firewall: Web proxy is online
    Sep 18 21:06:39 gateway firewall: Enabled proxy transparent mode
    Sep 18 22:02:01 gateway proxy2db: Processed 230 proxy log lines - 1 records added.
    Sep 19 07:02:02 gateway proxy2db: Processed 344 proxy log lines - 114 records added.
    Sep 19 10:02:01 gateway proxy2db: Processed 350 proxy log lines - 6 records added.
    Sep 19 11:02:01 gateway proxy2db: Processed 389 proxy log lines - 39 records added.
    Sep 19 12:02:01 gateway proxy2db: Processed 432 proxy log lines - 43 records added.
    Sep 19 13:02:02 gateway proxy2db: Processed 470 proxy log lines - 38 records added.
    Sep 19 14:02:01 gateway proxy2db: Processed 500 proxy log lines - 30 records added.
    Sep 20 07:02:02 gateway proxy2db: Processed 614 proxy log lines - 114 records added.


    Thanks again!
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 03:09 PM - #Permalink
    Resolved
    0 votes
    Nick would be better at this then I am but sounds like multiple process are attempting to alter your iptables rules at the same time, could be Squid?

    The squid starting information is going to be in the message... log, though I do not know if that will tell us much. Maybe the start time of Squid will be that same as your error?

    I noticed that the current version of squid in the repos is:
    [root@cognoquest ~]# yum list squid

    ...
    Installed Packages:
    squid.x86_64 7:3.5.20-2.el7_3.3 @clearos-centos-updates
    [root@cognoquest ~]#


    You could take a look at your startup script for Squid? See if it similar to this:
    /usr/lib/systemd/system/squid.service

    [Unit]
    Description=Squid caching proxy
    After=syslog.target network.target nss-lookup.target

    [Service]
    Type=forking
    LimitNOFILE=16384
    EnvironmentFile=/etc/sysconfig/squid
    ExecStartPre=/usr/libexec/squid/cache_swap.sh
    ExecStart=/usr/sbin/squid $SQUID_OPTS -f $SQUID_CONF
    ExecReload=/usr/sbin/squid $SQUID_OPTS -k reconfigure -f $SQUID_CONF
    ExecStop=/usr/sbin/squid -k shutdown -f $SQUID_CONF
    TimeoutSec=0

    [Install]
    WantedBy=multi-user.target


    Also can you duplicate your vm's with another vlan? and test with a more recent version of squid?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 03:43 PM - #Permalink
    Resolved
    0 votes
    Philippe Eveleigh wrote:

    Nick would be better at this then I am but sounds like multiple process are attempting to alter your iptables rules at the same time, could be Squid?

    The squid starting information is going to be in the message... log, though I do not know if that will tell us much. Maybe the start time of Squid will be that same as your error?


    I split the prior response into 2 posts, 1 for system and one for message, due to length. It looks like they start at the same time, but the logs only have 1 second resolution. Is it possible to set the logging time resolution higher? Also is it possible to delay the startup of Squid and / or iptables?


    I noticed that the current version of squid in the repos is:
    [root@cognoquest ~]# yum list squid

    ...
    Installed Packages:
    squid.x86_64 7:3.5.20-2.el7_3.3 @clearos-centos-updates
    [root@cognoquest ~]#



    Yes it's running that version. I have ClearOS set to automatically take updates.
    [root@gateway etc]# yum info squid
    Loaded plugins: clearcenter-marketplace, fastestmirror
    ClearCenter Marketplace: fetching repositories...
    Loading mirror speeds from cached hostfile
    * clearos: mirror2-sanfrancisco.clearos.com
    * clearos-centos-sclo-rh: download1.clearsdn.com
    * clearos-centos-verified: mirror2-sanfrancisco.clearos.com
    * clearos-contribs: mirror2-sanfrancisco.clearos.com
    * clearos-epel-verified: mirror2-sanfrancisco.clearos.com
    * clearos-fast-updates: download1.clearsdn.com
    * clearos-infra: mirror2-sanfrancisco.clearos.com
    * clearos-verified: mirror2-sanfrancisco.clearos.com
    * private-clearcenter-content-filter: download3.clearsdn.com:80
    * private-clearcenter-dyndns: download4.clearsdn.com:80
    * private-clearcenter-home: download3.clearsdn.com:80
    * private-clearcenter-ids: download1.clearsdn.com:80
    * private-clearcenter-verified-updates: download3.clearsdn.com:80
    Installed Packages
    Name : squid
    Arch : x86_64
    Epoch : 7
    Version : 3.5.20
    Release : 2.el7_3.3
    Size : 10 M
    Repo : installed
    From repo : clearos-centos-verified
    Summary : The Squid proxy caching server


    You could take a look at your startup script for Squid? See if it similar to this:
    /usr/lib/systemd/system/squid.service

    [Unit]
    Description=Squid caching proxy
    After=syslog.target network.target nss-lookup.target

    [Service]
    Type=forking
    LimitNOFILE=16384
    EnvironmentFile=/etc/sysconfig/squid
    ExecStartPre=/usr/libexec/squid/cache_swap.sh
    ExecStart=/usr/sbin/squid $SQUID_OPTS -f $SQUID_CONF
    ExecReload=/usr/sbin/squid $SQUID_OPTS -k reconfigure -f $SQUID_CONF
    ExecStop=/usr/sbin/squid -k shutdown -f $SQUID_CONF
    TimeoutSec=0

    [Install]
    WantedBy=multi-user.target


    Here's mine:

    [root@gateway etc]# cat -n /usr/lib/systemd/system/squid.service
    1 [Unit]
    2 Description=Squid caching proxy
    3 After=syslog.target network.target nss-lookup.target
    4
    5 [Service]
    6 Type=forking
    7 LimitNOFILE=16384
    8 EnvironmentFile=/etc/sysconfig/squid
    9 ExecStartPre=/usr/libexec/squid/cache_swap.sh
    10 ExecStart=/usr/sbin/squid $SQUID_OPTS -f $SQUID_CONF
    11 ExecReload=/usr/sbin/squid $SQUID_OPTS -k reconfigure -f $SQUID_CONF
    12 ExecStop=/usr/sbin/squid -k shutdown -f $SQUID_CONF
    13 TimeoutSec=0
    14
    15 [Install]
    16 WantedBy=multi-user.target



    Also can you duplicate your vm's with another vlan? and test with a more recent version of squid?


    Tomorrow I can duplicate with another vlan; today they are running production so I can't disturb it. I seem to have the current version of Squid so I can't run anything newer.

    Thanks!
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 03:50 PM - #Permalink
    Resolved
    0 votes
    Regarding the missing NETWORKING environment variable, I found a few references to that here. It's release notes for a Linux driver. It makes note of an very old (at least 5 years) bug in RHEL 7, which of course would also be present in CentOS.
    4. BUG FIXES
    o Fix an installation problem on systems such as RHEL 7 where
    /etc/sysconfig/network exists but does not define a NETWORKING
    environment variable.


    And here is an OpenStack bug from 2012. "NETWORKING=yes missing on Red Hat-based distributions."

    Sure enough, mine fits that description.
    [root@gateway etc]# cat -n /etc/sysconfig/network
    1 NOZEROCONF="yes"
    2 GATEWAYDEV="enp0s3"

    Maybe that's the issue? It's not defined on my machine.
    [root@gateway /]# set | grep NETWORKING
    [root@gateway /]#



    I ran a grep in /etc looking to see what sets the NETWORKING environment variable. It came up empty.
    [root@gateway etc]# grep -r NETWORKING *
    init.d/syswatch:[ ${NETWORKING} = "no" ] && exit 0
    init.d/network:[ "${NETWORKING}" = "no" ] && exit 6
    init.d/snort:[ ${NETWORKING} = "no" ] && exit 0
    init.d/snortsam:[ ${NETWORKING} = "no" ] && exit 0
    rc.d/init.d/syswatch:[ ${NETWORKING} = "no" ] && exit 0
    rc.d/init.d/network:[ "${NETWORKING}" = "no" ] && exit 6
    rc.d/init.d/snort:[ ${NETWORKING} = "no" ] && exit 0
    rc.d/init.d/snortsam:[ ${NETWORKING} = "no" ] && exit 0
    sudoers:# Cmnd_Alias NETWORKING = /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net, /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool
    sudoers:# %sys ALL = NETWORKING, SOFTWARE, SERVICES, STORAGE, DELEGATING, PROCESSES, LOCATE, DRIVERS


    So I looked elsewhere. This is the only place I found that sets it:
    [[root@gateway /]# grep -r "NETWORKING=yes" *
    lib/dracut/modules.d/80cms/cms-write-ifcfg.sh: echo "NETWORKING=yes" >> /etc/sysconfig/network


    Evidently that needs to get set, and nothing is setting it. It appears to be a RHEL / CentOS bug. Is anybody else reporting it? It would appear that ClearOS needs to add something to set it before starting Squid and the firewall.

    Thanks - Pete
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 05:58 PM - #Permalink
    Resolved
    0 votes
    In regards to the version of Squiq, I was under the impression that you where running: 'Squid 2.3.4-1', so that is not the issue.

    I hate to say this but I now have squid running, snort, fail2ban and not having your problem though I am running my vm's on a ESXI platform if that makes any differences?

    I have checked for the NETWORKING environment variable that you mention and I do not have it. Similar configuration to yours:

    [root@cognoquest ~]# cat -n /etc/sysconfig/network
    1 NOZEROCONF="yes"
    2 GATEWAYDEV="ppp0"
    [root@cognoquest ~]#


    My suggestion would be to attempt to find the conflicting services, I would disable snort from starting and see if that helps? I do not see fail2ban in your logs but I would also disable it if you have it installed?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 06:13 PM - #Permalink
    Resolved
    0 votes
    I think the NETWORKING bit is a red herring. Mine is not set either. The check in the init files is a negative check, so if it is set to "no" it bails out. If it is not set to "no" (or not set/does not exist), it won't bail out.

    In the firewall start up file, /usr/lib/systemd/system/firewall.service you could try adding squid.service to the Before line (space separated, I think).

    The firewall seems to complete startup but restarts a little later. What is the contents of /etc/clearos/firewall.d/local and /etc/clearos/firewall.d/custom?
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 07:45 PM - #Permalink
    Resolved
    0 votes
    Nick Howitt wrote:

    I think the NETWORKING bit is a red herring. Mine is not set either. The check in the init files is a negative check, so if it is set to "no" it bails out. If it is not set to "no" (or not set/does not exist), it won't bail out.


    How can I open a bug report on it? It's throwing errors in the logs which lead to wasted time. Is there a URL for bug submissions? I've never submitted one to ClearOS before.

    In the firewall start up file, /usr/lib/systemd/system/firewall.service you could try adding squid.service to the Before line (space separated, I think).

    OK I will try that tonight or tomorrow when production is shut down.

    The firewall seems to complete startup but restarts a little later. What is the contents of /etc/clearos/firewall.d/local and /etc/clearos/firewall.d/custom?

    [root@gateway /]# cat -n  /etc/clearos/firewall.d/local 
    1 # This script is run after every firewall restart. Add custom rules here.
    2 # Ensure you use $IPTABLES instead of calling iptables directly if you wish
    3 # to avoid xtable locking problems.
    [root@gateway /]#
    [root@gateway /]# cat -n /etc/clearos/firewall.d/custom
    cat: /etc/clearos/firewall.d/custom: No such file or directory
    [root@gateway /]#

    Thanks for the help!
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 07:54 PM - #Permalink
    Resolved
    0 votes
    Peter Kuykendall wrote:

    Nick Howitt wrote:

    I think the NETWORKING bit is a red herring. Mine is not set either. The check in the init files is a negative check, so if it is set to "no" it bails out. If it is not set to "no" (or not set/does not exist), it won't bail out.


    How can I open a bug report on it? It's throwing errors in the logs which lead to wasted time. Is there a URL for bug submissions? I've never submitted one to ClearOS before.

    I think you have to request tracker access from support@clearcenter.com.


    [root@gateway /]# cat -n  /etc/clearos/firewall.d/local 
    1 # This script is run after every firewall restart. Add custom rules here.
    2 # Ensure you use $IPTABLES instead of calling iptables directly if you wish
    3 # to avoid xtable locking problems.
    [root@gateway /]#
    [root@gateway /]# cat -n /etc/clearos/firewall.d/custom
    cat: /etc/clearos/firewall.d/custom: No such file or directory
    [root@gateway /]#

    Thanks for the help!

    That is good. no dodgy rules.

    If the firewall fails, do a "systemctl firewall.service status". It will give you another command to run as well to dig a bit further. The try starting the firewall with a "firewall-start -d".
    The reply is currently minimized Show
  • Accepted Answer

    Wednesday, September 20 2017, 11:58 PM - #Permalink
    Resolved
    0 votes
    Nit "systemctl status firewall.service" not "systemctl firewall.service status"
    service and systemctl have their parameters in opposite orders - catches me out too :)
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, September 21 2017, 01:53 AM - #Permalink
    Resolved
    0 votes
    I just rebooted the ClearOS server. It's back to allowing the downstream VM to ping (i.e. firewall is running OK) but not passing HTTP (i.e. Squid is hosed).

    Downstream machine:

    pete@cz01:~$ ping google.com
    PING google.com (172.217.11.238) 56(84) bytes of data.
    64 bytes from den02s01-in-f14.1e100.net (172.217.11.238): icmp_req=1 ttl=54 time=11.9 ms
    64 bytes from den02s01-in-f14.1e100.net (172.217.11.238): icmp_req=2 ttl=54 time=21.1 ms
    64 bytes from den02s01-in-f14.1e100.net (172.217.11.238): icmp_req=3 ttl=54 time=12.2 ms
    ^C
    --- google.com ping statistics ---
    3 packets transmitted, 3 received, 0% packet loss, time 2013ms
    rtt min/avg/max/mdev = 11.983/15.109/21.139/4.265 ms
    pete@cz01:~$ wget yahoo.com
    --2017-09-20 19:36:55-- http://yahoo.com/
    Resolving yahoo.com (yahoo.com)... 206.190.36.45, 98.139.180.149, 98.138.253.109, ...
    Connecting to yahoo.com (yahoo.com)|206.190.36.45|:80... failed: Connection refused.
    Connecting to yahoo.com (yahoo.com)|98.139.180.149|:80... failed: Connection refused.
    Connecting to yahoo.com (yahoo.com)|98.138.253.109|:80... failed: Connection refused.
    Connecting to yahoo.com (yahoo.com)|2001:4998:c:a06::2:4008|:80... failed: Network is unreachable.
    Connecting to yahoo.com (yahoo.com)|2001:4998:44:204::a7|:80... failed: Network is unreachable.
    Connecting to yahoo.com (yahoo.com)|2001:4998:58:c02::a9|:80... failed: Network is unreachable.
    pete@cz01:~$


    Info from ClearOS server, rebooted at 19:20:01


    [root@gateway ~]# systemctl status firewall.service
    ● firewall.service - ClearOS Firewall Engine
    Loaded: loaded (/usr/lib/systemd/system/firewall.service; enabled; vendor preset: disabled)
    Active: active (exited) since Wed 2017-09-20 19:23:06 MDT; 22min ago
    Process: 2084 ExecStart=/usr/libexec/firewall/exec-start.sh (code=exited, status=0/SUCCESS)
    Main PID: 2084 (code=exited, status=0/SUCCESS)
    CGroup: /system.slice/firewall.service

    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running common rules
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running incoming denied rules
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running user-defined incoming rules
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running default incoming allowed rules
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running user-defined port forward rules
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running Masquerading
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Enabling NAT on WAN interface enp0s3
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running user-defined outgoing block rules
    Sep 20 19:23:05 gateway.t4a.ddns.net firewall6[2317]: Running default forwarding rules
    Sep 20 19:23:06 gateway.t4a.ddns.net systemd[1]: Started ClearOS Firewall Engine.
    [root@gateway ~]#


    /var/log/messages

    Sep 20 19:20:01 gateway systemd: Started Session 2760 of user root.
    Sep 20 19:20:01 gateway systemd: Starting Session 2760 of user root.
    Sep 20 19:20:01 gateway systemd: Started Session 2757 of user root.
    Sep 20 19:20:01 gateway systemd: Starting Session 2757 of user root.
    Sep 20 19:20:01 gateway systemd: Started Session 2759 of user root.
    Sep 20 19:20:01 gateway systemd: Starting Session 2759 of user root.
    Sep 20 19:20:01 gateway systemd: Started Session 2758 of user root.
    Sep 20 19:20:01 gateway systemd: Starting Session 2758 of user root.
    Sep 20 19:20:01 gateway systemd: Started Session 2756 of user root.
    Sep 20 19:20:01 gateway systemd: Starting Session 2756 of user root.
    Sep 20 19:21:01 gateway systemd: Started Session 2761 of user root.
    Sep 20 19:21:01 gateway systemd: Starting Session 2761 of user root.
    Sep 20 19:22:16 gateway systemd: Stopped target Multi-User System.
    Sep 20 19:22:16 gateway systemd: Stopping Multi-User System.
    Sep 20 19:22:16 gateway systemd: Stopped Resets System Activity Logs.
    Sep 20 19:22:16 gateway systemd: Stopping Resets System Activity Logs...
    Sep 20 19:22:16 gateway systemd: Stopping Internet Key Exchange (IKE) Protocol Daemon for IPsec...
    Sep 20 19:22:16 gateway systemd: Stopped target Login Prompts.
    Sep 20 19:22:16 gateway systemd: Stopping Login Prompts.
    Sep 20 19:22:16 gateway systemd: Stopping System Logging Service...
    Sep 20 19:22:16 gateway systemd: Stopping PoPToP Point to Point Tunneling Server...
    Sep 20 19:22:16 gateway systemd: Stopping Dynamic System Tuning Daemon...
    Sep 20 19:22:16 gateway systemd: Stopping Getty on tty1...
    Sep 20 19:22:16 gateway systemd: Stopping System MariaDB database server...
    Sep 20 19:22:16 gateway systemd: Stopping SYSV: Provides a way to trigger a post-boot event....
    Sep 20 19:22:16 gateway systemd: Stopped target Sound Card.
    Sep 20 19:22:16 gateway rsyslogd: [origin software="rsyslogd" swVersion="7.4.7" x-pid="643" x-info="http://www.rsyslog.com"] exiting on signal 15.
    Sep 20 19:22:45 gateway rsyslogd: [origin software="rsyslogd" swVersion="7.4.7" x-pid="574" x-info="http://www.rsyslog.com"] start
    Sep 20 19:22:45 gateway rsyslogd-2307: warning: ~ action is deprecated, consider using the 'stop' statement instead [try http://www.rsyslog.com/e/2307 ]
    Sep 20 19:22:45 gateway rsyslogd-2307: warning: ~ action is deprecated, consider using the 'stop' statement instead [try http://www.rsyslog.com/e/2307 ]
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys cpuset
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys cpu
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys cpuacct
    Sep 20 19:22:35 gateway kernel: Linux version 3.10.0-514.26.2.v7.x86_64 (mockbuild@build64-1.clearsdn.local) (gcc version 4.8.5 20150623 (Red Hat 4.8.5-11) (GCC) ) #1 SMP Wed Jul 5 10:37:54 MDT 2017
    Sep 20 19:22:35 gateway kernel: Command line: BOOT_IMAGE=/vmlinuz-3.10.0-514.26.2.v7.x86_64 root=/dev/mapper/clearos-root ro rd.lvm.lv=clearos/root rd.lvm.lv=clearos/swap rhgb quiet LANG=en_US.UTF-8
    Sep 20 19:22:35 gateway kernel: e820: BIOS-provided physical RAM map:
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x0000000000000000-0x000000000009fbff] usable
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x000000000009fc00-0x000000000009ffff] reserved
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x00000000000f0000-0x00000000000fffff] reserved
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x0000000000100000-0x000000007ffeffff] usable
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x000000007fff0000-0x000000007fffffff] ACPI data
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x00000000fec00000-0x00000000fec00fff] reserved
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x00000000fee00000-0x00000000fee00fff] reserved
    Sep 20 19:22:35 gateway kernel: BIOS-e820: [mem 0x00000000fffc0000-0x00000000ffffffff] reserved
    Sep 20 19:22:35 gateway kernel: NX (Execute Disable) protection: active
    Sep 20 19:22:35 gateway kernel: SMBIOS 2.5 present.
    Sep 20 19:22:35 gateway kernel: e820: last_pfn = 0x7fff0 max_arch_pfn = 0x400000000
    Sep 20 19:22:35 gateway kernel: x86 PAT enabled: cpu 0, old 0x7040600070406, new 0x7010600070106
    Sep 20 19:22:35 gateway kernel: CPU MTRRs all blank - virtualized system.
    Sep 20 19:22:35 gateway kernel: found SMP MP-table at [mem 0x0009fff0-0x0009ffff] mapped at [ffff88000009fff0]
    Sep 20 19:22:35 gateway kernel: RAMDISK: [mem 0x35a70000-0x36d2ffff]
    Sep 20 19:22:35 gateway kernel: ACPI: RSDP 00000000000e0000 00024 (v02 VBOX )
    Sep 20 19:22:35 gateway kernel: ACPI: XSDT 000000007fff0030 0003C (v01 VBOX VBOXXSDT 00000001 ASL 00000061)
    Sep 20 19:22:35 gateway kernel: ACPI: FACP 000000007fff00f0 000F4 (v04 VBOX VBOXFACP 00000001 ASL 00000061)
    Sep 20 19:22:35 gateway kernel: ACPI: DSDT 000000007fff0470 021C8 (v02 VBOX VBOXBIOS 00000002 INTL 20100528)
    Sep 20 19:22:35 gateway kernel: ACPI: FACS 000000007fff0200 00040
    Sep 20 19:22:35 gateway kernel: ACPI: APIC 000000007fff0240 00054 (v02 VBOX VBOXAPIC 00000001 ASL 00000061)
    Sep 20 19:22:35 gateway kernel: ACPI: SSDT 000000007fff02a0 001CC (v01 VBOX VBOXCPUT 00000002 INTL 20100528)
    Sep 20 19:22:35 gateway kernel: No NUMA configuration found
    Sep 20 19:22:35 gateway kernel: Faking a node at [mem 0x0000000000000000-0x000000007ffeffff]
    Sep 20 19:22:35 gateway kernel: Initmem setup node 0 [mem 0x00000000-0x7ffeffff]
    Sep 20 19:22:35 gateway kernel: NODE_DATA [mem 0x7ffc9000-0x7ffeffff]
    Sep 20 19:22:35 gateway kernel: Zone ranges:
    Sep 20 19:22:35 gateway kernel: DMA [mem 0x00001000-0x00ffffff]
    Sep 20 19:22:35 gateway kernel: DMA32 [mem 0x01000000-0xffffffff]
    Sep 20 19:22:35 gateway kernel: Normal empty
    Sep 20 19:22:35 gateway kernel: Movable zone start for each node
    Sep 20 19:22:35 gateway kernel: Early memory node ranges
    Sep 20 19:22:35 gateway kernel: node 0: [mem 0x00001000-0x0009efff]
    Sep 20 19:22:35 gateway kernel: node 0: [mem 0x00100000-0x7ffeffff]
    Sep 20 19:22:35 gateway kernel: ACPI: PM-Timer IO Port: 0x4008
    Sep 20 19:22:35 gateway kernel: ACPI: LAPIC (acpi_id[0x00] lapic_id[0x00] enabled)
    Sep 20 19:22:35 gateway kernel: ACPI: IOAPIC (id[0x01] address[0xfec00000] gsi_base[0])
    Sep 20 19:22:35 gateway kernel: IOAPIC[0]: apic_id 1, version 32, address 0xfec00000, GSI 0-23
    Sep 20 19:22:35 gateway kernel: ACPI: INT_SRC_OVR (bus 0 bus_irq 0 global_irq 2 dfl dfl)
    Sep 20 19:22:35 gateway kernel: ACPI: INT_SRC_OVR (bus 0 bus_irq 9 global_irq 9 high level)
    Sep 20 19:22:35 gateway kernel: Using ACPI (MADT) for SMP configuration information
    Sep 20 19:22:35 gateway kernel: smpboot: Allowing 1 CPUs, 0 hotplug CPUs
    Sep 20 19:22:35 gateway kernel: PM: Registered nosave memory: [mem 0x0009f000-0x0009ffff]
    Sep 20 19:22:35 gateway kernel: PM: Registered nosave memory: [mem 0x000a0000-0x000effff]
    Sep 20 19:22:35 gateway kernel: PM: Registered nosave memory: [mem 0x000f0000-0x000fffff]
    Sep 20 19:22:35 gateway kernel: e820: [mem 0x80000000-0xfebfffff] available for PCI devices
    Sep 20 19:22:35 gateway kernel: Booting paravirtualized kernel on bare hardware
    Sep 20 19:22:35 gateway kernel: setup_percpu: NR_CPUS:5120 nr_cpumask_bits:1 nr_cpu_ids:1 nr_node_ids:1
    Sep 20 19:22:35 gateway kernel: PERCPU: Embedded 33 pages/cpu @ffff88007fc00000 s96728 r8192 d30248 u2097152
    Sep 20 19:22:35 gateway kernel: Built 1 zonelists in Node order, mobility grouping on. Total pages: 515961
    Sep 20 19:22:35 gateway kernel: Policy zone: DMA32
    Sep 20 19:22:35 gateway kernel: Kernel command line: BOOT_IMAGE=/vmlinuz-3.10.0-514.26.2.v7.x86_64 root=/dev/mapper/clearos-root ro rd.lvm.lv=clearos/root rd.lvm.lv=clearos/swap rhgb quiet LANG=en_US.UTF-8
    Sep 20 19:22:35 gateway kernel: PID hash table entries: 4096 (order: 3, 32768 bytes)
    Sep 20 19:22:35 gateway kernel: Memory: 2028064k/2097088k available (6771k kernel code, 392k absent, 68632k reserved, 4443k data, 1684k init)
    Sep 20 19:22:35 gateway kernel: SLUB: HWalign=64, Order=0-3, MinObjects=0, CPUs=1, Nodes=1
    Sep 20 19:22:35 gateway kernel: Hierarchical RCU implementation.
    Sep 20 19:22:35 gateway kernel: #011RCU restricting CPUs from NR_CPUS=5120 to nr_cpu_ids=1.
    Sep 20 19:22:35 gateway kernel: NR_IRQS:327936 nr_irqs:256 0
    Sep 20 19:22:35 gateway kernel: Console: colour VGA+ 80x25
    Sep 20 19:22:35 gateway kernel: console [tty0] enabled
    Sep 20 19:22:35 gateway kernel: allocated 8388608 bytes of page_cgroup
    Sep 20 19:22:35 gateway kernel: please try 'cgroup_disable=memory' option if you don't want memory cgroups
    Sep 20 19:22:35 gateway kernel: tsc: Unable to calibrate against PIT
    Sep 20 19:22:35 gateway kernel: tsc: using PMTIMER reference calibration
    Sep 20 19:22:35 gateway kernel: tsc: Detected 2393.292 MHz processor
    Sep 20 19:22:35 gateway kernel: Calibrating delay loop (skipped), value calculated using timer frequency.. 4786.58 BogoMIPS (lpj=2393292)
    Sep 20 19:22:35 gateway kernel: pid_max: default: 32768 minimum: 301
    Sep 20 19:22:35 gateway kernel: Security Framework initialized
    Sep 20 19:22:35 gateway kernel: SELinux: Initializing.
    Sep 20 19:22:35 gateway kernel: Dentry cache hash table entries: 262144 (order: 9, 2097152 bytes)
    Sep 20 19:22:35 gateway kernel: Inode-cache hash table entries: 131072 (order: 8, 1048576 bytes)
    Sep 20 19:22:35 gateway kernel: Mount-cache hash table entries: 4096
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys memory
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys devices
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys freezer
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys net_cls
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys blkio
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys perf_event
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys hugetlb
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys pids
    Sep 20 19:22:35 gateway kernel: Initializing cgroup subsys net_prio
    Sep 20 19:22:35 gateway kernel: CPU: Physical Processor ID: 0
    Sep 20 19:22:35 gateway kernel: mce: CPU supports 0 MCE banks
    Sep 20 19:22:35 gateway kernel: Last level iTLB entries: 4KB 512, 2MB 7, 4MB 7
    Sep 20 19:22:35 gateway kernel: Last level dTLB entries: 4KB 512, 2MB 32, 4MB 32
    Sep 20 19:22:35 gateway kernel: tlb_flushall_shift: 6
    Sep 20 19:22:35 gateway kernel: Freeing SMP alternatives: 28k freed
    Sep 20 19:22:35 gateway kernel: ACPI: Core revision 20130517
    Sep 20 19:22:35 gateway kernel: ACPI: All ACPI Tables successfully acquired
    Sep 20 19:22:35 gateway kernel: ftrace: allocating 25823 entries in 101 pages
    Sep 20 19:22:35 gateway kernel: smpboot: Max logical packages: 1
    Sep 20 19:22:35 gateway kernel: ..TIMER: vector=0x30 apic1=0 pin1=2 apic2=-1 pin2=-1
    Sep 20 19:22:35 gateway kernel: smpboot: CPU0: Intel(R) Xeon(R) CPU X3430 @ 2.40GHz (fam: 06, model: 1e, stepping: 05)
    Sep 20 19:22:35 gateway kernel: Performance Events: unsupported p6 CPU model 30 no PMU driver, software events only.
    Sep 20 19:22:35 gateway kernel: Brought up 1 CPUs
    Sep 20 19:22:35 gateway kernel: smpboot: Total of 1 processors activated (4786.58 BogoMIPS)
    Sep 20 19:22:35 gateway kernel: NMI watchdog: disabled (cpu0): hardware events not enabled
    Sep 20 19:22:35 gateway kernel: NMI watchdog: Shutting down hard lockup detector on all cpus
    Sep 20 19:22:35 gateway kernel: devtmpfs: initialized
    Sep 20 19:22:35 gateway kernel: EVM: security.selinux
    Sep 20 19:22:35 gateway kernel: EVM: security.ima
    Sep 20 19:22:35 gateway kernel: EVM: security.capability
    Sep 20 19:22:35 gateway kernel: atomic64 test passed for x86-64 platform with CX8 and with SSE
    Sep 20 19:22:35 gateway kernel: pinctrl core: initialized pinctrl subsystem
    Sep 20 19:22:35 gateway kernel: NET: Registered protocol family 16
    Sep 20 19:22:35 gateway kernel: ACPI: bus type PCI registered
    Sep 20 19:22:35 gateway kernel: acpiphp: ACPI Hot Plug PCI Controller Driver version: 0.5
    Sep 20 19:22:35 gateway kernel: PCI: Using configuration type 1 for base access
    Sep 20 19:22:35 gateway kernel: ACPI: Added _OSI(Module Device)
    Sep 20 19:22:35 gateway kernel: ACPI: Added _OSI(Processor Device)
    Sep 20 19:22:35 gateway kernel: ACPI: Added _OSI(3.0 _SCP Extensions)
    Sep 20 19:22:35 gateway kernel: ACPI: Added _OSI(Processor Aggregator Device)
    Sep 20 19:22:35 gateway kernel: ACPI: Executed 1 blocks of module-level executable AML code
    Sep 20 19:22:35 gateway kernel: ACPI: Interpreter enabled
    Sep 20 19:22:35 gateway kernel: ACPI: (supports S0 S5)
    Sep 20 19:22:35 gateway kernel: ACPI: Using IOAPIC for interrupt routing
    Sep 20 19:22:35 gateway kernel: PCI: Using host bridge windows from ACPI; if necessary, use "pci=nocrs" and report a bug
    Sep 20 19:22:35 gateway kernel: ACPI: PCI Root Bridge [PCI0] (domain 0000 [bus 00-ff])
    Sep 20 19:22:35 gateway kernel: acpi PNP0A03:00: _OSC: OS supports [ASPM ClockPM Segments MSI]
    Sep 20 19:22:35 gateway kernel: acpi PNP0A03:00: _OSC failed (AE_NOT_FOUND); disabling ASPM
    Sep 20 19:22:35 gateway kernel: acpi PNP0A03:00: fail to add MMCONFIG information, can't access extended PCI configuration space under this bridge.
    Sep 20 19:22:35 gateway kernel: PCI host bridge to bus 0000:00
    Sep 20 19:22:35 gateway kernel: pci_bus 0000:00: root bus resource [bus 00-ff]
    Sep 20 19:22:35 gateway kernel: pci_bus 0000:00: root bus resource [io 0x0000-0x0cf7 window]
    Sep 20 19:22:35 gateway kernel: pci_bus 0000:00: root bus resource [io 0x0d00-0xffff window]
    Sep 20 19:22:35 gateway kernel: pci_bus 0000:00: root bus resource [mem 0x000a0000-0x000bffff window]
    Sep 20 19:22:35 gateway kernel: pci_bus 0000:00: root bus resource [mem 0x80000000-0xffdfffff window]
    Sep 20 19:22:35 gateway kernel: pci 0000:00:01.1: legacy IDE quirk: reg 0x10: [io 0x01f0-0x01f7]
    Sep 20 19:22:35 gateway kernel: pci 0000:00:01.1: legacy IDE quirk: reg 0x14: [io 0x03f6]
    Sep 20 19:22:35 gateway kernel: pci 0000:00:01.1: legacy IDE quirk: reg 0x18: [io 0x0170-0x0177]
    Sep 20 19:22:35 gateway kernel: pci 0000:00:01.1: legacy IDE quirk: reg 0x1c: [io 0x0376]
    Sep 20 19:22:35 gateway kernel: pci 0000:00:07.0: quirk: [io 0x4000-0x403f] claimed by PIIX4 ACPI
    Sep 20 19:22:35 gateway kernel: pci 0000:00:07.0: quirk: [io 0x4100-0x410f] claimed by PIIX4 SMB
    Sep 20 19:22:35 gateway kernel: ACPI: PCI Interrupt Link [LNKA] (IRQs 5 9 10 *11)
    Sep 20 19:22:35 gateway kernel: ACPI: PCI Interrupt Link [LNKB] (IRQs 5 9 10 *11)
    Sep 20 19:22:35 gateway kernel: ACPI: PCI Interrupt Link [LNKC] (IRQs 5 9 *10 11)
    Sep 20 19:22:35 gateway kernel: ACPI: PCI Interrupt Link [LNKD] (IRQs 5 *9 10 11)
    Sep 20 19:22:35 gateway kernel: ACPI: Enabled 2 GPEs in block 00 to 07
    Sep 20 19:22:35 gateway kernel: vgaarb: device added: PCI:0000:00:02.0,decodes=io+mem,owns=io+mem,locks=none
    Sep 20 19:22:35 gateway kernel: vgaarb: loaded
    Sep 20 19:22:35 gateway kernel: vgaarb: bridge control possible 0000:00:02.0
    Sep 20 19:22:35 gateway kernel: SCSI subsystem initialized
    Sep 20 19:22:35 gateway kernel: ACPI: bus type USB registered
    Sep 20 19:22:35 gateway kernel: usbcore: registered new interface driver usbfs
    Sep 20 19:22:35 gateway kernel: usbcore: registered new interface driver hub
    Sep 20 19:22:35 gateway kernel: usbcore: registered new device driver usb
    Sep 20 19:22:35 gateway kernel: PCI: Using ACPI for IRQ routing
    Sep 20 19:22:35 gateway kernel: NetLabel: Initializing
    Sep 20 19:22:35 gateway kernel: NetLabel: domain hash size = 128
    Sep 20 19:22:35 gateway kernel: NetLabel: protocols = UNLABELED CIPSOv4
    Sep 20 19:22:35 gateway kernel: NetLabel: unlabeled traffic allowed by default
    Sep 20 19:22:35 gateway kernel: Switched to clocksource refined-jiffies
    Sep 20 19:22:35 gateway kernel: pnp: PnP ACPI init
    Sep 20 19:22:35 gateway kernel: ACPI: bus type PNP registered
    Sep 20 19:22:35 gateway kernel: pnp: PnP ACPI: found 2 devices
    Sep 20 19:22:35 gateway kernel: ACPI: bus type PNP unregistered
    Sep 20 19:22:35 gateway kernel: Switched to clocksource acpi_pm
    Sep 20 19:22:35 gateway kernel: NET: Registered protocol family 2
    Sep 20 19:22:35 gateway kernel: TCP established hash table entries: 16384 (order: 5, 131072 bytes)
    Sep 20 19:22:35 gateway kernel: TCP bind hash table entries: 16384 (order: 6, 262144 bytes)
    Sep 20 19:22:35 gateway kernel: TCP: Hash tables configured (established 16384 bind 16384)
    Sep 20 19:22:35 gateway kernel: TCP: reno registered
    Sep 20 19:22:35 gateway kernel: UDP hash table entries: 1024 (order: 3, 32768 bytes)
    Sep 20 19:22:35 gateway kernel: UDP-Lite hash table entries: 1024 (order: 3, 32768 bytes)
    Sep 20 19:22:35 gateway kernel: NET: Registered protocol family 1
    Sep 20 19:22:35 gateway kernel: pci 0000:00:00.0: Limiting direct PCI/PCI transfers
    Sep 20 19:22:35 gateway kernel: pci 0000:00:01.0: Activating ISA DMA hang workarounds
    Sep 20 19:22:35 gateway kernel: Unpacking initramfs...
    Sep 20 19:22:35 gateway kernel: Freeing initrd memory: 19200k freed
    Sep 20 19:22:35 gateway kernel: platform rtc_cmos: registered platform RTC device (no PNP device found)
    Sep 20 19:22:35 gateway kernel: sha1_ssse3: Using SSSE3 optimized SHA-1 implementation
    Sep 20 19:22:35 gateway kernel: sha256_ssse3: Using SSSE3 optimized SHA-256 implementation
    Sep 20 19:22:35 gateway kernel: futex hash table entries: 256 (order: 2, 16384 bytes)
    Sep 20 19:22:35 gateway kernel: Initialise system trusted keyring
    Sep 20 19:22:35 gateway kernel: audit: initializing netlink socket (disabled)
    Sep 20 19:22:35 gateway kernel: type=2000 audit(1505956954.692:1): initialized
    Sep 20 19:22:35 gateway kernel: HugeTLB registered 2 MB page size, pre-allocated 0 pages
    Sep 20 19:22:35 gateway kernel: zpool: loaded
    Sep 20 19:22:35 gateway kernel: zbud: loaded
    Sep 20 19:22:35 gateway kernel: VFS: Disk quotas dquot_6.5.2
    Sep 20 19:22:35 gateway kernel: Dquot-cache hash table entries: 512 (order 0, 4096 bytes)
    Sep 20 19:22:35 gateway kernel: msgmni has been set to 3998
    Sep 20 19:22:35 gateway kernel: Key type big_key registered
    Sep 20 19:22:35 gateway kernel: NET: Registered protocol family 38
    Sep 20 19:22:35 gateway kernel: Key type asymmetric registered
    Sep 20 19:22:35 gateway kernel: Asymmetric key parser 'x509' registered
    Sep 20 19:22:35 gateway kernel: Block layer SCSI generic (bsg) driver version 0.4 loaded (major 251)
    Sep 20 19:22:35 gateway kernel: io scheduler noop registered
    Sep 20 19:22:35 gateway kernel: io scheduler deadline registered (default)
    Sep 20 19:22:35 gateway kernel: io scheduler cfq registered
    Sep 20 19:22:35 gateway kernel: pci_hotplug: PCI Hot Plug PCI Core version: 0.5
    Sep 20 19:22:35 gateway kernel: pciehp: PCI Express Hot Plug Controller Driver version: 0.4
    Sep 20 19:22:35 gateway kernel: ACPI: AC Adapter [AC] (on-line)
    Sep 20 19:22:35 gateway kernel: input: Power Button as /devices/LNXSYSTM:00/LNXPWRBN:00/input/input0
    Sep 20 19:22:35 gateway kernel: ACPI: Power Button [PWRF]
    Sep 20 19:22:35 gateway kernel: input: Sleep Button as /devices/LNXSYSTM:00/LNXSLPBN:00/input/input1
    Sep 20 19:22:35 gateway kernel: ACPI: Sleep Button [SLPF]
    Sep 20 19:22:35 gateway kernel: GHES: HEST is not enabled!
    Sep 20 19:22:35 gateway kernel: Serial: 8250/16550 driver, 4 ports, IRQ sharing enabled
    Sep 20 19:22:35 gateway kernel: Non-volatile memory driver v1.3
    Sep 20 19:22:35 gateway kernel: Linux agpgart interface v0.103
    Sep 20 19:22:35 gateway kernel: crash memory driver: version 1.1
    Sep 20 19:22:35 gateway kernel: rdac: device handler registered
    Sep 20 19:22:35 gateway kernel: hp_sw: device handler registered
    Sep 20 19:22:35 gateway kernel: emc: device handler registered
    Sep 20 19:22:35 gateway kernel: alua: device handler registered
    Sep 20 19:22:35 gateway kernel: libphy: Fixed MDIO Bus: probed
    Sep 20 19:22:35 gateway kernel: ehci_hcd: USB 2.0 'Enhanced' Host Controller (EHCI) Driver
    Sep 20 19:22:35 gateway kernel: ehci-pci: EHCI PCI platform driver
    Sep 20 19:22:35 gateway kernel: ohci_hcd: USB 1.1 'Open' Host Controller (OHCI) Driver
    Sep 20 19:22:35 gateway kernel: ohci-pci: OHCI PCI platform driver
    Sep 20 19:22:35 gateway kernel: ohci-pci 0000:00:06.0: OHCI PCI host controller
    Sep 20 19:22:35 gateway kernel: ohci-pci 0000:00:06.0: new USB bus registered, assigned bus number 1
    Sep 20 19:22:35 gateway kernel: ohci-pci 0000:00:06.0: irq 22, io mem 0xf0804000
    Sep 20 19:22:35 gateway kernel: usb usb1: New USB device found, idVendor=1d6b, idProduct=0001
    Sep 20 19:22:35 gateway kernel: usb usb1: New USB device strings: Mfr=3, Product=2, SerialNumber=1
    Sep 20 19:22:35 gateway kernel: usb usb1: Product: OHCI PCI host controller
    Sep 20 19:22:35 gateway kernel: usb usb1: Manufacturer: Linux 3.10.0-514.26.2.v7.x86_64 ohci_hcd
    Sep 20 19:22:35 gateway kernel: usb usb1: SerialNumber: 0000:00:06.0
    Sep 20 19:22:35 gateway kernel: hub 1-0:1.0: USB hub found
    Sep 20 19:22:35 gateway kernel: hub 1-0:1.0: 12 ports detected
    Sep 20 19:22:35 gateway kernel: uhci_hcd: USB Universal Host Controller Interface driver
    Sep 20 19:22:35 gateway kernel: usbcore: registered new interface driver usbserial
    Sep 20 19:22:35 gateway kernel: usbcore: registered new interface driver usbserial_generic
    Sep 20 19:22:35 gateway kernel: usbserial: USB Serial support registered for generic
    Sep 20 19:22:35 gateway kernel: i8042: PNP: PS/2 Controller [PNP0303:PS2K,PNP0f03:PS2M] at 0x60,0x64 irq 1,12
    Sep 20 19:22:35 gateway kernel: serio: i8042 KBD port at 0x60,0x64 irq 1
    Sep 20 19:22:35 gateway kernel: serio: i8042 AUX port at 0x60,0x64 irq 12
    Sep 20 19:22:35 gateway kernel: mousedev: PS/2 mouse device common for all mice
    Sep 20 19:22:35 gateway kernel: input: AT Translated Set 2 keyboard as /devices/platform/i8042/serio0/input/input2
    Sep 20 19:22:35 gateway kernel: rtc_cmos rtc_cmos: rtc core: registered rtc_cmos as rtc0
    Sep 20 19:22:35 gateway kernel: rtc_cmos rtc_cmos: alarms up to one day, 114 bytes nvram
    Sep 20 19:22:35 gateway kernel: cpuidle: using governor menu
    Sep 20 19:22:35 gateway kernel: hidraw: raw HID events driver (C) Jiri Kosina
    Sep 20 19:22:35 gateway kernel: usbcore: registered new interface driver usbhid
    Sep 20 19:22:35 gateway kernel: usbhid: USB HID core driver
    Sep 20 19:22:35 gateway kernel: drop_monitor: Initializing network drop monitor service
    Sep 20 19:22:35 gateway kernel: TCP: cubic registered
    Sep 20 19:22:35 gateway kernel: Initializing XFRM netlink socket
    Sep 20 19:22:35 gateway kernel: NET: Registered protocol family 10
    Sep 20 19:22:35 gateway kernel: NET: Registered protocol family 17
    Sep 20 19:22:35 gateway kernel: microcode: CPU0 sig=0x106e5, pf=0x4, revision=0x616
    Sep 20 19:22:35 gateway kernel: microcode: Microcode Update Driver: v2.01 <tigran@aivazian.fsnet.co.uk>, Peter Oruba
    Sep 20 19:22:35 gateway kernel: Loading compiled-in X.509 certificates
    Sep 20 19:22:35 gateway kernel: Loaded X.509 cert 'CentOS Linux kpatch signing key: ea0413152cde1d98ebdca3fe6f0230904c9ef717'
    Sep 20 19:22:35 gateway kernel: Loaded X.509 cert 'CentOS Linux Driver update signing key: 7f421ee0ab69461574bb358861dbe77762a4201b'
    Sep 20 19:22:35 gateway kernel: Loaded X.509 cert 'CentOS Linux kernel signing key: 7c374632226bf6bf78aedc7758d14080beb9adfd'
    Sep 20 19:22:35 gateway kernel: registered taskstats version 1
    Sep 20 19:22:35 gateway kernel: Key type trusted registered
    Sep 20 19:22:35 gateway kernel: Key type encrypted registered
    Sep 20 19:22:35 gateway kernel: IMA: No TPM chip found, activating TPM-bypass!
    Sep 20 19:22:35 gateway kernel: rtc_cmos rtc_cmos: setting system clock to 2017-09-21 01:22:35 UTC (1505956955)
    Sep 20 19:22:35 gateway kernel: Freeing unused kernel memory: 1684k freed
    Sep 20 19:22:35 gateway systemd[1]: systemd 219 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ -LZ4 -SECCOMP +BLKID +ELFUTILS +KMOD +IDN)
    Sep 20 19:22:35 gateway systemd[1]: Detected virtualization oracle.
    Sep 20 19:22:35 gateway systemd[1]: Detected architecture x86-64.
    Sep 20 19:22:35 gateway systemd[1]: Running in initial RAM disk.
    Sep 20 19:22:35 gateway systemd[1]: Set hostname to <gateway.t4a.ddns.net>.
    Sep 20 19:22:35 gateway systemd[1]: Reached target Local File Systems.
    Sep 20 19:22:35 gateway systemd[1]: Starting Local File Systems.
    Sep 20 19:22:35 gateway systemd[1]: Created slice Root Slice.
    Sep 20 19:22:35 gateway systemd[1]: Starting Root Slice.
    Sep 20 19:22:35 gateway systemd[1]: Reached target Swap.
    Sep 20 19:22:35 gateway systemd[1]: Starting Swap.
    Sep 20 19:22:35 gateway systemd[1]: Created slice System Slice.
    Sep 20 19:22:35 gateway systemd[1]: Starting System Slice.
    Sep 20 19:22:35 gateway systemd[1]: Reached target Slices.
    Sep 20 19:22:35 gateway systemd[1]: Starting Slices.
    Sep 20 19:22:35 gateway systemd[1]: Listening on Journal Socket.
    Sep 20 19:22:35 gateway systemd[1]: Starting Journal Socket.
    Sep 20 19:22:35 gateway systemd[1]: Starting Journal Service...
    Sep 20 19:22:35 gateway systemd[1]: Starting dracut cmdline hook...
    Sep 20 19:22:35 gateway systemd[1]: Starting Setup Virtual Console...
    Sep 20 19:22:35 gateway systemd[1]: Starting Create list of required static device nodes for the current kernel...
    Sep 20 19:22:35 gateway systemd[1]: Listening on udev Kernel Socket.
    Sep 20 19:22:35 gateway systemd[1]: Starting udev Kernel Socket.
    Sep 20 19:22:35 gateway systemd[1]: Reached target Timers.
    Sep 20 19:22:35 gateway systemd[1]: Starting Timers.
    Sep 20 19:22:35 gateway systemd[1]: Listening on udev Control Socket.
    Sep 20 19:22:35 gateway systemd[1]: Starting udev Control Socket.
    Sep 20 19:22:35 gateway systemd[1]: Reached target Sockets.
    Sep 20 19:22:35 gateway systemd[1]: Starting Sockets.
    Sep 20 19:22:35 gateway systemd[1]: Starting Apply Kernel Variables...
    Sep 20 19:22:35 gateway systemd[1]: Started Create list of required static device nodes for the current kernel.
    Sep 20 19:22:35 gateway systemd[1]: Started Apply Kernel Variables.
    Sep 20 19:22:35 gateway systemd[1]: Starting Create Static Device Nodes in /dev...
    Sep 20 19:22:35 gateway kernel: hrtimer: interrupt took 3718350 ns
    Sep 20 19:22:35 gateway kernel: psmouse serio1: alps: Unknown ALPS touchpad: E7=10 00 64, EC=10 00 64
    Sep 20 19:22:35 gateway systemd[1]: Started Create Static Device Nodes in /dev.
    Sep 20 19:22:35 gateway kernel: input: ImExPS/2 Generic Explorer Mouse as /devices/platform/i8042/serio1/input/input3
    Sep 20 19:22:35 gateway journal: Journal started
    Sep 20 19:22:35 gateway systemd[1]: Started Journal Service.
    Sep 20 19:22:35 gateway systemd: Started Setup Virtual Console.
    Sep 20 19:22:35 gateway systemd: Started dracut cmdline hook.
    Sep 20 19:22:35 gateway systemd: Starting dracut pre-udev hook...
    Sep 20 19:22:36 gateway kernel: device-mapper: uevent: version 1.0.3
    Sep 20 19:22:36 gateway kernel: device-mapper: ioctl: 4.34.0-ioctl (2015-10-28) initialised: dm-devel@redhat.com
    Sep 20 19:22:36 gateway systemd: Started dracut pre-udev hook.
    Sep 20 19:22:36 gateway systemd: Starting udev Kernel Device Manager...
    Sep 20 19:22:36 gateway kernel: usb 1-1: new full-speed USB device number 2 using ohci-pci
    Sep 20 19:22:36 gateway systemd-udevd: starting version 219
    Sep 20 19:22:36 gateway systemd: Started udev Kernel Device Manager.
    Sep 20 19:22:36 gateway systemd: Starting udev Coldplug all Devices...
    Sep 20 19:22:36 gateway systemd: Mounting Configuration File System...
    Sep 20 19:22:36 gateway systemd: Started udev Coldplug all Devices.
    Sep 20 19:22:36 gateway systemd: Starting dracut initqueue hook...
    Sep 20 19:22:36 gateway systemd: Starting Show Plymouth Boot Screen...
    Sep 20 19:22:36 gateway systemd: Mounted Configuration File System.
    Sep 20 19:22:36 gateway systemd: Reached target System Initialization.
    Sep 20 19:22:36 gateway systemd: Starting System Initialization.
    Sep 20 19:22:36 gateway kernel: FUJITSU Extended Socket Network Device Driver - version 1.1 - Copyright (c) 2015 FUJITSU LIMITED
    Sep 20 19:22:36 gateway systemd: Started Show Plymouth Boot Screen.
    Sep 20 19:22:36 gateway systemd: Reached target Paths.
    Sep 20 19:22:36 gateway systemd: Starting Paths.
    Sep 20 19:22:36 gateway systemd: Started Forward Password Requests to Plymouth Directory Watch.
    Sep 20 19:22:36 gateway systemd: Starting Forward Password Requests to Plymouth Directory Watch.
    Sep 20 19:22:36 gateway systemd: Reached target Basic System.
    Sep 20 19:22:36 gateway systemd: Starting Basic System.
    Sep 20 19:22:36 gateway kernel: e1000: Intel(R) PRO/1000 Network Driver - version 7.3.21-k8-NAPI
    Sep 20 19:22:36 gateway kernel: e1000: Copyright (c) 1999-2006 Intel Corporation.
    Sep 20 19:22:36 gateway kernel: usb 1-1: New USB device found, idVendor=80ee, idProduct=0021
    Sep 20 19:22:36 gateway kernel: usb 1-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
    Sep 20 19:22:36 gateway kernel: usb 1-1: Product: USB Tablet
    Sep 20 19:22:36 gateway kernel: usb 1-1: Manufacturer: VirtualBox
    Sep 20 19:22:36 gateway kernel: input: VirtualBox USB Tablet as /devices/pci0000:00/0000:00:06.0/usb1/1-1/1-1:1.0/input/input4
    Sep 20 19:22:36 gateway kernel: hid-generic 0003:80EE:0021.0001: input,hidraw0: USB HID v1.10 Mouse [VirtualBox USB Tablet] on usb-0000:00:06.0-1/input0
    Sep 20 19:22:36 gateway kernel: e1000 0000:00:03.0 eth0: (PCI:33MHz:32-bit) 08:00:27:68:6f:33
    Sep 20 19:22:36 gateway kernel: e1000 0000:00:03.0 eth0: Intel(R) PRO/1000 Network Connection
    Sep 20 19:22:36 gateway kernel: ahci 0000:00:0d.0: SSS flag set, parallel bus scan disabled
    Sep 20 19:22:36 gateway kernel: ahci 0000:00:0d.0: AHCI 0001.0100 32 slots 1 ports 3 Gbps 0x1 impl SATA mode
    Sep 20 19:22:36 gateway kernel: ahci 0000:00:0d.0: flags: 64bit ncq stag only ccc
    Sep 20 19:22:36 gateway kernel: scsi host0: ahci
    Sep 20 19:22:36 gateway kernel: ata1: SATA max UDMA/133 abar m8192@0xf0840000 port 0xf0840100 irq 21
    Sep 20 19:22:36 gateway kernel: scsi host1: ata_piix
    Sep 20 19:22:36 gateway kernel: scsi host2: ata_piix
    Sep 20 19:22:36 gateway kernel: ata2: PATA max UDMA/33 cmd 0x1f0 ctl 0x3f6 bmdma 0xd000 irq 14
    Sep 20 19:22:36 gateway kernel: ata3: PATA max UDMA/33 cmd 0x170 ctl 0x376 bmdma 0xd008 irq 15
    Sep 20 19:22:37 gateway kernel: ata3.00: ATAPI: VBOX CD-ROM, 1.0, max UDMA/133
    Sep 20 19:22:37 gateway kernel: ata3.00: configured for UDMA/33
    Sep 20 19:22:37 gateway kernel: ata1: SATA link up 3.0 Gbps (SStatus 123 SControl 300)
    Sep 20 19:22:37 gateway kernel: ata1.00: ATA-6: VBOX HARDDISK, 1.0, max UDMA/133
    Sep 20 19:22:37 gateway kernel: ata1.00: 167772160 sectors, multi 128: LBA48 NCQ (depth 31/32)
    Sep 20 19:22:37 gateway kernel: ata1.00: configured for UDMA/133
    Sep 20 19:22:37 gateway kernel: scsi 0:0:0:0: Direct-Access ATA VBOX HARDDISK 1.0 PQ: 0 ANSI: 5
    Sep 20 19:22:37 gateway kernel: scsi 2:0:0:0: CD-ROM VBOX CD-ROM 1.0 PQ: 0 ANSI: 5
    Sep 20 19:22:37 gateway kernel: sd 0:0:0:0: [sda] 167772160 512-byte logical blocks: (85.8 GB/80.0 GiB)
    Sep 20 19:22:37 gateway kernel: sd 0:0:0:0: [sda] Write Protect is off
    Sep 20 19:22:37 gateway kernel: sd 0:0:0:0: [sda] Write cache: enabled, read cache: enabled, doesn't support DPO or FUA
    Sep 20 19:22:37 gateway kernel: sda: sda1 sda2
    Sep 20 19:22:37 gateway kernel: sd 0:0:0:0: [sda] Attached SCSI disk
    Sep 20 19:22:37 gateway kernel: e1000 0000:00:08.0 eth1: (PCI:33MHz:32-bit) 08:00:27:3a:8b:50
    Sep 20 19:22:37 gateway kernel: e1000 0000:00:08.0 eth1: Intel(R) PRO/1000 Network Connection
    Sep 20 19:22:37 gateway kernel: sr 2:0:0:0: [sr0] scsi3-mmc drive: 32x/32x xa/form2 tray
    Sep 20 19:22:37 gateway kernel: cdrom: Uniform CD-ROM driver Revision: 3.20
    Sep 20 19:22:37 gateway systemd: Found device /dev/mapper/clearos-root.
    Sep 20 19:22:37 gateway systemd: Starting File System Check on /dev/mapper/clearos-root...
    Sep 20 19:22:37 gateway systemd-fsck: /sbin/fsck.xfs: XFS file system.
    Sep 20 19:22:37 gateway systemd: Started File System Check on /dev/mapper/clearos-root.
    Sep 20 19:22:37 gateway systemd: Started dracut initqueue hook.
    Sep 20 19:22:37 gateway systemd: Mounting /sysroot...
    Sep 20 19:22:37 gateway systemd: Reached target Remote File Systems (Pre).
    Sep 20 19:22:37 gateway systemd: Starting Remote File Systems (Pre).
    Sep 20 19:22:37 gateway systemd: Reached target Remote File Systems.
    Sep 20 19:22:37 gateway systemd: Starting Remote File Systems.
    Sep 20 19:22:37 gateway kernel: SGI XFS with ACLs, security attributes, no debug enabled
    Sep 20 19:22:37 gateway kernel: XFS (dm-0): Mounting V5 Filesystem
    Sep 20 19:22:37 gateway kernel: XFS (dm-0): Ending clean mount
    Sep 20 19:22:37 gateway systemd: Mounted /sysroot.
    Sep 20 19:22:37 gateway systemd: Reached target Initrd Root File System.
    Sep 20 19:22:37 gateway systemd: Starting Initrd Root File System.
    Sep 20 19:22:37 gateway systemd: Starting Reload Configuration from the Real Root...
    Sep 20 19:22:37 gateway systemd: Reloading.
    Sep 20 19:22:38 gateway systemd: Started Reload Configuration from the Real Root.
    Sep 20 19:22:38 gateway systemd: Reached target Initrd File Systems.
    Sep 20 19:22:38 gateway systemd: Starting Initrd File Systems.
    Sep 20 19:22:38 gateway systemd: Reached target Initrd Default Target.
    Sep 20 19:22:38 gateway systemd: Starting Initrd Default Target.
    Sep 20 19:22:38 gateway systemd: Starting dracut pre-pivot and cleanup hook...
    Sep 20 19:22:38 gateway systemd: Started dracut pre-pivot and cleanup hook.
    Sep 20 19:22:38 gateway systemd: Starting Cleaning Up and Shutting Down Daemons...
    Sep 20 19:22:38 gateway systemd: Stopped target Timers.
    Sep 20 19:22:38 gateway systemd: Stopping Timers.
    Sep 20 19:22:38 gateway systemd: Starting Plymouth switch root service...
    Sep 20 19:22:38 gateway systemd: Stopped Cleaning Up and Shutting Down Daemons.
    Sep 20 19:22:38 gateway systemd: Stopped dracut pre-pivot and cleanup hook.
    Sep 20 19:22:38 gateway systemd: Stopping dracut pre-pivot and cleanup hook...
    Sep 20 19:22:38 gateway systemd: Stopped target Remote File Systems.
    Sep 20 19:22:38 gateway systemd: Stopping Remote File Systems.
    Sep 20 19:22:38 gateway systemd: Stopped target Remote File Systems (Pre).
    Sep 20 19:22:38 gateway systemd: Stopping Remote File Systems (Pre).
    Sep 20 19:22:38 gateway systemd: Stopped dracut initqueue hook.
    Sep 20 19:22:38 gateway systemd: Stopping dracut initqueue hook...
    Sep 20 19:22:38 gateway systemd: Stopped target Initrd Default Target.
    Sep 20 19:22:38 gateway systemd: Stopping Initrd Default Target.
    Sep 20 19:22:38 gateway systemd: Stopped target Basic System.
    Sep 20 19:22:38 gateway systemd: Stopping Basic System.
    Sep 20 19:22:38 gateway systemd: Stopped target System Initialization.
    Sep 20 19:22:38 gateway systemd: Stopping System Initialization.
    Sep 20 19:22:38 gateway systemd: Stopped target Local File Systems.
    Sep 20 19:22:38 gateway systemd: Stopping Local File Systems.
    Sep 20 19:22:38 gateway systemd: Stopped target Swap.
    Sep 20 19:22:38 gateway systemd: Stopping Swap.
    Sep 20 19:22:38 gateway systemd: Stopped udev Coldplug all Devices.
    Sep 20 19:22:38 gateway systemd: Stopping udev Coldplug all Devices...
    Sep 20 19:22:38 gateway systemd: Stopped Apply Kernel Variables.
    Sep 20 19:22:38 gateway systemd: Stopping Apply Kernel Variables...
    Sep 20 19:22:38 gateway systemd: Stopping udev Kernel Device Manager...
    Sep 20 19:22:38 gateway systemd: Stopped target Sockets.
    Sep 20 19:22:38 gateway systemd: Stopping Sockets.
    Sep 20 19:22:38 gateway systemd: Stopped target Slices.
    Sep 20 19:22:38 gateway systemd: Stopping Slices.
    Sep 20 19:22:38 gateway systemd: Stopped target Paths.
    Sep 20 19:22:38 gateway systemd: Stopping Paths.
    Sep 20 19:22:38 gateway systemd: Stopped udev Kernel Device Manager.
    Sep 20 19:22:38 gateway systemd: Stopped dracut pre-udev hook.
    Sep 20 19:22:38 gateway systemd: Stopping dracut pre-udev hook...
    Sep 20 19:22:38 gateway systemd: Stopped dracut cmdline hook.
    Sep 20 19:22:38 gateway systemd: Stopping dracut cmdline hook...
    Sep 20 19:22:38 gateway systemd: Stopped Create Static Device Nodes in /dev.
    Sep 20 19:22:38 gateway systemd: Stopping Create Static Device Nodes in /dev...
    Sep 20 19:22:38 gateway systemd: Stopped Create list of required static device nodes for the current kernel.
    Sep 20 19:22:38 gateway systemd: Stopping Create list of required static device nodes for the current kernel...
    Sep 20 19:22:38 gateway systemd: Closed udev Control Socket.
    Sep 20 19:22:38 gateway systemd: Stopping udev Control Socket.
    Sep 20 19:22:38 gateway systemd: Closed udev Kernel Socket.
    Sep 20 19:22:38 gateway systemd: Stopping udev Kernel Socket.
    Sep 20 19:22:38 gateway systemd: Starting Cleanup udevd DB...
    Sep 20 19:22:38 gateway systemd: Started Plymouth switch root service.
    Sep 20 19:22:38 gateway systemd: Started Cleanup udevd DB.
    Sep 20 19:22:38 gateway systemd: Reached target Switch Root.
    Sep 20 19:22:38 gateway systemd: Starting Switch Root.
    Sep 20 19:22:38 gateway systemd: Starting Switch Root...
    Sep 20 19:22:38 gateway systemd: Switching root.
    Sep 20 19:22:38 gateway journal: Journal stopped
    Sep 20 19:22:39 gateway journal: Runtime journal is using 8.0M (max allowed 100.0M, trying to leave 150.0M free of 992.4M available → current limit 100.0M).
    Sep 20 19:22:39 gateway journal: Runtime journal is using 8.0M (max allowed 100.0M, trying to leave 150.0M free of 992.4M available → current limit 100.0M).
    Sep 20 19:22:39 gateway systemd-journald[87]: Received SIGTERM from PID 1 (systemd).
    Sep 20 19:22:39 gateway kernel: Switched to clocksource tsc
    Sep 20 19:22:39 gateway kernel: SELinux: Disabled at runtime.
    Sep 20 19:22:39 gateway kernel: type=1404 audit(1505956958.600:2): selinux=0 auid=4294967295 ses=4294967295
    Sep 20 19:22:39 gateway kernel: ip_tables: (C) 2000-2006 Netfilter Core Team
    Sep 20 19:22:39 gateway systemd[1]: Inserted module 'ip_tables'
    Sep 20 19:22:39 gateway journal: Journal started
    Sep 20 19:22:39 gateway systemd: systemd 219 running in system mode. (+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ -LZ4 -SECCOMP +BLKID +ELFUTILS +KMOD +IDN)
    Sep 20 19:22:39 gateway systemd: Detected virtualization oracle.
    Sep 20 19:22:39 gateway systemd: Detected architecture x86-64.
    Sep 20 19:22:39 gateway systemd: Set hostname to <gateway.t4a.ddns.net>.
    Sep 20 19:22:39 gateway systemd: Mounted Debug File System.
    Sep 20 19:22:39 gateway systemd: Mounted POSIX Message Queue File System.
    Sep 20 19:22:39 gateway systemd: Mounted Huge Pages File System.
    Sep 20 19:22:39 gateway systemd: Started Remount Root and Kernel File Systems.
    Sep 20 19:22:39 gateway systemd: Starting Load/Save Random Seed...
    Sep 20 19:22:39 gateway systemd: Starting Configure read-only root support...
    Sep 20 19:22:40 gateway systemd: Starting udev Coldplug all Devices...
    Sep 20 19:22:40 gateway systemd: Starting Flush Journal to Persistent Storage...
    Sep 20 19:22:40 gateway systemd: Started LVM2 metadata daemon.
    Sep 20 19:22:40 gateway systemd: Starting LVM2 metadata daemon...
    Sep 20 19:22:40 gateway systemd: Started Apply Kernel Variables.
    Sep 20 19:22:40 gateway systemd: Started Load/Save Random Seed.
    Sep 20 19:22:40 gateway systemd: Started udev Coldplug all Devices.
    Sep 20 19:22:40 gateway journal: Runtime journal is using 8.0M (max allowed 100.0M, trying to leave 150.0M free of 992.4M available → current limit 100.0M).
    Sep 20 19:22:40 gateway systemd: Started Flush Journal to Persistent Storage.
    Sep 20 19:22:40 gateway systemd: Starting udev Wait for Complete Device Initialization...
    Sep 20 19:22:40 gateway systemd: Started Configure read-only root support.
    Sep 20 19:22:40 gateway systemd: Started Create Static Device Nodes in /dev.
    Sep 20 19:22:40 gateway systemd: Starting udev Kernel Device Manager...
    Sep 20 19:22:40 gateway systemd-udevd: starting version 219
    Sep 20 19:22:40 gateway systemd: Started udev Kernel Device Manager.
    Sep 20 19:22:40 gateway kernel: piix4_smbus 0000:00:07.0: SMBus Host Controller at 0x4100, revision 0
    Sep 20 19:22:40 gateway kernel: ACPI: Video Device [GFX0] (multi-head: yes rom: no post: no)
    Sep 20 19:22:40 gateway kernel: input: Video Bus as /devices/LNXSYSTM:00/device:00/PNP0A03:00/LNXVIDEO:00/input/input5
    Sep 20 19:22:41 gateway systemd: Received SIGRTMIN+20 from PID 262 (plymouthd).
    Sep 20 19:22:41 gateway kernel: sd 0:0:0:0: Attached scsi generic sg0 type 0
    Sep 20 19:22:41 gateway kernel: sr 2:0:0:0: Attached scsi generic sg1 type 5
    Sep 20 19:22:41 gateway kernel: input: PC Speaker as /devices/platform/pcspkr/input/input6
    Sep 20 19:22:41 gateway kernel: ppdev: user-space parallel port driver
    Sep 20 19:22:41 gateway systemd: Found device VBOX_HARDDISK 1.
    Sep 20 19:22:41 gateway systemd: Created slice system-lvm2\x2dpvscan.slice.
    Sep 20 19:22:41 gateway systemd: Starting system-lvm2\x2dpvscan.slice.
    Sep 20 19:22:41 gateway systemd: Starting LVM2 PV scan on device 8:2...
    Sep 20 19:22:41 gateway lvm: WARNING: lvmetad is being updated, retrying (setup) for 10 more seconds.
    Sep 20 19:22:41 gateway systemd: Found device /dev/mapper/clearos-swap.
    Sep 20 19:22:41 gateway systemd: Activating swap /dev/mapper/clearos-swap...
    Sep 20 19:22:41 gateway kernel: Adding 1572860k swap on /dev/mapper/clearos-swap. Priority:-1 extents:1 across:1572860k FS
    Sep 20 19:22:41 gateway systemd: Activated swap /dev/mapper/clearos-swap.
    Sep 20 19:22:41 gateway lvm: 2 logical volume(s) in volume group "clearos" monitored
    Sep 20 19:22:41 gateway systemd: Reached target Swap.
    Sep 20 19:22:41 gateway systemd: Starting Swap.
    Sep 20 19:22:41 gateway systemd: Started Monitoring of LVM2 mirrors, snapshots etc. using dmeventd or progress polling.
    Sep 20 19:22:41 gateway systemd: Reached target Local File Systems (Pre).
    Sep 20 19:22:41 gateway systemd: Starting Local File Systems (Pre).
    Sep 20 19:22:41 gateway systemd: Mounting /boot...
    Sep 20 19:22:41 gateway kernel: XFS (sda1): Mounting V5 Filesystem
    Sep 20 19:22:41 gateway kernel: XFS (sda1): Ending clean mount
    Sep 20 19:22:41 gateway systemd: Mounted /boot.
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: intel8x0_measure_ac97_clock: measured 55635 usecs (11521 samples)
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: measured clock 207081 rejected
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: intel8x0_measure_ac97_clock: measured 50288 usecs (11522 samples)
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: measured clock 229120 rejected
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: intel8x0_measure_ac97_clock: measured 50184 usecs (11522 samples)
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: measured clock 229595 rejected
    Sep 20 19:22:42 gateway kernel: snd_intel8x0 0000:00:05.0: clocking to 48000
    Sep 20 19:22:42 gateway systemd: Reached target Sound Card.
    Sep 20 19:22:42 gateway systemd: Starting Sound Card.
    Sep 20 19:22:43 gateway lvm: 2 logical volume(s) in volume group "clearos" now active
    Sep 20 19:22:43 gateway systemd: Started LVM2 PV scan on device 8:2.
    Sep 20 19:22:44 gateway kernel: floppy0: no floppy controllers found
    Sep 20 19:22:44 gateway kernel: work still pending
    Sep 20 19:22:44 gateway systemd: Started udev Wait for Complete Device Initialization.
    Sep 20 19:22:44 gateway systemd: Starting Activation of DM RAID sets...
    Sep 20 19:22:44 gateway systemd: Started Activation of DM RAID sets.
    Sep 20 19:22:44 gateway systemd: Reached target Encrypted Volumes.
    Sep 20 19:22:44 gateway systemd: Starting Encrypted Volumes.
    Sep 20 19:22:44 gateway systemd: Reached target Local File Systems.
    Sep 20 19:22:44 gateway systemd: Starting Local File Systems.
    Sep 20 19:22:44 gateway systemd: Starting Import network configuration from initramfs...
    Sep 20 19:22:44 gateway systemd: Starting Tell Plymouth To Write Out Runtime Data...
    Sep 20 19:22:44 gateway systemd: Started Tell Plymouth To Write Out Runtime Data.
    Sep 20 19:22:44 gateway systemd: Started Import network configuration from initramfs.
    Sep 20 19:22:44 gateway systemd: Starting Create Volatile Files and Directories...
    Sep 20 19:22:44 gateway systemd: Started Create Volatile Files and Directories.
    Sep 20 19:22:44 gateway systemd: Starting Security Auditing Service...
    Sep 20 19:22:44 gateway auditd[549]: Started dispatcher: /sbin/audispd pid: 558
    Sep 20 19:22:44 gateway kernel: type=1305 audit(1505956964.611:3): audit_pid=549 old=0 auid=4294967295 ses=4294967295 res=1
    Sep 20 19:22:44 gateway audispd: No plugins found, exiting
    Sep 20 19:22:44 gateway auditd[549]: Init complete, auditd 2.6.5 listening for events (startup state enable)
    Sep 20 19:22:44 gateway augenrules: /sbin/augenrules: No change
    Sep 20 19:22:44 gateway systemd: Started Security Auditing Service.
    Sep 20 19:22:44 gateway systemd: Starting Update UTMP about System Boot/Shutdown...
    Sep 20 19:22:44 gateway systemd: Started Update UTMP about System Boot/Shutdown.
    Sep 20 19:22:44 gateway systemd: Reached target System Initialization.
    Sep 20 19:22:44 gateway systemd: Starting System Initialization.
    Sep 20 19:22:44 gateway systemd: Started Daily Cleanup of Temporary Directories.
    Sep 20 19:22:44 gateway systemd: Starting Daily Cleanup of Temporary Directories.
    Sep 20 19:22:44 gateway systemd: Reached target Timers.
    Sep 20 19:22:44 gateway systemd: Starting Timers.
    Sep 20 19:22:44 gateway systemd: Started Flexible branding.
    Sep 20 19:22:44 gateway systemd: Starting Flexible branding.
    Sep 20 19:22:44 gateway systemd: Reached target Paths.
    Sep 20 19:22:44 gateway systemd: Starting Paths.
    Sep 20 19:22:44 gateway systemd: Listening on D-Bus System Message Bus Socket.
    Sep 20 19:22:44 gateway systemd: Starting D-Bus System Message Bus Socket.
    Sep 20 19:22:44 gateway systemd: Reached target Sockets.
    Sep 20 19:22:44 gateway systemd: Starting Sockets.
    Sep 20 19:22:44 gateway systemd: Reached target Basic System.
    Sep 20 19:22:44 gateway systemd: Starting Basic System.
    Sep 20 19:22:44 gateway systemd: Starting Dump dmesg to /var/log/dmesg...
    Sep 20 19:22:44 gateway systemd: Starting ACPI Event Daemon...
    Sep 20 19:22:44 gateway systemd: Started irqbalance daemon.
    Sep 20 19:22:44 gateway systemd: Starting irqbalance daemon...
    Sep 20 19:22:44 gateway systemd: Starting System Logging Service...
    Sep 20 19:22:44 gateway systemd: Starting Resets System Activity Logs...
    Sep 20 19:22:44 gateway systemd: Starting Dynamic System Tuning Daemon...
    Sep 20 19:22:44 gateway systemd: Starting Permit User Sessions...
    Sep 20 19:22:44 gateway systemd: Starting System synchronization daemon...
    Sep 20 19:22:44 gateway systemd: Starting Squid caching proxy...
    Sep 20 19:22:44 gateway acpid: starting up with netlink and the input layer
    Sep 20 19:22:44 gateway systemd: Starting SASL authentication daemon....
    Sep 20 19:22:44 gateway systemd: Starting Login Service...
    Sep 20 19:22:44 gateway systemd: Starting Cloud Services Daemon...
    Sep 20 19:22:44 gateway systemd: Started D-Bus System Message Bus.
    Sep 20 19:22:44 gateway acpid: skipping incomplete file /etc/acpi/events/videoconf
    Sep 20 19:22:44 gateway acpid: 1 rule loaded
    Sep 20 19:22:44 gateway acpid: waiting for events: event logging is off
    Sep 20 19:22:45 gateway /usr/sbin/irqbalance: Balancing is ineffective on systems with a single cpu. Shutting down
    Sep 20 19:22:45 gateway systemd: Starting D-Bus System Message Bus...
    Sep 20 19:22:45 gateway systemd: Starting OpenSSH server daemon...
    Sep 20 19:22:45 gateway systemd: Starting LSB: Bring up/down networking...
    Sep 20 19:22:45 gateway systemd: Starting Authorization Manager...
    Sep 20 19:22:45 gateway systemd: Started DNS caching server..
    Sep 20 19:22:45 gateway systemd: Starting DNS caching server....
    Sep 20 19:22:45 gateway svClient[583]: svClient: Error creating socket: bind
    Sep 20 19:22:45 gateway systemd: Started PoPToP Point to Point Tunneling Server.
    Sep 20 19:22:45 gateway systemd: Starting PoPToP Point to Point Tunneling Server...
    Sep 20 19:22:45 gateway systemd: Starting Postfix Mail Transport Agent...
    Sep 20 19:22:45 gateway systemd: Starting NTP client/server...
    Sep 20 19:22:45 gateway systemd: Started Dump dmesg to /var/log/dmesg.
    Sep 20 19:22:45 gateway systemd: Started ACPI Event Daemon.
    Sep 20 19:22:45 gateway systemd: Started Resets System Activity Logs.
    Sep 20 19:22:45 gateway systemd: Started Permit User Sessions.
    Sep 20 19:22:45 gateway pptpd[600]: MGR: Maximum of 100 connections reduced to 10, not enough IP addresses given
    Sep 20 19:22:45 gateway systemd: Started System synchronization daemon.
    Sep 20 19:22:45 gateway systemd: Started Cloud Services Daemon.
    Sep 20 19:22:45 gateway pptpd[600]: MGR: Manager process started
    Sep 20 19:22:45 gateway pptpd[600]: MGR: Maximum of 10 connections available
    Sep 20 19:22:45 gateway systemd-logind: Watching system buttons on /dev/input/event0 (Power Button)
    Sep 20 19:22:45 gateway systemd-logind: Watching system buttons on /dev/input/event1 (Sleep Button)
    Sep 20 19:22:45 gateway systemd-logind: Watching system buttons on /dev/input/event5 (Video Bus)
    Sep 20 19:22:45 gateway systemd-logind: New seat seat0.
    Sep 20 19:22:45 gateway systemd: Started Login Service.
    Sep 20 19:22:45 gateway systemd: Starting System MariaDB database server...
    Sep 20 19:22:45 gateway systemd: Starting Terminate Plymouth Boot Screen...
    Sep 20 19:22:45 gateway systemd: Starting Wait for Plymouth Boot Screen to Quit...
    Sep 20 19:22:46 gateway systemd: Started Command Scheduler.
    Sep 20 19:22:46 gateway systemd: Starting Command Scheduler...
    Sep 20 19:22:46 gateway systemd: Started System Logging Service.
    Sep 20 19:22:46 gateway systemd: Received SIGRTMIN+21 from PID 262 (plymouthd).
    Sep 20 19:22:46 gateway polkitd[598]: Started polkitd version 0.112
    Sep 20 19:22:46 gateway systemd: Started Terminate Plymouth Boot Screen.
    Sep 20 19:22:46 gateway systemd: Started Wait for Plymouth Boot Screen to Quit.
    Sep 20 19:22:46 gateway systemd: Started Getty on tty1.
    Sep 20 19:22:46 gateway systemd: Starting Getty on tty1...
    Sep 20 19:22:46 gateway systemd: Reached target Login Prompts.
    Sep 20 19:22:46 gateway systemd: Starting Login Prompts.
    Sep 20 19:22:46 gateway chronyd[629]: chronyd version 2.1.1 starting (+CMDMON +NTP +REFCLOCK +RTC +PRIVDROP +DEBUG +ASYNCDNS +IPV6 +SECHASH)
    Sep 20 19:22:46 gateway systemd: Started Authorization Manager.
    Sep 20 19:22:47 gateway clearsyncd[595]: Network Proxy Watch: Started
    Sep 20 19:22:47 gateway clearsyncd[595]: ClearSync initialized.
    Sep 20 19:22:47 gateway squid[662]: Squid Parent: will start 1 kids
    Sep 20 19:22:47 gateway squid[662]: Squid Parent: (squid-1) process 664 started
    Sep 20 19:22:47 gateway systemd: Started Squid caching proxy.
    Sep 20 19:22:47 gateway dnsmasq[599]: started, version 2.72 cachesize 5000
    Sep 20 19:22:47 gateway dnsmasq[599]: compile time options: IPv6 GNU-getopt DBus no-i18n IDN DHCP DHCPv6 no-Lua TFTP no-conntrack ipset auth DNSSEC loop-detect
    Sep 20 19:22:47 gateway dnsmasq[599]: reading /etc/resolv-peerdns.conf
    Sep 20 19:22:47 gateway dnsmasq[599]: using nameserver 10.1.10.1#53
    Sep 20 19:22:47 gateway dnsmasq[599]: read /etc/hosts - 2 addresses
    Sep 20 19:22:47 gateway saslauthd[673]: detach_tty : master pid is: 673
    Sep 20 19:22:47 gateway saslauthd[673]: ipc_init : listening on socket: /run/saslauthd/mux
    Sep 20 19:22:47 gateway systemd: Started SASL authentication daemon..
    Sep 20 19:22:47 gateway systemd: Started OpenSSH server daemon.
    Sep 20 19:22:48 gateway chronyd[629]: Frequency -228.163 +/- 0.055 ppm read from /var/lib/chrony/drift
    Sep 20 19:22:48 gateway systemd: Started NTP client/server.
    Sep 20 19:22:48 gateway systemd: Created slice user-0.slice.
    Sep 20 19:22:48 gateway systemd: Starting user-0.slice.
    Sep 20 19:22:48 gateway systemd: Started Session 2 of user root.
    Sep 20 19:22:48 gateway systemd: Starting Session 2 of user root.
    Sep 20 19:22:48 gateway systemd: Started Session 1 of user root.
    Sep 20 19:22:48 gateway systemd: Starting Session 1 of user root.
    Sep 20 19:22:49 gateway mysqld_safe: 170920 19:22:49 mysqld_safe Logging to '/var/log/system-mariadb/mariadb.log'.
    Sep 20 19:22:49 gateway mysqld_safe: 170920 19:22:49 mysqld_safe Starting mysqld daemon with databases from /var/lib/system-mysql
    Sep 20 19:22:49 gateway systemd: Started Dynamic System Tuning Daemon.
    Sep 20 19:22:49 gateway network: Bringing up loopback interface: [ OK ]
    Sep 20 19:22:50 gateway kernel: IPv6: ADDRCONF(NETDEV_UP): enp0s3: link is not ready
    Sep 20 19:22:50 gateway kernel: e1000: enp0s3 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
    Sep 20 19:22:50 gateway kernel: IPv6: ADDRCONF(NETDEV_CHANGE): enp0s3: link becomes ready
    Sep 20 19:22:50 gateway systemd: Started Postfix Mail Transport Agent.
    Sep 20 19:22:51 gateway systemd: Created slice user-992.slice.
    Sep 20 19:22:51 gateway systemd: Starting user-992.slice.
    Sep 20 19:22:51 gateway systemd: Started Session 3 of user clearconsole.
    Sep 20 19:22:51 gateway systemd-logind: New session 3 of user clearconsole.
    Sep 20 19:22:51 gateway systemd: Starting Session 3 of user clearconsole.
    Sep 20 19:22:54 gateway systemd: Started System MariaDB database server.
    Sep 20 19:22:55 gateway network: Bringing up interface enp0s3: [ OK ]
    Sep 20 19:22:55 gateway kernel: IPv6: ADDRCONF(NETDEV_UP): enp0s8: link is not ready
    Sep 20 19:22:55 gateway kernel: e1000: enp0s8 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: RX
    Sep 20 19:22:55 gateway kernel: IPv6: ADDRCONF(NETDEV_CHANGE): enp0s8: link becomes ready
    Sep 20 19:23:00 gateway network: Bringing up interface enp0s8: [ OK ]
    Sep 20 19:23:00 gateway systemd: Started LSB: Bring up/down networking.
    Sep 20 19:23:00 gateway systemd: Starting The Webconfig Apache HTTP Server...
    Sep 20 19:23:00 gateway systemd: Reached target Network is Online.
    Sep 20 19:23:00 gateway systemd: Starting Network is Online.
    Sep 20 19:23:00 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 20 19:23:00 gateway systemd: Starting Internet Key Exchange (IKE) Protocol Daemon for IPsec...
    Sep 20 19:23:00 gateway systemd: Starting LSB: Provides storage mapping...
    Sep 20 19:23:00 gateway systemd: Starting Arpwatch ethernet/IP address tracking on enp0s8...
    Sep 20 19:23:00 gateway kernel: device enp0s8 entered promiscuous mode
    Sep 20 19:23:00 gateway systemd: Started Arpwatch ethernet/IP address tracking on enp0s8.
    Sep 20 19:23:00 gateway arpwatch: listening on enp0s8
    Sep 20 19:23:01 gateway kernel: nf_conntrack version 0.5.0 (16384 buckets, 65536 max)
    Sep 20 19:23:01 gateway systemd: Started The Webconfig Apache HTTP Server.
    Sep 20 19:23:02 gateway kernel: PPP generic driver version 2.4.2
    Sep 20 19:23:02 gateway kernel: sha512_ssse3: Using SSSE3 optimized SHA-512 implementation
    Sep 20 19:23:02 gateway kernel: PPP MPPE Compression module registered
    Sep 20 19:23:02 gateway storage: Starting storage: [ OK ]
    Sep 20 19:23:02 gateway systemd: Started LSB: Provides storage mapping.
    Sep 20 19:23:02 gateway systemd: Starting SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 20 19:23:02 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 20 19:23:02 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX or AES-NI instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX or AES-NI instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX or AES-NI instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX or AES-NI instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: PCLMULQDQ-NI instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:03 gateway snortsam: Starting snortsam: [ OK ]
    Sep 20 19:23:03 gateway systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Sep 20 19:23:03 gateway systemd: Starting SYSV: This daemon keeps an eye on your Internet connection and other critical systems....
    Sep 20 19:23:03 gateway systemd: Starting SYSV: Snort Network Intrusion Detection System...
    Sep 20 19:23:03 gateway systemd: Starting SYSV: Provides a way to trigger a post-boot event....
    Sep 20 19:23:03 gateway syswatch: /etc/rc.d/init.d/syswatch: line 18: [: =: unary operator expected
    Sep 20 19:23:03 gateway kernel: AVX instructions are not detected.
    Sep 20 19:23:04 gateway clearsyncd[595]: System Events: Socket hang-up: 29
    Sep 20 19:23:04 gateway kernel: ip6_tables: (C) 2000-2006 Netfilter Core Team
    Sep 20 19:23:04 gateway kernel: Bluetooth: Core ver 2.21
    Sep 20 19:23:04 gateway kernel: NET: Registered protocol family 31
    Sep 20 19:23:04 gateway kernel: Bluetooth: HCI device and connection manager initialized
    Sep 20 19:23:04 gateway kernel: Bluetooth: HCI socket layer initialized
    Sep 20 19:23:04 gateway kernel: Bluetooth: L2CAP socket layer initialized
    Sep 20 19:23:04 gateway kernel: Bluetooth: SCO socket layer initialized
    Sep 20 19:23:04 gateway syswatch: Starting syswatch: [ OK ]
    Sep 20 19:23:04 gateway systemd: Started SYSV: This daemon keeps an eye on your Internet connection and other critical systems..
    Sep 20 19:23:04 gateway zbootevent: Starting bootevent: [ OK ]
    Sep 20 19:23:04 gateway systemd: Started SYSV: Provides a way to trigger a post-boot event..
    Sep 20 19:23:04 gateway kernel: NET: Registered protocol family 15
    Sep 20 19:23:04 gateway kernel: IPv4 over IPsec tunneling driver
    Sep 20 19:23:05 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 20 19:23:05 gateway ipsec: nflog ipsec capture disabled
    Sep 20 19:23:05 gateway systemd: Started Internet Key Exchange (IKE) Protocol Daemon for IPsec.
    Sep 20 19:23:05 gateway clearsyncd[595]: System Events: Socket hang-up: 29
    Sep 20 19:23:05 gateway kernel: alg: No test for fips(ansi_cprng) (fips_ansi_cprng)
    Sep 20 19:23:06 gateway clearsyncd[595]: System Events: Socket hang-up: 29
    Sep 20 19:23:06 gateway systemd: Started ClearOS Firewall Engine.
    Sep 20 19:23:07 gateway systemd: Stopping SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 20 19:23:07 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 20 19:23:07 gateway kernel: device enp0s3 entered promiscuous mode
    Sep 20 19:23:07 gateway systemd: Started SYSV: Snort Network Intrusion Detection System.
    Sep 20 19:23:08 gateway snortsam: Stopping snortsam: [ OK ]
    Sep 20 19:23:08 gateway systemd: Starting SYSV: SnortSAM dynamic firewall plug-in for Snort...
    Sep 20 19:23:08 gateway snortsam: /etc/rc.d/init.d/snortsam: line 15: [: =: unary operator expected
    Sep 20 19:23:08 gateway snortsam: Starting snortsam: [ OK ]
    Sep 20 19:23:08 gateway systemd: Started SYSV: SnortSAM dynamic firewall plug-in for Snort.
    Sep 20 19:23:08 gateway systemd: Reached target Multi-User System.
    Sep 20 19:23:08 gateway systemd: Starting Multi-User System.
    Sep 20 19:23:08 gateway systemd: Starting Update UTMP about System Runlevel Changes...
    Sep 20 19:23:08 gateway systemd: Started Update UTMP about System Runlevel Changes.
    Sep 20 19:23:08 gateway systemd: Startup finished in 807ms (kernel) + 3.060s (initrd) + 29.976s (userspace) = 33.843s.
    Sep 20 19:23:22 gateway chronyd[629]: Selected source 23.92.29.245
    Sep 20 19:23:48 gateway systemd: Started Session 4 of user root.
    Sep 20 19:23:48 gateway systemd-logind: New session 4 of user root.
    Sep 20 19:23:48 gateway systemd: Starting Session 4 of user root.
    Sep 20 19:24:27 gateway chronyd[629]: Selected source 199.223.248.101
    Sep 20 19:25:01 gateway systemd: Started Session 6 of user root.
    Sep 20 19:25:01 gateway systemd: Starting Session 6 of user root.
    Sep 20 19:25:01 gateway systemd: Started Session 8 of user root.
    Sep 20 19:25:01 gateway systemd: Starting Session 8 of user root.
    Sep 20 19:25:01 gateway systemd: Started Session 7 of user root.
    Sep 20 19:25:01 gateway systemd: Starting Session 7 of user root.
    Sep 20 19:25:01 gateway systemd: Started Session 5 of user root.
    Sep 20 19:25:01 gateway systemd: Starting Session 5 of user root.
    Sep 20 19:27:42 gateway chronyd[629]: Selected source 23.92.29.245
    Sep 20 19:30:01 gateway systemd: Started Session 10 of user root.
    Sep 20 19:30:01 gateway systemd: Starting Session 10 of user root.
    Sep 20 19:30:01 gateway systemd: Started Session 11 of user root.
    Sep 20 19:30:01 gateway systemd: Starting Session 11 of user root.
    Sep 20 19:30:01 gateway systemd: Started Session 12 of user root.
    Sep 20 19:30:01 gateway systemd: Starting Session 12 of user root.
    Sep 20 19:30:01 gateway systemd: Started Session 13 of user root.
    Sep 20 19:30:01 gateway systemd: Starting Session 13 of user root.
    Sep 20 19:30:01 gateway systemd: Started Session 9 of user root.
    Sep 20 19:30:01 gateway systemd: Starting Session 9 of user root.
    Sep 20 19:35:01 gateway systemd: Started Session 15 of user root.
    Sep 20 19:35:01 gateway systemd: Starting Session 15 of user root.
    Sep 20 19:35:01 gateway systemd: Started Session 17 of user root.
    Sep 20 19:35:01 gateway systemd: Starting Session 17 of user root.
    Sep 20 19:35:01 gateway systemd: Started Session 16 of user root.
    Sep 20 19:35:01 gateway systemd: Starting Session 16 of user root.
    Sep 20 19:35:01 gateway systemd: Started Session 14 of user root.
    Sep 20 19:35:01 gateway systemd: Starting Session 14 of user root.
    Sep 20 19:37:41 gateway systemd: Starting Cleanup of Temporary Directories...
    Sep 20 19:37:41 gateway systemd: Started Cleanup of Temporary Directories.
    Sep 20 19:39:33 gateway chronyd[629]: Selected source 199.223.248.101
    Sep 20 19:40:01 gateway systemd: Started Session 20 of user root.
    Sep 20 19:40:01 gateway systemd: Starting Session 20 of user root.
    Sep 20 19:40:01 gateway systemd: Started Session 21 of user root.
    Sep 20 19:40:01 gateway systemd: Starting Session 21 of user root.
    Sep 20 19:40:01 gateway systemd: Started Session 22 of user root.
    Sep 20 19:40:01 gateway systemd: Starting Session 22 of user root.
    Sep 20 19:40:01 gateway systemd: Started Session 19 of user root.
    Sep 20 19:40:01 gateway systemd: Starting Session 19 of user root.
    Sep 20 19:40:01 gateway systemd: Started Session 18 of user root.
    Sep 20 19:40:01 gateway systemd: Starting Session 18 of user root.
    Sep 20 19:41:01 gateway systemd: Started Session 23 of user root.
    Sep 20 19:41:01 gateway systemd: Starting Session 23 of user root.
    [root@gateway ~]#


    /var/log

    Sep 20 19:23:01 gateway firewall: Starting firewall...
    Sep 20 19:23:01 gateway firewall: Loading environment
    Sep 20 19:23:01 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 20 19:23:01 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 20 19:23:01 gateway firewall: Setting kernel parameters
    Sep 20 19:23:01 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 19:23:01 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 19:23:01 gateway firewall: Using gateway mode
    Sep 20 19:23:01 gateway firewall: Loading kernel modules
    Sep 20 19:23:02 gateway firewall: Loading kernel modules for NAT
    Sep 20 19:23:03 gateway firewall: Setting default policy to DROP
    Sep 20 19:23:03 gateway firewall: Defining custom chains
    Sep 20 19:23:03 gateway firewall: Running blocked external rules
    Sep 20 19:23:03 gateway firewall: Running custom rules
    Sep 20 19:23:03 gateway firewall: Running common rules
    Sep 20 19:23:03 gateway firewall: Running incoming denied rules
    Sep 20 19:23:03 gateway firewall: Running user-defined incoming rules
    Sep 20 19:23:03 gateway firewall: Allowing incoming tcp port/range 22
    Sep 20 19:23:03 gateway firewall: Allowing incoming tcp port/range 81
    Sep 20 19:23:03 gateway firewall: Running default incoming allowed rules
    Sep 20 19:23:03 gateway firewall: Running user-defined port forward rules
    Sep 20 19:23:03 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 20 19:23:03 gateway firewall: Running 1-to-1 NAT rules
    Sep 20 19:23:03 gateway firewall: Running user-defined proxy rules
    Sep 20 19:23:03 gateway firewall: Content filter is offline
    Sep 20 19:23:03 gateway firewall: Web proxy is online
    Sep 20 19:23:03 gateway firewall: Enabled proxy transparent mode
    Sep 20 19:23:03 gateway firewall: Running multipath
    Sep 20 19:23:03 gateway firewall: Running Masquerading
    Sep 20 19:23:03 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 20 19:23:03 gateway firewall: Running user-defined outgoing block rules
    Sep 20 19:23:03 gateway firewall: Running default forwarding rules
    Sep 20 19:23:03 gateway firewall: Execution time: 1.853s
    Sep 20 19:23:04 gateway firewall: Running post-firewall: 120730
    Sep 20 19:23:04 gateway events: onboot - event occurred
    Sep 20 19:23:04 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 20 19:23:04 gateway events: onboot - triggered hook: language
    Sep 20 19:23:04 gateway firewall6: Starting firewall...
    Sep 20 19:23:04 gateway firewall6: Loading environment
    Sep 20 19:23:04 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 20 19:23:04 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 20 19:23:04 gateway firewall6: Setting kernel parameters
    Sep 20 19:23:04 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 19:23:04 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 19:23:04 gateway firewall6: Using gateway mode
    Sep 20 19:23:04 gateway firewall6: Loading kernel modules
    Sep 20 19:23:04 gateway events: onboot - triggered hook: suva
    Sep 20 19:23:04 gateway firewall6: Loading kernel modules for NAT
    Sep 20 19:23:04 gateway firewall6: Setting default policy to DROP
    Sep 20 19:23:04 gateway firewall6: Defining custom chains
    Sep 20 19:23:04 gateway firewall6: Running blocked external rules
    Sep 20 19:23:04 gateway firewall6: Running custom rules
    Sep 20 19:23:04 gateway firewall6: Running common rules
    Sep 20 19:23:05 gateway firewall: Starting firewall...
    Sep 20 19:23:05 gateway firewall: Loading environment
    Sep 20 19:23:05 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 20 19:23:05 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 20 19:23:05 gateway firewall: Setting kernel parameters
    Sep 20 19:23:05 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 19:23:05 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 19:23:05 gateway firewall: Using gateway mode
    Sep 20 19:23:05 gateway firewall: Loading kernel modules
    Sep 20 19:23:05 gateway firewall: Loading kernel modules for NAT
    Sep 20 19:23:05 gateway firewall: Setting default policy to DROP
    Sep 20 19:23:05 gateway firewall: Defining custom chains
    Sep 20 19:23:05 gateway firewall: Running blocked external rules
    Sep 20 19:23:05 gateway firewall: Running custom rules
    Sep 20 19:23:05 gateway firewall: Running common rules
    Sep 20 19:23:05 gateway firewall: Running incoming denied rules
    Sep 20 19:23:05 gateway firewall: Running user-defined incoming rules
    Sep 20 19:23:05 gateway firewall: Allowing incoming tcp port/range 22
    Sep 20 19:23:05 gateway firewall: Allowing incoming tcp port/range 81
    Sep 20 19:23:05 gateway firewall: Running default incoming allowed rules
    Sep 20 19:23:05 gateway firewall: Running user-defined port forward rules
    Sep 20 19:23:05 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 20 19:23:05 gateway firewall: Running 1-to-1 NAT rules
    Sep 20 19:23:05 gateway firewall: Running user-defined proxy rules
    Sep 20 19:23:05 gateway firewall: Content filter is offline
    Sep 20 19:23:05 gateway firewall: Web proxy is online
    Sep 20 19:23:05 gateway firewall: Enabled proxy transparent mode
    Sep 20 19:23:05 gateway firewall: Running multipath
    Sep 20 19:23:05 gateway firewall: Running Masquerading
    Sep 20 19:23:05 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 20 19:23:05 gateway firewall: Running user-defined outgoing block rules
    Sep 20 19:23:05 gateway firewall: Running default forwarding rules
    Sep 20 19:23:05 gateway firewall: Execution time: 0.338s
    Sep 20 19:23:05 gateway firewall: Running post-firewall: 120730
    Sep 20 19:23:05 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 20 19:23:05 gateway firewall6: Starting firewall...
    Sep 20 19:23:05 gateway firewall6: Loading environment
    Sep 20 19:23:05 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 20 19:23:05 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 20 19:23:05 gateway firewall6: Setting kernel parameters
    Sep 20 19:23:05 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 19:23:05 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 19:23:05 gateway firewall6: Using gateway mode
    Sep 20 19:23:05 gateway firewall6: Loading kernel modules
    Sep 20 19:23:05 gateway firewall6: Loading kernel modules for NAT
    Sep 20 19:23:05 gateway firewall6: Setting default policy to DROP
    Sep 20 19:23:05 gateway firewall6: Defining custom chains
    Sep 20 19:23:05 gateway firewall6: Running blocked external rules
    Sep 20 19:23:05 gateway firewall6: Running custom rules
    Sep 20 19:23:05 gateway firewall6: Running common rules
    Sep 20 19:23:05 gateway firewall6: Running incoming denied rules
    Sep 20 19:23:05 gateway firewall6: Running user-defined incoming rules
    Sep 20 19:23:05 gateway firewall6: Running default incoming allowed rules
    Sep 20 19:23:05 gateway firewall6: Running user-defined port forward rules
    Sep 20 19:23:05 gateway firewall6: Running Masquerading
    Sep 20 19:23:05 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 20 19:23:05 gateway firewall6: Running user-defined outgoing block rules
    Sep 20 19:23:05 gateway firewall6: Running default forwarding rules
    Sep 20 19:23:06 gateway firewall6: Execution time: 0.295s
    Sep 20 19:23:06 gateway firewall6: Running post-firewall: 120730
    Sep 20 19:23:06 gateway firewall6: Running /etc/clearos/firewall.d/local
    Sep 20 19:23:06 gateway events: network_connected - event occurred
    Sep 20 19:23:06 gateway events: network_connected - triggered hook: date
    Sep 20 19:23:06 gateway timesync: synchronizing with ntpdate
    Sep 20 19:23:13 gateway timesync: synchronizing hardware clock
    Sep 20 19:23:15 gateway events: network_connected - triggered hook: intrusion_detection
    Sep 20 19:23:16 gateway events: network_connected - triggered hook: network
    [root@gateway ~]#


    Firewall manual restart per Nick's earlier post https://www.clearos.com/clearfoundation/social/community/clearos-vm-squid-running-but-not-working-when-vm-starts#reply-188601. The downstream machine is in the same shape, can ping but not fetch HTTP content.

    [root@gateway ~]# firewall-start -d
    firewall: Starting firewall...
    firewall: Loading environment
    firewall: FW_MODE=gateway
    firewall: FW_PROTO=ipv4
    firewall: WANIF=enp0s3
    firewall: LANIF=enp0s8
    firewall: SYSWATCH_WANIF=enp0s3
    firewall: WIFIF=
    firewall: BANDWIDTH_QOS=off
    firewall: QOS_ENGINE=internal
    firewall: SQUID_USER_AUTHENTICATION=off
    firewall: SQUID_TRANSPARENT=on
    firewall: IPSEC_SERVER=off
    firewall: PPTP_SERVER=off
    firewall: ONE_TO_ONE_NAT_MODE=type2
    firewall: RULES=||0x10000008|6|192.168.57.201|22|2224
    firewall: RULES=ssh_server||0x10000001|6||22|
    firewall: RULES=webconfig||0x10000001|6||81|
    firewall: FW_DROP=DROP
    firewall: FW_ACCEPT=ACCEPT
    firewall: IPBIN=/sbin/ip
    firewall: TCBIN=/sbin/tc
    firewall: MODPROBE=/sbin/modprobe
    firewall: RMMOD=/sbin/rmmod
    firewall: SYSCTL=/sbin/sysctl
    firewall: IFCONFIG=/sbin/ifconfig
    firewall: PPTP_PASSTHROUGH_FORCE=no
    firewall: EGRESS_FILTERING=off
    firewall: PROTOCOL_FILTERING=off
    firewall: Detected WAN role for interface: enp0s3
    firewall: Detected LAN role for interface: enp0s8
    firewall: Setting kernel parameters
    firewall: /sbin/sysctl -w net.ipv4.neigh.default.gc_thresh1=512 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.neigh.default.gc_thresh2=2048 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.neigh.default.gc_thresh3=4096 >/dev/null = 0
    firewall: /sbin/sysctl -w net.netfilter.nf_conntrack_max=524288 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.ip_forward=1 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.tcp_syncookies=1 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.conf.all.log_martians=0 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.conf.all.accept_redirects=0 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.conf.all.send_redirects=0 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.conf.default.accept_redirects=0 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.conf.default.send_redirects=0 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.conf.all.accept_source_route=0 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.icmp_echo_ignore_broadcasts=1 >/dev/null = 0
    firewall: /sbin/sysctl -w net.ipv4.icmp_ignore_bogus_error_responses=1 >/dev/null = 0
    firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    firewall: Using gateway mode
    firewall: Loading kernel modules
    firewall: /sbin/modprobe ipt_LOG >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ipt_REJECT >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe nf_conntrack_ipv4 >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_conntrack_ftp >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_conntrack_irc >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ppp_generic >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ppp_mppe >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_conntrack_proto_gre >/dev/null 2>&1 = 256
    firewall: /sbin/modprobe ip_conntrack_pptp >/dev/null 2>&1 = 0
    firewall: Loading kernel modules for NAT
    firewall: /sbin/modprobe ipt_MASQUERADE >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_nat_ftp >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_nat_irc >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_nat_proto_gre >/dev/null 2>&1 = 256
    firewall: /sbin/modprobe ip_nat_pptp >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_nat_h323 >/dev/null 2>&1 = 0
    firewall: /sbin/modprobe ip_nat_tftp >/dev/null 2>&1 = 0
    firewall: Setting default policy to DROP
    firewall: Defining custom chains
    firewall: iptables -t filter -A DROP-lan -j DROP
    firewall: Running blocked external rules
    firewall: Running custom rules
    firewall: Running common rules
    firewall: iptables -t filter -A INPUT -m state --state INVALID -j DROP
    firewall: iptables -t filter -A INPUT -p tcp --tcp-flags SYN,ACK SYN,ACK -m state --state NEW -j REJECT --reject-with tcp-reset
    firewall: iptables -t filter -A INPUT -p tcp ! --syn -m state --state NEW -j DROP
    firewall: iptables -t filter -A INPUT -i enp0s3 -s 127.0.0.0/8 -j DROP
    firewall: iptables -t filter -A INPUT -i enp0s3 -s 169.254.0.0/16 -j DROP
    firewall: iptables -t filter -A INPUT -i lo -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o lo -j ACCEPT
    firewall: iptables -t filter -A INPUT -i pptp+ -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o pptp+ -j ACCEPT
    firewall: iptables -t filter -A INPUT -i tun+ -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o tun+ -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s8 -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o enp0s8 -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p icmp --icmp-type 0 -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p icmp --icmp-type 3 -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p icmp --icmp-type 8 -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p icmp --icmp-type 11 -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o enp0s3 -p icmp -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p udp --dport bootpc --sport bootps -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p tcp --dport bootpc --sport bootps -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o enp0s3 -p udp --sport bootpc --dport bootps -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -o enp0s3 -p tcp --sport bootpc --dport bootps -j ACCEPT
    firewall: Running incoming denied rules
    firewall: Running user-defined incoming rules
    firewall: Allowing incoming tcp port/range 22
    firewall: iptables -t filter -A INPUT -p 6 -d 10.1.10.14 --dport 22 -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -p 6 -o enp0s3 -s 10.1.10.14 --sport 22 -j ACCEPT
    firewall: Allowing incoming tcp port/range 81
    firewall: iptables -t filter -A INPUT -p 6 -d 10.1.10.14 --dport 81 -j ACCEPT
    firewall: iptables -t filter -A OUTPUT -p 6 -o enp0s3 -s 10.1.10.14 --sport 81 -j ACCEPT
    firewall: iptables -t nat -A POSTROUTING -o tun+ -j ACCEPT
    firewall: Running default incoming allowed rules
    firewall: iptables -t filter -A OUTPUT -o enp0s3 -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p udp --dport 1024:65535 -m state --state ESTABLISHED,RELATED -j ACCEPT
    firewall: iptables -t filter -A INPUT -i enp0s3 -p tcp --dport 1024:65535 -m state --state ESTABLISHED,RELATED -j ACCEPT
    firewall: Running user-defined port forward rules
    firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    firewall: iptables -t nat -A PREROUTING -d 10.1.10.14 -p 6 --dport 2224 -j DNAT --to 192.168.57.201:22
    firewall: iptables -t nat -A POSTROUTING -d 192.168.57.201 -p 6 -s 192.168.57.0/255.255.255.0 --dport 22 -j SNAT --to 192.168.57.200
    firewall: iptables -t filter -A FORWARD -o enp0s8 -p 6 -d 192.168.57.201 --dport 22 -j ACCEPT
    firewall: /sbin/rmmod imq 2>/dev/null = 256
    firewall: /sbin/tc qdisc del dev enp0s3 root >/dev/null 2>&1 = 512
    firewall: Running 1-to-1 NAT rules
    firewall: Running user-defined proxy rules
    firewall: Content filter is offline
    firewall: Web proxy is online
    firewall: iptables -t nat -A PREROUTING -p tcp -d 192.168.57.200 --dport 80 -j ACCEPT
    firewall: iptables -t nat -A PREROUTING -p tcp -d 10.1.10.14 --dport 80 -j ACCEPT
    firewall: Enabled proxy transparent mode
    firewall: iptables -t nat -A PREROUTING -i enp0s8 -p tcp --dport 80 -j REDIRECT --to-port 3128
    firewall: Running multipath
    firewall: /sbin/ip rule | grep -Ev '(local|main|default)' | while read PRIO RULE; do /sbin/ip rule del prio ${PRIO%%:*} 2>/dev/null; done = 0
    firewall: /sbin/ip rule | grep -Ev '(local|main|default)' | while read PRIO RULE; do /sbin/ip rule del $RULE prio ${PRIO%%:*} 2>/dev/null; done = 0
    firewall: /sbin/ip route flush table 50 = 0
    firewall: /sbin/ip route flush table 250 = 0
    firewall: /sbin/ip route flush cache = 0
    firewall: Running Masquerading
    firewall: Enabling NAT on WAN interface enp0s3
    firewall: iptables -t nat -A POSTROUTING -o enp0s3 -j MASQUERADE
    firewall: Running user-defined outgoing block rules
    firewall: Running default forwarding rules
    firewall: iptables -t filter -A FORWARD -m state --state ESTABLISHED,RELATED -j ACCEPT
    firewall: iptables -t filter -A FORWARD -i pptp+ -j ACCEPT
    firewall: iptables -t filter -A FORWARD -i tun+ -j ACCEPT
    firewall: iptables -t filter -A FORWARD -i enp0s8 -j ACCEPT
    firewall: Execution time: 0.241s
    firewall: Running post-firewall: 120730
    firewall: Running /etc/clearos/firewall.d/local
    [root@gateway ~]#
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, September 21 2017, 02:21 AM - #Permalink
    Resolved
    0 votes
    I went to the ClearOS web UI and clicked it to stop Squid, then clicked again to restart Squid about 5 seconds later. That fixed it for the downstream machine.

    [root@gateway ~]# systemctl status firewall.service
    ● firewall.service - ClearOS Firewall Engine
    Loaded: loaded (/usr/lib/systemd/system/firewall.service; enabled; vendor preset: disabled)
    Active: active (exited) since Wed 2017-09-20 20:09:41 MDT; 2min 10s ago
    Process: 6450 ExecStop=/usr/libexec/firewall/exec-stop.sh (code=exited, status=0/SUCCESS)
    Process: 6509 ExecStart=/usr/libexec/firewall/exec-start.sh (code=exited, status=0/SUCCESS)
    Main PID: 6509 (code=exited, status=0/SUCCESS)

    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Setting default policy to DROP
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Defining custom chains
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running blocked external rules
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running custom rules
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running common rules
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running incoming denied rules
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running user-defined incoming rules
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running default incoming allowed rules
    Sep 20 20:09:40 gateway.t4a.ddns.net firewall6[6674]: Running user-defined port forward rules
    Sep 20 20:09:41 gateway.t4a.ddns.net systemd[1]: Started ClearOS Firewall Engine.
    [root@gateway ~]#


    /var/log/system

    Sep 20 20:09:35 gateway events: network_proxy - event occurred
    Sep 20 20:09:35 gateway events: network_proxy - triggered hook: firewall
    Sep 20 20:09:35 gateway firewall: Starting firewall...
    Sep 20 20:09:35 gateway firewall: Loading environment
    Sep 20 20:09:35 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 20 20:09:35 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 20 20:09:35 gateway firewall: Setting kernel parameters
    Sep 20 20:09:35 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 20:09:35 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 20:09:35 gateway firewall: Using gateway mode
    Sep 20 20:09:35 gateway firewall: Loading kernel modules
    Sep 20 20:09:35 gateway firewall: Loading kernel modules for NAT
    Sep 20 20:09:35 gateway firewall: Setting default policy to DROP
    Sep 20 20:09:35 gateway firewall: Defining custom chains
    Sep 20 20:09:35 gateway firewall: Running blocked external rules
    Sep 20 20:09:35 gateway firewall: Running custom rules
    Sep 20 20:09:35 gateway firewall: Running common rules
    Sep 20 20:09:35 gateway firewall: Running incoming denied rules
    Sep 20 20:09:35 gateway firewall: Running user-defined incoming rules
    Sep 20 20:09:35 gateway firewall: Allowing incoming tcp port/range 22
    Sep 20 20:09:35 gateway firewall: Allowing incoming tcp port/range 81
    Sep 20 20:09:35 gateway firewall: Running default incoming allowed rules
    Sep 20 20:09:35 gateway firewall: Running user-defined port forward rules
    Sep 20 20:09:35 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 20 20:09:35 gateway firewall: Running 1-to-1 NAT rules
    Sep 20 20:09:35 gateway firewall: Running user-defined proxy rules
    Sep 20 20:09:35 gateway firewall: Content filter is offline
    Sep 20 20:09:35 gateway firewall: Web proxy is online
    Sep 20 20:09:35 gateway firewall: Enabled proxy transparent mode
    Sep 20 20:09:35 gateway firewall: Running multipath
    Sep 20 20:09:35 gateway firewall: Running Masquerading
    Sep 20 20:09:35 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 20 20:09:35 gateway firewall: Running user-defined outgoing block rules
    Sep 20 20:09:35 gateway firewall: Running default forwarding rules
    Sep 20 20:09:35 gateway firewall: Execution time: 0.198s
    Sep 20 20:09:35 gateway firewall: Running post-firewall: 120730
    Sep 20 20:09:35 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 20 20:09:35 gateway firewall6: Starting firewall...
    Sep 20 20:09:35 gateway firewall6: Loading environment
    Sep 20 20:09:35 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 20 20:09:35 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 20 20:09:35 gateway firewall6: Setting kernel parameters
    Sep 20 20:09:35 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 20:09:35 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 20:09:35 gateway firewall6: Using gateway mode
    Sep 20 20:09:35 gateway firewall6: Loading kernel modules
    Sep 20 20:09:35 gateway firewall6: Loading kernel modules for NAT
    Sep 20 20:09:35 gateway firewall6: Setting default policy to DROP
    Sep 20 20:09:35 gateway firewall6: Defining custom chains
    Sep 20 20:09:35 gateway firewall6: Running blocked external rules
    Sep 20 20:09:35 gateway firewall6: Running custom rules
    Sep 20 20:09:35 gateway firewall6: Running common rules
    Sep 20 20:09:36 gateway firewall6: Running incoming denied rules
    Sep 20 20:09:36 gateway firewall6: Running user-defined incoming rules
    Sep 20 20:09:36 gateway firewall6: Running default incoming allowed rules
    Sep 20 20:09:36 gateway firewall6: Running user-defined port forward rules
    Sep 20 20:09:36 gateway firewall6: Running Masquerading
    Sep 20 20:09:36 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 20 20:09:36 gateway firewall6: Running user-defined outgoing block rules
    Sep 20 20:09:36 gateway firewall6: Running default forwarding rules
    Sep 20 20:09:36 gateway firewall6: Execution time: 0.119s
    Sep 20 20:09:36 gateway firewall6: Running post-firewall: 120730
    Sep 20 20:09:36 gateway firewall6: Running /etc/clearos/firewall.d/local
    Sep 20 20:09:40 gateway events: network_proxy - event occurred
    Sep 20 20:09:40 gateway events: network_proxy - triggered hook: firewall
    Sep 20 20:09:40 gateway firewall: Starting firewall...
    Sep 20 20:09:40 gateway firewall: Loading environment
    Sep 20 20:09:40 gateway firewall: Detected WAN role for interface: enp0s3
    Sep 20 20:09:40 gateway firewall: Detected LAN role for interface: enp0s8
    Sep 20 20:09:40 gateway firewall: Setting kernel parameters
    Sep 20 20:09:40 gateway firewall: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 20:09:40 gateway firewall: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 20:09:40 gateway firewall: Using gateway mode
    Sep 20 20:09:40 gateway firewall: Loading kernel modules
    Sep 20 20:09:40 gateway firewall: Loading kernel modules for NAT
    Sep 20 20:09:40 gateway firewall: Setting default policy to DROP
    Sep 20 20:09:40 gateway firewall: Defining custom chains
    Sep 20 20:09:40 gateway firewall: Running blocked external rules
    Sep 20 20:09:40 gateway firewall: Running custom rules
    Sep 20 20:09:40 gateway firewall: Running common rules
    Sep 20 20:09:40 gateway firewall: Running incoming denied rules
    Sep 20 20:09:40 gateway firewall: Running user-defined incoming rules
    Sep 20 20:09:40 gateway firewall: Allowing incoming tcp port/range 22
    Sep 20 20:09:40 gateway firewall: Allowing incoming tcp port/range 81
    Sep 20 20:09:40 gateway firewall: Running default incoming allowed rules
    Sep 20 20:09:40 gateway firewall: Running user-defined port forward rules
    Sep 20 20:09:40 gateway firewall: Port forwarding tcp 2224 to 192.168.57.201 22
    Sep 20 20:09:40 gateway firewall: Running 1-to-1 NAT rules
    Sep 20 20:09:40 gateway firewall: Running user-defined proxy rules
    Sep 20 20:09:40 gateway firewall: Content filter is offline
    Sep 20 20:09:40 gateway firewall: Web proxy is online
    Sep 20 20:09:40 gateway firewall: Enabled proxy transparent mode
    Sep 20 20:09:40 gateway firewall: Running multipath
    Sep 20 20:09:40 gateway firewall: Running Masquerading
    Sep 20 20:09:40 gateway firewall: Enabling NAT on WAN interface enp0s3
    Sep 20 20:09:40 gateway firewall: Running user-defined outgoing block rules
    Sep 20 20:09:40 gateway firewall: Running default forwarding rules
    Sep 20 20:09:40 gateway firewall: Execution time: 0.195s
    Sep 20 20:09:40 gateway firewall: Running post-firewall: 120730
    Sep 20 20:09:40 gateway firewall: Running /etc/clearos/firewall.d/local
    Sep 20 20:09:40 gateway firewall6: Starting firewall...
    Sep 20 20:09:40 gateway firewall6: Loading environment
    Sep 20 20:09:40 gateway firewall6: Detected WAN role for interface: enp0s3
    Sep 20 20:09:40 gateway firewall6: Detected LAN role for interface: enp0s8
    Sep 20 20:09:40 gateway firewall6: Setting kernel parameters
    Sep 20 20:09:40 gateway firewall6: Detected WAN info - enp0s3 10.1.10.14 on network 10.1.10.0/24
    Sep 20 20:09:40 gateway firewall6: Detected LAN info - enp0s8 192.168.57.200 on network 192.168.57.0/24
    Sep 20 20:09:40 gateway firewall6: Using gateway mode
    Sep 20 20:09:40 gateway firewall6: Loading kernel modules
    Sep 20 20:09:40 gateway firewall6: Loading kernel modules for NAT
    Sep 20 20:09:40 gateway firewall6: Setting default policy to DROP
    Sep 20 20:09:40 gateway firewall6: Defining custom chains
    Sep 20 20:09:40 gateway firewall6: Running blocked external rules
    Sep 20 20:09:40 gateway firewall6: Running custom rules
    Sep 20 20:09:40 gateway firewall6: Running common rules
    Sep 20 20:09:40 gateway firewall6: Running incoming denied rules
    Sep 20 20:09:40 gateway firewall6: Running user-defined incoming rules
    Sep 20 20:09:40 gateway firewall6: Running default incoming allowed rules
    Sep 20 20:09:40 gateway firewall6: Running user-defined port forward rules
    Sep 20 20:09:40 gateway firewall6: Running Masquerading
    Sep 20 20:09:40 gateway firewall6: Enabling NAT on WAN interface enp0s3
    Sep 20 20:09:40 gateway firewall6: Running user-defined outgoing block rules
    Sep 20 20:09:40 gateway firewall6: Running default forwarding rules
    Sep 20 20:09:40 gateway firewall6: Execution time: 0.115s
    Sep 20 20:09:41 gateway firewall6: Running post-firewall: 120730
    Sep 20 20:09:41 gateway firewall6: Running /etc/clearos/firewall.d/local
    [root@gateway ~]#


    /var/log/messages

    Sep 20 20:09:08 gateway clearsyncd[595]: System Events: Socket hang-up: 29
    Sep 20 20:09:08 gateway clearsyncd[595]: System Events: Socket hang-up: 29
    Sep 20 20:09:29 gateway webconfig: Redirecting to /bin/systemctl stop squid.service
    Sep 20 20:09:29 gateway systemd: Stopping Squid caching proxy...
    Sep 20 20:09:30 gateway systemd: Stopped Squid caching proxy.
    Sep 20 20:09:30 gateway systemd: Reloading.
    Sep 20 20:09:32 gateway webconfig: Redirecting to /bin/systemctl start squid.service
    Sep 20 20:09:32 gateway systemd: Starting Squid caching proxy...
    Sep 20 20:09:32 gateway systemd: Started Squid caching proxy.
    Sep 20 20:09:32 gateway squid[6067]: Squid Parent: will start 1 kids
    Sep 20 20:09:32 gateway squid[6067]: Squid Parent: (squid-1) process 6071 started
    Sep 20 20:09:33 gateway systemd: Reloading.
    Sep 20 20:09:35 gateway systemd: Stopping ClearOS Firewall Engine...
    Sep 20 20:09:35 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 20 20:09:35 gateway clearsyncd[595]: System Events: Socket hang-up: 30
    Sep 20 20:09:36 gateway clearsyncd[595]: System Events: Socket hang-up: 30
    Sep 20 20:09:36 gateway systemd: Started ClearOS Firewall Engine.
    Sep 20 20:09:40 gateway systemd: Stopping ClearOS Firewall Engine...
    Sep 20 20:09:40 gateway systemd: Starting ClearOS Firewall Engine...
    Sep 20 20:09:40 gateway clearsyncd[595]: System Events: Socket hang-up: 30
    Sep 20 20:09:41 gateway clearsyncd[595]: System Events: Socket hang-up: 30
    Sep 20 20:09:41 gateway systemd: Started ClearOS Firewall Engine.
    Sep 20 20:10:01 gateway systemd: Started Session 52 of user root.
    Sep 20 20:10:01 gateway systemd: Starting Session 52 of user root.
    Sep 20 20:10:01 gateway systemd: Started Session 53 of user root.
    Sep 20 20:10:01 gateway systemd: Starting Session 53 of user root.
    Sep 20 20:10:01 gateway systemd: Started Session 51 of user root.
    Sep 20 20:10:01 gateway systemd: Starting Session 51 of user root.
    Sep 20 20:10:01 gateway systemd: Started Session 50 of user root.
    Sep 20 20:10:01 gateway systemd: Starting Session 50 of user root.
    Sep 20 20:10:01 gateway systemd: Started Session 49 of user root.
    Sep 20 20:10:01 gateway systemd: Starting Session 49 of user root.
    Sep 20 20:15:01 gateway systemd: Started Session 56 of user root.
    Sep 20 20:15:01 gateway systemd: Starting Session 56 of user root.
    Sep 20 20:15:01 gateway systemd: Started Session 57 of user root.
    Sep 20 20:15:01 gateway systemd: Starting Session 57 of user root.
    Sep 20 20:15:01 gateway systemd: Started Session 55 of user root.
    Sep 20 20:15:01 gateway systemd: Starting Session 55 of user root.
    Sep 20 20:15:01 gateway systemd: Started Session 54 of user root.
    Sep 20 20:15:01 gateway systemd: Starting Session 54 of user root.
    [root@gateway ~]#
    The reply is currently minimized Show
  • Accepted Answer

    Sunday, September 24 2017, 06:30 PM - #Permalink
    Resolved
    0 votes
    I put a couple more posts up on Sept 21 2017 with more detail after rebooting. No response since. Any ideas?
    Thanks - Pete
    The reply is currently minimized Show
  • Accepted Answer

    Sunday, September 24 2017, 07:29 PM - #Permalink
    Resolved
    0 votes
    Sorry, but I have no ideas. There is nothing obviously wrong. The firewall restarts a few times during boot up but I think that is normal. It successfully gets to the end of the its start up without tripping. I would, therefore, think it was a squid issue, but I don't use squid so I don't know. Did you use my modification to the firewall start up file?
    The reply is currently minimized Show
  • Accepted Answer

    Thursday, September 28 2017, 05:39 PM - #Permalink
    Resolved
    0 votes
    I'm going to try a different approach. Instead of running ClearOS in a VM under a CentOS host, with a Clonezilla VM "behind" ClearOS/Squid, I'll ditch the CentOS host entirely. I'll build a new server with ClearOS, install VirtualBox on it, and run my Clonezilla VM under the ClearOS host. This should cure the Squid and firewall weirdness (hopefully), since ClearOS will be running natively on the hardware. With luck it will also mitigate some CentOS issues that have popped up in the last couple of days, apparently having to do with SELinux issues.

    Thanks again for all the help.
    The reply is currently minimized Show
Your Reply