Is there any way of making DNS Lookup errors in ACLs a warning only?
2016/09/19 13:00:14| aclIpParseIpData: Bad host/IP: 'cfmww-v-it-17.charite.de'
in 'cfmww-v-it-17.charite.de', flags=0 : (-2) Name or service not known
2016/09/19 13:00:14| Not currently OK to rewrite swap log.
2016/09/19
Hi all
In my environment I have two Squid clusters that comprise of 4 VM's each, load
balanced over a F5 LB. I will refer to them as cluster A (client facing) and
cluster B(edge proxies). Depending on the destination, the traffic is routed
from cluster A via ISP 1 or to cluster B via ISP 2. I
On 09/21/2016 03:13 AM, Ralf Hildebrandt wrote:
> Is there any way of making DNS Lookup errors in ACLs a warning only?
Only by modifying the code I am afraid. And we probably cannot do that
by default because it can be a security risk in some environments.
Alex.
Hi, can you please explain me, does squid support ssl bumping with site
signed with GOST certificate?
I have OpenSSL 1.0.2d 9 Jul 2015
openssl engine
(dynamic) Dynamic engine loading support
*(gost) Reference implementation of GOST engine*
*openssl ciphers | grep GOST*
On 09/21/2016 07:53 AM, Jasper Van Der Westhuizen wrote:
> I have been having some problems with Squid using
> 100% CPU at times which impacts my users browsing experience.
Sustained 100% CPU load at ~100/s rates with regular traffic on
reasonable hardware is a sign (albeit not a proof!) of a
Dear, just a brief question:
I have Squid 3.4.8 on Debian running in reverse proxy mode, and I need
to know if there is any parameter in squid.conf that I have to adjust
in order to define the quantity of clients I will accept.
Or is the same if the squid receives 10 or 1.000.000 petitions at
Best Regards,
Hi, can you please explain me, does squid support ssl bumping with site
signed with GOST certificate?
I have OpenSSL 1.0.2d 9 Jul 2015
openssl engine
(dynamic) Dynamic engine loading support
*(gost) Reference implementation of GOST engine*
*openssl ciphers | grep GOST*
On 22/09/2016 5:34 a.m., Antony Stone wrote:
> On Wednesday 21 Sep 2016 at 17:03, Roberto Carna wrote:
>
>> Dear, just a brief question:
>>
>> I have Squid 3.4.8 on Debian running in reverse proxy mode, and I need
>> to know if there is any parameter in squid.conf that I have to adjust
>> in
On 22/09/2016 1:41 a.m., Сергин Александр wrote:
> Hi, can you please explain me, does squid support ssl bumping with site
> signed with GOST certificate?
>
The crypto details in squid.conf are almost always passed directly to
the crypto library. So Squid supports what the library does. I don't
On Wednesday 21 Sep 2016 at 17:03, Roberto Carna wrote:
> Dear, just a brief question:
>
> I have Squid 3.4.8 on Debian running in reverse proxy mode, and I need
> to know if there is any parameter in squid.conf that I have to adjust
> in order to define the quantity of clients I will accept.
On 21/09/2016 4:09 p.m., Chuong Hoang wrote:
> Hi guys, thanks for reading this! I’m new so sorry if this is a dumb
> question! But I've been finding the answer for 3 days but still no
> sign of light.
>
> I’ve already posted the problem on GCE discussion group- this link:
>
Hello,
i am looking for a proxy which can "bounce" the request, which is not a
classic proxy.
I want it works in this way.
e.g. a proxy is running a 192.168.1.1
and when i want to open www.yahoo.com, i just need call
http://192.168.1.1/www.yahoo.com
the proxy can pickup the the host
HI Experts,
I'm struggling to get squid to work the way i need it to.
My setup :
1x Server : Ubuntu 14
3x Interfaces : 1x Inside ( 192.168.100.10 ) 2x Outside connected to DSL
(1st = 10.0.0.2, 2nd 10.0.1.2)
2x default routes : 1x for each DSL link
Management uses proxy address :
> i am looking for a proxy which can "bounce" the request, which is not a
> classic proxy.
>
> I want it works in this way.
>
> e.g. a proxy is running a 192.168.1.1
> and when i want to open http://www.yahoo.com, i just need call
> http://192.168.1.1/www.yahoo.com
> the proxy can pickup the
On 20.09.2016 15:20, Silamael wrote:
> Ok, found one problem. Under OpenBSD I had some hack that the external
> helper was linked against libbind (the bind resolver library) instead of
> libc (as the helper uses some defines which have different names in the
> OpenBSD libc). This caused that the
> Hi Fred,
> I assume that by "implicit" you mean "transparent" or
> "interception". Short answer, not possible: there is nothing to
> anchor
> cookies to. It could be possible to fake it by having an auxiliary
> website doing standard SAML and feeding a database of associations
> userid-ip. It
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Joined.
22.09.2016 2:46, joe пишет:
> is there a support for libevent in squid ???
>
>
>
> --
> View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/libevent-tp4679637.html
> Sent from the Squid - Users mailing list
almost most of internet app like dns and other cache using it its the
futur so why not squid it perform beter stability and speed
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/libevent-tp4679637p4679639.html
Sent from the Squid - Users mailing list
Hi.
Kerberos authentication is working now .
This is my config
###Kerberos Auth with ActiveDirectory###
auth_param negotiate program /lib64/squid/negotiate_kerberos_auth -d -s
HTTP/squid.example@example.lan
auth_param negotiate children 10
auth_param negotiate keep_alive on
acl
On 09/21/2016 03:01 PM, joe wrote:
> almost most of internet app like dns and other cache using it its the
> futur so why not squid
because nobody added libevent support to Squid.
> it perform beter stability and speed
Better than what? And what makes you think that?
Most Squid performance
is there a support for libevent in squid ???
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/libevent-tp4679637.html
Sent from the Squid - Users mailing list archive at Nabble.com.
___
squid-users mailing list
21 matches
Mail list logo