Sorry, this is part of my config
###Kerberos Auth with ActiveDirectory###
auth_param negotiate program /lib64/squid/negotiate_kerberos_auth -s
HTTP/squid.domain@domain.lan
auth_param negotiate children 45 startup=0 idle=1
auth_param negotiate keep_alive on
external_acl_type i-full %LOGIN /us
On 27/09/17 02:59, erdosain9 wrote:
but, why so slow then???
What is so slow *exactly*?
The report you posted only tells about the initial lookups. Not the
cached or pipelined results.
Amos
___
squid-users mailing list
squid-users@lists.squid-ca
but, why so slow then???
"
For Negotiate and NTLM the credentials are supposed to be unique per
connection, so each TCP connection requires separate lookup. But
followup pipelined requests on a connection should not need auth helper
lookups as they share the already authenticated credentials.
*gr
On 27/09/17 01:57, erdosain9 wrote:
Hi.
Thanks.
But there is some Time to live, for config in the squid, so the service is
not asking every time for authenticate??
For Negotiate and NTLM the credentials are supposed to be unique per
connection, so each TCP connection requires separate lookup.
Hi.
Thanks.
But there is some Time to live, for config in the squid, so the service is
not asking every time for authenticate??
Thanks!
--
Sent from:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html
___
squid-users mailing
On 26/09/17 17:59, Eliezer Croitoru wrote:
Hey,
How about using a local bind\unbound DNS server that has a forwarding zone
defined only for the local domains?
For me it's a bit hard to understand the root cause for the issue but this is
the best solution I can think about.
If you need some hel
Hey,
How about using a local bind\unbound DNS server that has a forwarding zone
defined only for the local domains?
For me it's a bit hard to understand the root cause for the issue but this is
the best solution I can think about.
If you need some help about with bind\unbound DNS configurations
