On Mon, Aug 09, 2004 at 12:36:28PM -0400, Kvetch wrote:
I have about 30 sites running on these servers. Is setting up one
cache_dir my best solution? How do I determine what size I should
make my cache_dir?
From what I've gathered, setting up 2 or more caches on separate drives
is better
Hi out there,
After hours of testing the squid_ldap_auth with Novell eDirectory I
found the following string working fine for us:
/usr/local/squid/libexec/squid_ldap_auth -b -D cn=name,o=name -w
passwd -h ip-adr -f
(((cn=%s)(objectClass=person))(groupMembership=cn=Internet,ou=name,ou=
Hi,
I've configured my squid farm like:
cache_peer cache1.domain.com parent 81 83 no-query no-digest
carp-load-factor=0.25
cache_peer cache2.domain.com parent 81 83 no-query no-digest
carp-load-factor=0.25
cache_peer cache3.domain.com parent 81 83 no-query no-digest
carp-load-factor=0.25
On Tue, 10 Aug 2004, Stefan Thomas wrote:
/usr/local/squid/libexec/squid_ldap_auth -b -D cn=name,o=name -w
passwd -h ip-adr -f
(((cn=%s)(objectClass=person))(groupMembership=cn=Internet,ou=name,ou=
name,o=name))
This works very well. No I have a new challenge to solve. I want to
check is the
On Tue, 10 Aug 2004, Michael Pophal wrote:
cache_peer cache1.domain.com parent 81 83 no-query no-digest
carp-load-factor=0.25
cache_peer cache2.domain.com parent 81 83 no-query no-digest
carp-load-factor=0.25
cache_peer cache3.domain.com parent 81 83 no-query no-digest
carp-load-factor=0.25
Hi guys,
I have linked the squid with a novell edirectory for user
authentication.
It work´s fine. But there are nevertheless some grave problems.
The popup appeares eacht time after closing the browser. This behavior
is very unlovely for the users (600).
The second problem is: What´s up with
On Tue, Aug 10, 2004 at 10:19:47AM +0200, Stefan Thomas wrote:
I have linked the squid with a novell edirectory for user
authentication.
It work?s fine. But there are nevertheless some grave problems.
The popup appeares eacht time after closing the browser. This behavior
is very unlovely
Hi,
I have been trying several network setups and I have not been able to
demonstrate the use of the pipeline_prefetch option.
Could anyone explain briefly in which conditions the pipeline,
implemented in squid (my version is 2.5.STABLE5), works ?
I am a bit puzzled since pipelining specs are
On Tue, 10 Aug 2004, Stefan Thomas wrote:
The popup appeares eacht time after closing the browser. This behavior
is very unlovely for the users (600).
This is due to how the browser works. The login is only cached in the
browser for the duration of the browser session.
Most browsers allows
Hi all
I have got this problem. I have setup 2 pc's with 2 network cards each,
running ipchains firewall. Everything is working fine. Then I installed
squid on both pc's. Now everyone on the private lan can brows the
internet using squid.(The 2 linux boxes with ipchains and squid are on 2
On 06.08 09:19, SXB6300 Mailing wrote:
Thx for the answer. I looked the network side, but it seems ok. I have
ran a ping between each proxy during 4 hours of hight HTTP load, with 0%
of packet loss and very good response time.
It 's probably more an overload issue. The load of every proxy is
Dear list...
I'm starting to get some error messages like these:
Aug 10 10:15:56 proxy-2 squid[17219]: WARNING: 10 swapin MD5 mismatches
No updates recently. The 2.5STABLE4 has been running for half a year
without problems. First I ignored these messages. But users complained
about mixups of
On Tue, Aug 10, 2004 at 11:32:14AM +0200, Manie Esterhuizen wrote:
I have got this problem. I have setup 2 pc's with 2 network cards each,
running ipchains firewall. Everything is working fine. Then I installed
squid on both pc's. Now everyone on the private lan can brows the
internet using
On Tue, Aug 10, 2004 at 12:04:49PM +0200, Christoph Haas wrote:
To test if my config of squid and proxy auth was correct I installed
squid onto a third linux box with NO ipchains config on it. Setup the
proxy auth and it worked first time.
So my question is whay is it not working on
For our solution we took a look at pricing and determined it would be
cheaper to just go with a single drive for each of our squid servers. Our
layout, in accelerated mode is like this:
Internet -- fw -- squid as a reverse proxy (rp) -- fw -- rp -- fw --
back end web servers --rp -- network
On Tue, 10 Aug 2004, Emmanuel Duros wrote:
I have been trying several network setups and I have not been able to
demonstrate the use of the pipeline_prefetch option.
Could anyone explain briefly in which conditions the pipeline,
implemented in squid (my version is 2.5.STABLE5), works ?
When you
Hi ,
i have a Zyxel router to which , my squid machine is connected.
There are around 150 users , whenever these users go through squid (at port
3128) , the speed is good for around 20-30 min. but after that the router
simply freezes.
But , when these users are given direct access there isn't
On Tuesday, 10 August 2004 13:18, Boskey Chheda wrote:
Hi ,
i have a Zyxel router to which , my squid machine is connected.
There are around 150 users , whenever these users go through squid (at port
3128) , the speed is good for around 20-30 min. but after that the router
simply freezes.
Question regarding this thread.
Why not use squid_ldap_group?
Here where I work, I use squid_ldap_auth for individual user
authentication. I use squid_ldap_group as an external acl type. Like:
external_acl_type ldap_group %LOGIN /path/squid_ldap_group -h
ldap-host -p ### -P -b o=DN -F
I recently moved squid and dansguardian to a server. Everything was perfect
before, the speed was good and the filtering was perfect. I moved it to my
new server and now the speed went way downhill.
Here are some specs:
Previous system
Apple Emac: 128mb RAM 700Mhz G4 Processor 10/100 NIC
I am having the same problem .. msn keeps disconnecting and then
reconnecting (every 5 min or so)... I have squid on a box in my dmz (so it
sits between my internal firewall and my external firewall .. both of which
are running iptables on a rh9 box).
Any suggestions ... it is really anoying.
On Tue, 10 Aug 2004, Tim Neto wrote:
If you use squid_ldap_auth for group control, then why was
squid_ldap_group created?
squid_ldap_auth is for authentication, not authorization. In many LDAP
directories the filter can specify groups restricting who may authenticate
to the proxy.
On Tue, 10 Aug 2004, Derrick Seymour wrote:
I can't understand why it would be running slower, I check my config and it
looks to be the same as before.
Machine looks good.
So start by verifying your networking. Maybe your switch and the server
does not agree on half/full duplex etc or other
I just followed the instructions, but one thing that I have found was
that if you have box standard installation of AD on windows, you will
have to have a generic user within the AD that will allow access to
search the ldap database on windows. The users account details will
then have to be in
On 8/10/04 9:34 AM, Henrik Nordstrom [EMAIL PROTECTED] wrote:
On Tue, 10 Aug 2004, Derrick Seymour wrote:
I can't understand why it would be running slower, I check my config and it
looks to be the same as before.
Machine looks good.
So start by verifying your networking. Maybe your
Make sure your network card is not trying 'auto-sensing'. Configure it fixed
either half or full duplex. I had real strange problems with my server till
I configured 'full-duplex' without testing. (On FreeBSD)
Regards,
Erkan
-Original Message-
From: Derrick Seymour [mailto:[EMAIL
Make sure your network card is not trying 'auto-sensing'. Configure it fixed
either half or full duplex. I had real strange problems with my server till
I configured 'full-duplex' without testing. (On FreeBSD)
Regards,
Erkan
-Original Message-
From: Derrick Seymour [mailto:[EMAIL
Greetings
I am going to assume OSX 10.3.4 on the G5.
Are you using this as a transparent proxy?
I am interested in your setup. I have been using G4/G5's for my content
filter for almost 2 years using squid and squidguard.
I just recently moved to a dual G5 ( like you) and found some
Seemed to work at first when I set it manually, but I guess it was a glitch,
cause it's all slow again...
Thanks for the help,
Derrick
On 8/10/04 10:02 AM, Erkan Boga [EMAIL PROTECTED] wrote:
Make sure your network card is not trying 'auto-sensing'. Configure it fixed
either half or full
Hi all
I have a proxy server running on my network.
And my browser is pointing to the proxy server.
I too have a few http servers running on the lan.
My question is, how would I go about making it so that I DO NOT cache
anything for my network (192.168.111.0/24) browsing.
and also, would using
On Tue, 10 Aug 2004, Derrick Seymour wrote:
Seemed to work at first when I set it manually, but I guess it was a glitch,
cause it's all slow again...
Is there any warnings in cache.log?
How many requests/s is this server proxying?
Regards
Henrik
On Tue, 10 Aug 2004, Brent Clark wrote:
My question is, how would I go about making it so that I DO NOT cache
anything for my network (192.168.111.0/24) browsing.
See FAQ.
and also, would using the following improve the performance of my proxy
cache_replacement_policy heap GDSF
cache replacement
Robert Rader wrote:
-I am using internet explorer 6.0.2800.1106.xpsp2
-squid ver 2.5 stable5
--enable-auth=ntlm,basic --enable-external-acl-helpers=winbinfo_group
--enable_ssl
-samba version 3.0.5pre1
I authenticate no problems with the dc...
The proxy works fine with http but whenever
Sasan Dashtinezhad wrote:
So, squid will grab the result from the original Web server, and send it
to our program for modifications and wait for our program to respond.
Squid will then send the results it gets from our program to its client.
Sounds similar to what redirectors do for
yes
-Original Message-
From: Adam Aube [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 10, 2004 3:01 PM
To: [EMAIL PROTECTED]
Subject: [squid-users] Re: ssl internet explorer
Robert Rader wrote:
-I am using internet explorer 6.0.2800.1106.xpsp2
-squid ver 2.5 stable5
Hi,
I've been getting lots of TCP_NEGATIVE_HIT/404s and I'm not able to understand
what's going on.
I see that the url being requested was something like,
http://./portal/undefined!
I don't see any error in any of the jsp files!
Any help?
Cheers,
Satish
Hi group
We have squid proxy server for browsing to the internet with 1300 AD
sites loaded in squid.conf for blocking advertisement(I think this may
put squid a little slow.)
But also I have kerio pfw in my PC and it have only 13 rules for
blocking advertisement and in most cases is more
On Tue, 10 Aug 2004, Bhat, Satish wrote:
I've been getting lots of TCP_NEGATIVE_HIT/404s and I'm not able to understand what's going on.
Your clients are requesting a lot of non-existing files.
I see that the url being requested was something like,
http://./portal/undefined!
I don't see any
Pablo Gietz wrote:
We have squid proxy server for browsing to the internet with 1300 AD
sites loaded in squid.conf for blocking advertisement(I think this may
put squid a little slow.)
But also I have kerio pfw in my PC and it have only 13 rules for
blocking advertisement and in most cases
On Tue, Aug 10, 2004 at 04:19:28PM -0300, Pablo Gietz wrote:
We have squid proxy server for browsing to the internet with 1300 AD
sites loaded in squid.conf for blocking advertisement(I think this may
put squid a little slow.)
But also I have kerio pfw in my PC and it have only 13 rules for
I have the exact same environment..but I was not aware it was compatible
with Windows 2003 Active Directory.
Rob
-Original Message-
From: Rivanor Soares [mailto:[EMAIL PROTECTED]
Sent: Tuesday, August 10, 2004 2:48 PM
To: [EMAIL PROTECTED]
Subject: [squid-users] Squid 2.5-STABLE and
Beyond this, I'm running all this things in FreeBSD 5.x
Anyone else experienced with this thread?
Ciao :)
- Rivanor
On Tue, 10 Aug 2004 16:11:56 -0400, McDonald, Rob
[EMAIL PROTECTED] wrote:
I have the exact same environment..but I was not aware it was compatible
with Windows
Rivanor Soares wrote:
Does anyone have an environmente like this: squid 2.5 + wb_auth module
(winbindd, from samba 3.x) and a windows 2003 (domain controller)?
I just can't authenticate users through the browser.
I can join to the domain, but can't get authentication working.
If you are
how can i send https requiest on cache peer my cache_peer is
193.251.135.100 parent 8080 0 pleas tell me how can i send all https port
443 request on this peer and my cache peer is a proxy based downlink
Bart,
Hello,
You can block the useragent
(Trillian/..)
And you can add an extra rule for the ones who still needs
to use this.
Bart
What do you mean by blocking the useragent?? Can you give
me a sample configuration?
regards,
babidii
--- Schelstraete Bart
Hi
Does anyone here know how to block skype?
i already manage to block msn/icq/yahoo/irc by combining squid with
iptables
but i can't figure out how to block skype
skype use 443 port to connect if other fail
and it have random ip of it login server so it make life more difficult
to me :-\
--
According to the Skype support page: blocking traffic to 80.160.91.5
80.160.91.13 (supposedly skype's authentication servers) should do the
job.
Tim Bernhardson
Senior Technical Engineer
Certified Citrix Metaframe Administrator
Certified CyberGuard Administrator
Certified AIX 4.3 System
Hi everyone,
does anyone have any information on how much market share Squid is holding
as compared to other caching product. Is there any formal statistics
collected to compared how the various caching products performs. The one I
found (something Caching Bake-Off by the Measurement factory)
What is the most efficient way to get a dump of Squid's cached
URIs in a file, one per line, on disk?
Chris
This message and any attachments are confidential. Unauthorized use
or disclosure of this message is strictly prohibited, and this message
must be destroyed immediately if received
Hello Adam...
Your tip (the FAQ URL), which I should follow before asking to the
list, were very useful. I followed step by step. Then, it works! Eeee
:) But when I rebooted my system, to be sure everything would work
proprely anytime, it stops working. :/
Then, once again, I followed step by
how can I do a request to get an object in cache without validation?
DiegoWS
LANUX
I need this because I am writing a program that need access to squid
cache objects without validation if the object exists in cache.
Thanks.
El mié, 11-08-2004 a las 01:20, Diego Woitasen escribió:
how can I do a request to get an object in cache without validation?
DiegoWS
LANUX
Dear Satish
I assume that you squid is being requested for the files which don't exist.
Also please advice about the HTML output of the JSP content.
Regards
Babar Kazmi
From: Bhat, Satish [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: [squid-users] Too many negative hits!
Date: Tue, 10
:)
I agree with Christoph ... adzapper Rocks ...
I don't have any idea of translation, I you come to know - DO SHARE -
Regards
Babar Kazmi
From: Christoph Haas [EMAIL PROTECTED]
To: Squid [EMAIL PROTECTED]
Subject: Re: [squid-users] AD banners rule
Date: Tue, 10 Aug 2004 21:56:58 +0200
54 matches
Mail list logo