Sorry i didn't understand the idea from your post ?! Maybe my bad english .
How i can trace TPROXY ? is there any more details needed ? even i can give
full access to you (Amos) to help solve the problem for me and others.
--
View this message in context:
On 5/03/2013 6:11 p.m., Amm wrote:
From: Dan Charlesworth d...@getbusi.com
To: squid-users@squid-cache.org
Sent: Tuesday, 5 March 2013 10:21 AM
Subject: [squid-users] Bypassing SSL Bump for dstdomain
Hi
I've recently set up a very simple Squid 3.3.1 deployment
actually i am running squid in proxy mode and i want a client software
for XP or win7 users, like provided in MS ISA which tunnel all the
traffic from client computer to proxy so that i do not have to define
proxy in every software. i know there is a option in all the browser
auto detect proxy
Good day,
Is there other way we can multicast in localhost without creating
virtual Ethernet for additional ip?.
Currently running multiple instances.
On 5/03/2013 11:35 p.m., jiluspo wrote:
Good day,
Is there other way we can multicast in localhost without creating
virtual Ethernet for additional ip?.
What do you mean by virtual Ethernet?
If you mean ... eth0:0, eth0:1. It is wrong. They are one interface
with multiple IPs. Use
hi ,.
i have centos 64 bit with kernel 3.7.5 compiled with tproxy features .
i noted that in rush hour , squid squid guard is bypassing .
i noted that squid is using only 1 cpu .
here is output sample:
===
[root@squid squid-3.3.1]# mpstat -u
Linux 3.7.5 (squid) 03/05/2013
Good day,
I was hoping where I could find users/developers squid's CPU
profiling and benchmarks was published. I'd like to know where squid is more
hungrier.
I did some test which kind of unclear for me to get conclusion. Currently at
connection established vs request/sec.
Cool -- thanks folks. That makes sense.
I guess if the situation is ever called for, IPs will have to suffice.
On 05/03/2013, at 9:09 PM, Amos Jeffries squ...@treenet.co.nz wrote:
On 5/03/2013 6:11 p.m., Amm wrote:
From: Dan Charlesworth d...@getbusi.com
To:
On 6/03/2013 3:14 a.m., Ahmad wrote:
hi ,.
i have centos 64 bit with kernel 3.7.5 compiled with tproxy features .
i noted that in rush hour , squid squid guard is bypassing .
Are you basing that on the detected possible bypass attack messages
mentioned in threads from days back?
... that
Hello,
I am trying to use my own external helper with squid (currently i am
checking 3.3.2 version). Here is my helper code used for testing(bl.pl
file):
#!/usr/bin/perl
while ($l=) {
print OK\n;
}
And here is my squid.conf file:
http_port 127.0.0.1:1234
acl dstip1 myip 127.0.0.1
On Tue, Mar 5, 2013 at 4:21 PM, Mateusz Kamiński mate...@kaminscy.biz wrote:
Additional question - how to debug such helper problems - is there any
way to get squid log sending request to helper and getting response
from it?
# TAG: debug_options
# Logging options are set as section,level
On 6/03/2013 5:57 a.m., jiluspo wrote:
Good day,
I was hoping where I could find users/developers squid's CPU
profiling and benchmarks was published. I'd like to know where squid is more
hungrier.
I did some test which kind of unclear for me to get conclusion. Currently at
connection
On 03/05/2013 03:09 AM, Amos Jeffries wrote:
Squid tunnel functionality requires a CONNECT wrapper to generate
outgoing connections.
It is not yet setup to do the raw-TCP type of bypass the intercepted
traffic would require.
Are you sure? IIRC, ssl_bump none tunneling code works for
On 03/04/2013 10:11 PM, Amm wrote:
# Let user specify domains to avoid decrypting, such as internet banking
acl bump-bypass dstdomain .commbank.com.au
ssl_bump none bump-bypass
ssl_bump server-first all
This will not work for intercepting traffic. Because domain is known
only after SSL
On 03/05/2013 03:21 PM, Mateusz Kamiński wrote:
I am trying to use my own external helper with squid (currently i am
checking 3.3.2 version). Here is my helper code used for testing(bl.pl
file):
#!/usr/bin/perl
while ($l=) {
print OK\n;
}
Do you need to disable output buffering
- Original Message -
From: Alex Rousskov rouss...@measurement-factory.com
To: squid-users@squid-cache.org squid-users@squid-cache.org
Cc:
Sent: Wednesday, 6 March 2013 6:20 AM
Subject: Re: [squid-users] Bypassing SSL Bump for dstdomain
On 03/04/2013 10:11 PM, Amm wrote:
#
On 6/03/2013 1:40 p.m., Alex Rousskov wrote:
On 03/05/2013 03:09 AM, Amos Jeffries wrote:
Squid tunnel functionality requires a CONNECT wrapper to generate
outgoing connections.
It is not yet setup to do the raw-TCP type of bypass the intercepted
traffic would require.
Are you sure? IIRC,
On 03/05/2013 09:15 PM, Amm wrote:
- Original Message -
From: Alex Rousskov rouss...@measurement-factory.com
To: squid-users@squid-cache.org squid-users@squid-cache.org
Cc:
Sent: Wednesday, 6 March 2013 6:20 AM
Subject: Re: [squid-users] Bypassing SSL Bump for dstdomain
On
http://www.squid-cache.org/Doc/config/udp_incoming_address/ was been buggy
and been around in ubuntu bug report.
udp_incoming_address doesn't work.
Although it shows in cache.log
2013/03/06 02:05:59| Accepting ICP messages at 127.0.0.1, port 3130, FD 13.
Squid2 been deprecated so this will be
19 matches
Mail list logo
