- Mail original -
> De: "Sebastián Goicochea"
> À: squid-users@lists.squid-cache.org
> Envoyé: Mercredi 23 Septembre 2015 19:12:33
> Objet: Re: [squid-users] Lots of "Vary object loop!"
>
>
> Hi FredB,
>
> Do you have collapsed_forwarding in your config?
>
>
> If you want to achieve highest performance it is best to resolve that
> process collision issue. The wrongly indexed entries will be causing
> others to get expired earlier and maybe reduce HIT rate on them.
>
> The (rather large amount of) extra work Squid is doing to cope with
> the
>
any one can share SQUID 3.3.8 config with me ?
i want that config allow only ips range 197.9.x.x and 197.8.x.xi want that
config disallow access to cgi-bin urls too and any good optimisation are welcome
thank you
Can we do that to cache https?
http_port 3128 ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=4MB cert=/usr/local/squid/etc/monkey.pem
2015-09-24 11:24 GMT-03:00 Jorgeley Junior :
> Is it not possible to cache the https due the encryption?
>
> 2015-09-18
Hi support .
Im using my squid as proxy for IPV6
I can use 2000 ips with 2 workers and no problem
The problem is
If I run it with no SMP 1 listenting ports , it works ok and problem
If I run squid with 1 listening port with 2 workers ==>kid timeout
registeration
If I run it
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
24.09.15 7:12, Amos Jeffries пишет:
> On 24/09/2015 2:04 a.m., Yuri Voinov wrote:
>>
>> Through assertion and then restarts squid:
>>
>> 2015/09/23 20:03:25 kid1| Validated 35899 Entries
>> 2015/09/23 20:03:25 kid1| store_swap_size =
So stupid, just a problem with webnoid dstdomain - "."test.fr was needed for
some requests -
acl all-of his a very great feature !
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
On 25/09/2015 2:13 a.m., Yuri Voinov wrote:
>
> 24.09.15 7:12, Amos Jeffries пишет:
>> On 24/09/2015 2:04 a.m., Yuri Voinov wrote:
>>>
>>> Through assertion and then restarts squid:
>>>
>>> 2015/09/23 20:03:25 kid1| Validated 35899 Entries
>>> 2015/09/23 20:03:25 kid1| store_swap_size =
On 25/09/2015 7:13 a.m., Yuri Voinov wrote:
>
> First. This is potentially dangerous. Can you guarantee your proxy never
> has physical/network access by intruders? HTTPS can contain sensitive
> data. You really sure you want problems with users? AS a minimum you
> need protect your proxy at
Hi alex
Thanks for answering me
As I told you
If I use 2k ips with 2 worker , squid works ok If I use 10kbports without SMP ,
squid is ok
With 10K + 2 workers , we have reg timeout
I have already added that key u mentioned below which is :
net.local.dgram.recvspace = 1262144
But I have
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Heh. The same question I've asked early.
Condolences. You can try at your own risk. But B1 security and your
full responsibility.
25.09.15 1:32, Jorgeley Junior пишет:
> So, if my traffic are more https than http there's no need to use
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Absolutely.
25.09.15 2:13, Amos Jeffries пишет:
> Problems with SSL-Bump are more legal related than technical.
-BEGIN PGP SIGNATURE-
Version: GnuPG v2
iQEcBAEBCAAGBQJWBGMTAAoJENNXIZxhPexGd78H/2LyU5wK7nlOgbWUVE2jGUAm
On 09/24/2015 02:10 PM, Ahmad Alzaeem wrote:
> If I use 2k ips with 2 worker , squid works ok If I use 10kbports without SMP
> , squid is ok
> With 10K + 2 workers , we have reg timeout
The bigger (workers * ports) product is, the more likely you are to run
out of the UDS buffer space because
On 25/09/2015 2:15 a.m., FredB wrote:
> Hi,
>
> I have a problem with acl and cache_peer
>
> I'm trying to allow (and deny for others) a list of destinations,
> destinations only used by some browsers with this cache_peer
> Something like this
>
> acl webnoid dstdomain test.fr
>
> acl
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Aha. Good news. This is something already.
25.09.15 1:57, Amos Jeffries пишет:
> On 25/09/2015 2:13 a.m., Yuri Voinov wrote:
>>
>> 24.09.15 7:12, Amos Jeffries пишет:
>>> On 24/09/2015 2:04 a.m., Yuri Voinov wrote:
Through assertion and
On 25/09/2015 8:26 a.m., Alex Rousskov wrote:
> On 09/24/2015 02:10 PM, Ahmad Alzaeem wrote:
>
>> If I use 2k ips with 2 worker , squid works ok If I use 10kbports without
>> SMP , squid is ok
>> With 10K + 2 workers , we have reg timeout
>
> The bigger (workers * ports) product is, the more
On 25/09/2015 4:09 a.m., Alex Rousskov wrote:
>
> The attached patch for Squid v3.3.11 changes the port sharing algorithm
> to minimize memory usage (at the expense of registration time). Please
> see the patch preamble for technical details. The patch worked with 3K
> ports (24 workers * 128
17 matches
Mail list logo