Proxy service down or unstable [currently okay]
The proxy service is having serious problems. There is some evidence that it is under attack, but this is not yet confirmed.
Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Quick Links
Categories
- 2.5K All Categories
- 1.2K KiwiSDR Discussion
- 134 Software release information
- 27 Feature requests
- 312 Configuration and Operation
- 82 Installation, Antennas and Interference
- 63 WSPR, wsprdaemon, kiwirecorder
- 7 BeagleBone AI-64
- 8 BeagleBone AI
- 11 TDoA topics
- 64 Signals Received
- 95 Problems and Issues
- 219 Problems Now Fixed
- 90 General Chat
Comments
A number of people have said their Kiwis are not connecting through the proxy when they should be. Please fully restart/reboot your Kiwi. Clicking the
"(re)register" button is not sufficient it seems.
Some of these scans occur on the proxy ports. If the URL or packet data is particularly pathological it might trigger bugs in the proxy server code (e.g. buffer overruns). This could explain the looping and crash/restart behavior we've seen in the last several days.
Rather than try and debug the proxy code (which we didn't write), and cause significant additional proxy downtime, it was easier to strengthen our existing firewall filtering rules. Port scanning is now more reliably detected and the associated ip addresses banned.
We will closely monitor the situation and see how effective the new rules are.
What I haven't yet done is the hard part: Packaging up the backend pieces of the proxy service that normally live on kiwisdr.com, i.e. the frp server and associated PHP code.
This change was made at the request of someone who wants to run a private proxy service themselves for a bunch of Kiwis.
Also, I have considered for a long time opening a second proxy somewhere in the EU. But there are of course issues in how to migrate specific Kiwis to that server without owner/admin intervention. I haven't worked that out yet. It was easier to just pay more money to increase the network transfer cap on our California server. We now use about 2TB/month.
The server itself is well balanced in terms of cpu/memory/disk use between proxy/TDoA/webserver/other tasks. Unless things go wrong it is not that heavily loaded at all. It's quite remarkable actually how well it has worked.
Thanks
This is probably best handled when there is the eventual need to open a second proxy server (we're getting close and it will probably be in the EU). That way the migration can be done in a controlled way.
Looking forward to your special version as well.