On 09/09/2011, at 12:34 PM, John Kenyon wrote:
Hi All,
I am experiencing a slow down on one particular site:
https://www.my.commbank.com.au/netbank/Logon/Logon.aspx
I can access this web site fine however it takes approx. 30 seconds to load,
and if I bypass squid it takes 1 second.
On 09/09/11 18:15, Michael Hendrie wrote:
On 09/09/2011, at 12:34 PM, John Kenyon wrote:
Hi All,
I am experiencing a slow down on one particular site:
https://www.my.commbank.com.au/netbank/Logon/Logon.aspx
I can access this web site fine however it takes approx. 30 seconds
to load, and if
On Sat, Sep 3, 2011 at 6:58 PM, Hasanen AL-Bana hasa...@gmail.com wrote:
It could be possible with squid if you write some external acl helper
script which checks the IP address (or username) and decides when to
allow/deny access.
However, facebook is out of control now since the site switched
Hi,
I have two squids using NTLM auth against AD. Those squids are used by
client through a single A DNS entry (proxy.domain.tld) (so round robin).
I want to switch to kerberos, but I don't know what to create with
msktutil:
- two machines with same proxy.domain.tld UPN ?
- one machine used by
Date: Fri, 9 Sep 2011 12:50:24 +1200
From: squ...@treenet.co.nz
To: squid-users@squid-cache.org
Subject: Re: [squid-users] Authentication Prompts
On 09/09/11 06:28, Matt Cochran wrote:
I've been trying to model two different kinds of users in ACLs, where the
kids are authenticated by
Sorry I wasn't clear ... All lines are the same just different time stamp
On Thu, Sep 8, 2011 at 8:59 PM, Amos Jeffries squ...@treenet.co.nz wrote:
On 09/09/11 07:02, alexus wrote:
Is there a way to analyze somehow deeper what's going on with this?
tss# grep -c
66.55.138.70 is actually my own IP, in this log you can't really see
real remote IP, but that's not an issue
I just have alot of request like this, so I want to somehow do some
sort of capture to see what's going on there...
On Fri, Sep 9, 2011 at 1:42 AM, Helmut Hullen hul...@t-online.de wrote:
On Thu, Sep 8, 2011 at 8:59 PM, Amos Jeffries wrote:
On 09/09/11 07:02, alexus wrote:
Is there a way to analyze somehow deeper what's going on with this?
tss# grep -c 'http://ecs.amazonaws.com/onca/xml?' access.log
3065
tss# grep 'http://ecs.amazonaws.com/onca/xml?' access.log | tail -1
On 10/09/11 01:52, Jenny Lee wrote:
Date: Fri, 9 Sep 2011 12:50:24 +1200
From: squ...@treenet.co.nz
To: squid-users@squid-cache.org
Subject: Re: [squid-users] Authentication Prompts
On 09/09/11 06:28, Matt Cochran wrote:
I've been trying to model two different kinds of users in ACLs, where
You need to create one AD entry for proxy.domain.tld and copy the same
keytab to both squid servers and use the -s GSS_C_NO_NAME option for
squid_kerb_auth or negotiate_kerberos_auth.
Regards
Markus
Emmanuel Lacour elac...@easter-eggs.com wrote in message
On Fri, Sep 09, 2011 at 03:42:21PM +0100, Markus Moeller wrote:
You need to create one AD entry for proxy.domain.tld and copy the
same keytab to both squid servers and use the -s GSS_C_NO_NAME
option for squid_kerb_auth or negotiate_kerberos_auth.
at a first glance, it seems to works like a
hello amos, thanks for the quick reply.
i've changed the config according the your link ref. owa. but i still have
doubts because it is still not working.
i didn't quite understand what you mean when you said:
All requests entering through this port are re-written with the domain name
Hallo, alexus,
Du meintest am 09.09.11:
66.55.138.70 - - [08/Sep/2011:18:59:26 +] GET
http://ecs.amazonaws.com/onca/xml? HTTP/1.1 200 135861 -
Mozilla/4.1 TCP_MISS:DIRECT
That line shows that the machine 66.55.138.70 tries to get a
document from http://ecs.amazonaws.com/onca/xml
And
Hello Team,
I have configured reverse proxy in squid with 3 cache_peers and
enabled basic authentication.
When i visit each sub domain the authentication prompt appears , i
need to get authenticated only one, is it possible?
Cache peer1- test1.example.com
Cache peer2- test2.example.com
Hi,
Good to hear. BTW you need to do a bit more if you use other Browsers
than IE. It works with IE because IE does not do a canonicalization of the
proxyname i.e. gethostbaddr(gethostbyname(proxyname))) to create the
Kerberos token. So independent of the resolved IP it is
Hello :)!
...
Is there any documents on eCAP program?
...
i recommend building the sample, compiling squid with it and trying to
do some simple things... it should be enough to get the idea :)
best regards,
sich
On Thu, Sep 8, 2011 at 1:55 PM, Amos Jeffries squ...@treenet.co.nz wrote:
On 08/09/11 12:50, Jeff Chua wrote:
Amos,
With recent version of squid after June 15, I'm getting the following
error when connecting to this ftp site, all other sites seems ok.
On 10/09/11 11:22, Jeff Chua wrote:
On Thu, Sep 8, 2011 at 1:55 PM, Amos Jeffries wrote:
Aha! Please try this patch
If that works, 3.2.0.12 later this weekend will have it.
Amos,
That works! Thanks. Now I'm using lastest squid with the patch applied.
Thank you. Applied it.
Amos
--
Please
On 10/09/11 06:04, senthil kumar wrote:
Hello Team,
I have configured reverse proxy in squid with 3 cache_peers and
enabled basic authentication.
When i visit each sub domain the authentication prompt appears , i
need to get authenticated only one, is it possible?
As I keep saying, popup is
On 10/09/11 03:13, Sidnei Moreira wrote:
hello amos, thanks for the quick reply.
i've changed the config according the your link ref. owa. but i still have
doubts because it is still not working.
i didn't quite understand what you mean when you said:
All requests entering through this port are
20 matches
Mail list logo