On 08/20/2014 10:52 AM, Jatin Bhasin wrote:
And when I browse to https://weather.yahoo.com then it goes in
redirect loop. I am using Chrome browser and I get a message at
the end saying 'This webpage has a redirect loop'.
Happens in 3.4 series too.
I added these in squid.conf as a solution:
On 20/08/2014 1:12 p.m., Eliezer Croitoru wrote:
I wasn't sure but I am now.
You are doing something wrong and I cannot tell what exactly.
Try to share this script output:
http://www1.ngtech.co.il/squid/basic_data.sh
There are missing parts in the whole setup such as clients IP and server
On 20/08/2014 9:21 a.m., Délsio Cabá wrote:
Hi guys,
Need some help on cache. Basically I do not see many caches.
root@c /]# cat /var/log/squid/access.log | awk '{print $4}' | sort |
uniq -c | sort -rn
17403 TCP_MISS/200
3107 TCP_MISS/304
- objects in the client browser cache were
Hi,
Thanks, for that. It solved for me as well. But does anyone why this loop
happens and how does these squid directives resolve the issue?
Thanks,
Jain
On 20 Aug 2014, at 16:16, Amm ammdispose-sq...@yahoo.com wrote:
On 08/20/2014 10:52 AM, Jatin Bhasin wrote:
And when I browse to
On 08/20/2014 04:06 PM, Jatin Bhasin wrote:
Hi,
Thanks, for that. It solved for me as well. But does anyone why this loop
happens and how does these squid directives resolve the issue?
I think only Yahoo can answer that. They seem to send redirect when they
find Via and/or X-Forwarded-For
Trend micro viruswall can work as upstream proxy or icap.
Amos Jeffries squ...@treenet.co.nz ha scritto:
On 18/08/2014 9:30 p.m., Jason Haar wrote:
Hi there
I've been testing out squidclamav as an ICAP service and it works well.
I was wondering what other AV vendors have (linux)
Hello Stepanenko,
The store.log is a record of Squid's decisions to store and remove
objects from the cache. Squid creates an entry for each object it stores
in the cache, each uncacheable object, and each object that is removed
by the replacement policy.
The log file covers both in-memory
I found out why.
If i go direct to
http://llnw.blizzard.com/hs-pod/beta/EU/4944.direct/Updates/hs-6187-6284-Win_deDE-final.MPQ
it works (without proxy).
If i enable proxy, it wont work and i get 503.
BTW i upgraded to Squid Cache: Version 3.3.8
--
View this message in context:
Ideally you should upgrade to 3.4.4 or higher. I was able to download the
file just fine through my transparent squid. 503 error is odd, this is an
indication of a server side issue but I realize it is coming from squid.
Amos, any ideas?
-Original Message-
From: nuhll
Personally I have found that the latest generation of Next Generation Firewalls
have been doing blocking when they detect a via with a squid header, so I did
the same and that way no-one can detect my cache. The key thing you need to
make sure is that NAT and redirection doesn't go into a loop
Squid is an ICAP server not a client
-Original Message-
From: Jason Haar [mailto:jason_h...@trimble.com]
Sent: Tuesday, August 19, 2014 4:18 PM
To: squid-users@squid-cache.org
Subject: Re: [squid-users] what AV products have ICAP support?
Thanks for that, shouldn't squid be listed
In transparent mode things are working for me just fine including access to
battle.net and using the battle client. Does battle.net support proxy
configurations? i.e. are you putting the squid IP and Port as a proxy for
the client app to use?
-Original Message-
From: nuhll
Sorry, got that backwards, squid is a client, so I guess it should be listed.
-Original Message-
From: Lawrence Pingree [mailto:geek...@geek-guy.com]
Sent: Wednesday, August 20, 2014 10:09 AM
To: 'Jason Haar'; squid-users@squid-cache.org
Subject: RE: [squid-users] what AV products have
Squid is listed as a client
http://www.icap-forum.org/icap?do=productsisClient=checked
-Original Message-
From: Lawrence Pingree [mailto:geek...@geek-guy.com]
Sent: Wednesday, August 20, 2014 10:17 AM
To: 'Jason Haar'; squid-users@squid-cache.org
Subject: RE: [squid-users] what AV
Hello,
thanks for your help.
I own a dhcp server which spread the proxy ip:port to all clients (proxy
settings are default search for) so all programs are using this proxy
automatic for http requests.
I use Linux version 3.2.0-4-amd64 (debian-ker...@lists.debian.org) (gcc
version 4.6.3 (Debian
Some Logs:
== /var/log/squid3/cache.log ==
2014/08/20 19:33:19.809 kid1| client_side.cc(777) swanSong:
local=192.168.0.1:3128 remote=192.168.0.125:62595 flags=1
2014/08/20 19:33:20.227 kid1| client_side.cc(777) swanSong:
local=192.168.0.1:3128 remote=192.168.0.125:62378 flags=1
2014/08/20
Hi,
Using version: Squid Cache: Version 3.1.10 (Centos RPM)
I also have this changes on the OS:
/etc/rc.local
/sbin/modprobe iptable_nat
/sbin/modprobe ip_nat_ftp
/sbin/modprobe ip_gre
/sbin/modprobe ip_conntrack
/sbin/modprobe ip_conntrack_ftp
echo 0 /proc/sys/net/ipv4/tcp_syncookies
echo
I give up. Squid sucks so hard.
New and easier idea:
accel the sites i want to cache.
But how? Information about this is crazy much
http://wiki.squid-cache.org/SquidFaq/ReverseProxy
But how to cache?
#
#Recommended minimum configuration:
#
debug_options ALL,1 33,2
# Example rule allowing
On Wednesday 20 August 2014 at 21:08:03 (EU time), nuhll wrote:
accel the sites i want to cache.
But how? Information about this is crazy much
http://wiki.squid-cache.org/SquidFaq/ReverseProxy
But how to cache?
Simple answer - with a caching proxy server.
Longer answer - accelerator
I have set up a delay pool in order to restrict bandwidth to a specific
client, and it works just fine. That client starts downloading multiple big
files, and the bandwidth consumed is limited as set up. But... when this
client goes to youtube and starts viewing hd videos, the bandwidth consumed
On Wednesday 20 August 2014 at 22:14:06 (EU time), fpap wrote:
I have set up a delay pool in order to restrict bandwidth to a specific
client, and it works just fine. That client starts downloading multiple big
files, and the bandwidth consumed is limited as set up. But... when this
client
why are you using unbound for this at all?
Well, we use a geo location service much like a VPN or a proxy.
For transparent proxies, it works fine, squid passes through the SSL
request and back to the client.
For VPN, everything is passed through.
But with unbound, we only want to pass through
On 21/08/2014 7:22 a.m., Antony Stone wrote:
On Wednesday 20 August 2014 at 21:08:03 (EU time), nuhll wrote:
accel the sites i want to cache.
But how? Information about this is crazy much
http://wiki.squid-cache.org/SquidFaq/ReverseProxy
But how to cache?
Simple answer - with a
On 21/08/2014 5:29 a.m., nuhll wrote:
Hello,
thanks for your help.
I own a dhcp server which spread the proxy ip:port to all clients (proxy
settings are default search for) so all programs are using this proxy
automatic for http requests.
Not quite. Only the applications which obey DHCP
On 19/08/2014 3:42 a.m., nuhll wrote:
Just to clarify my problem: I dont use it as a transparente proxy! I
distribute the proxy with my dhcp server and a .pac file. So it gets used on
all machines with auto detection proxy
Your earlier config file posted contained:
http_port
On 21/08/2014 5:33 a.m., nuhll wrote:
Some Logs:
These logs are showing a problem...
== /var/log/squid3/cache.log ==
2014/08/20 19:33:19.809 kid1| client_side.cc(777) swanSong:
local=192.168.0.1:3128 remote=192.168.0.125:62595 flags=1
2014/08/20 19:33:20.227 kid1| client_side.cc(777)
On 21/08/2014 8:59 a.m., sq...@proxyplayer.co.uk wrote:
why are you using unbound for this at all?
Well, we use a geo location service much like a VPN or a proxy.
For transparent proxies, it works fine, squid passes through the SSL
request and back to the client.
For VPN, everything is
On 21/08/2014 6:05 a.m., Délsio Cabá wrote:
Hi,
Using version: Squid Cache: Version 3.1.10 (Centos RPM)
Ah. The version itself is probably most of the prooblem.
3.1 does not cache traffic with Cache-Control:no-cache, which these days
consists of a large percentage (30-40) of all traffic.
On 21/08/2014 5:08 a.m., Lawrence Pingree wrote:
Personally I have found that the latest generation of Next Generation
Firewalls have been doing blocking when they detect a via with a
squid header,
Have you been making bug reports to these vendors?
Adding Via header is mandatory in HTTP/1.1
No, I mean they are intentionally blocking with a configured policy, its not a
bug. :) They have signatures that match Via headers and forwarded for headers
to determine that it's squid. This is because many hackers are using bounces
off open squid proxies to launch web attacks.
-Original
Nuhll,
Just use the following config and point your clients to port 8080 on the
squid ip. The ONLY thing you really should change with this configuration is
the IP addresses, the hostname or add file extensions to the
refresh_patterns. It should work!
#
#Recommended minimum configuration:
#
which one?
It's client -- unbound -- if IP listed in unbound.conf -- forwarded
to proxy -- page or stream returned to client
For others it's client -- unbound -- direct to internet with normal DNS
On 21/08/2014 2:23 p.m., Lawrence Pingree wrote:
No, I mean they are intentionally blocking with a configured policy,
its not a bug. :) They have signatures that match Via headers and
forwarded for headers to determine that it's squid. This is because
many hackers are using bounces off open
On 21/08/2014 2:37 p.m., sq...@proxyplayer.co.uk wrote:
which one?
It's client -- unbound -- if IP listed in unbound.conf -- forwarded
to proxy -- page or stream returned to client
For others it's client -- unbound -- direct to internet with normal DNS
Replace forwarded to proxy with IP
34 matches
Mail list logo
