On 6/02/2015 6:10 p.m., Luis Miguel Silva wrote:
Dear all,
I recently compiled squid-3.4.9 with ssl-bump support and, although it is
working for the most part, I'm having some issues accessing some websites.
The behavior is REALLY weird so I'm going to try and describe it the best I
can:
Hello Yuri!
Only before Squid - using Cisco or something like.
Either Cisco acl's, or NBAR protocol discovery.
is there a way to implement a sort of layer 7 for hotshield vpn (or ultrasurf)
working on Linux?
Thank you again!
Francesco
___
squid-users
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I'm not using linux. :)
Layer 7 filtering requires application-level proxy or DPI. We talking
about filtering, isn't it?
On Cisco this task requires a bit investigation (sniffing and
tcpiputils.com) and simple add some ACL's:
ip access-list
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
First. Where is you cache can found openssl public CA certs? To validate
connection from cache to server Squid must see root authority CA's.
I.e (from my configuration. Note: all google services bumped and works
perfectly):
https_port 3129
On 06.02.2015 20:38, Amos Jeffries wrote:
On 7/02/2015 8:27 a.m., Amos Jeffries wrote:
On 7/02/2015 8:19 a.m., Walter H. wrote:
the file blockurls-regex-acl.squid
contains e.g.
^http:\/\/s[0-9]\.domain\.tld\/
the file allowurls-regex-acl.squid
contains e.g.
Hello,
my squid.conf contains the following lines - in this order ...
acl allow_urlpaths urlpath_regex -i
/etc/squid/allowurlpaths-regex-acl.squid
acl block_urlpaths urlpath_regex -i
/etc/squid/blockurlpaths-regex-acl.squid
acl allow_urls url_regex -i /etc/squid/allowurls-regex-acl.squid --
On 7/02/2015 8:27 a.m., Amos Jeffries wrote:
On 7/02/2015 8:19 a.m., Walter H. wrote:
the file blockurls-regex-acl.squid
contains e.g.
^http:\/\/s[0-9]\.domain\.tld\/
the file allowurls-regex-acl.squid
contains e.g.
^http:\/\/s[1-2]+\.domain\.tld\/[a-z0-9\_\-\.]+\.gif
the purpose should
Any comments?
Thanks
-Mensaje original-
De: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] En nombre de
Ortega Gustavo Martin
Enviado el: miércoles, 04 de febrero de 2015 03:05 p.m.
Para: squid-users@lists.squid-cache.org
Asunto: [squid-users] The SSL certificate
On Friday 06 February 2015 at 22:54:54 (EU time), Luis Miguel Silva wrote:
As I started playing around with transparent ssl proxying, I learned that
Chrome uses an alternate communication (UDP based) protocol called QUIC.
I'd never heard of QUIC, and http://en.wikipedia.org/wiki/QUIC doesn't
Good morning Amos,
here is my squid.conf, basic_db_auth script and the shell test.
thanks a lot for your interesting and help.
TEST MADE FROM VIA ssh CONNECTION TO MY LAMP SQUID SERVER (ssh
ignazio@192.168.2.1)
$ sudo /usr/lib/squid3/basic_db_auth --user root --password rootpasswd --md5
--cond
Antony,
*Comments inline!*
Thanks,
Luis
On Fri, Feb 6, 2015 at 3:58 PM, Antony Stone
antony.st...@squid.open.source.it wrote:
On Friday 06 February 2015 at 22:54:54 (EU time), Luis Miguel Silva wrote:
As I started playing around with transparent ssl proxying, I learned that
Chrome uses
Actually I am unable to mail to squid-dev. Thus asking here.
How/where does squid open the network interface and starts listening on
them.
Regards
On Fri, Feb 6, 2015 at 12:57 PM, Priya Agarwal priyaiitma...@gmail.com
wrote:
Hi,
I needed some direction again. I also need to know where in the
Dear all,
This isn't entirely a squid question but more like a transparent proxying
question (which I'm hoping you guys will be able to help me with)...
As I started playing around with transparent ssl proxying, I learned that
Chrome uses an alternate communication (UDP based) protocol called
2) Due to the above problem I configured an access control via
htpasswd
using basic_ncsa_auth.
In this case, after the required credentials and the correct
insertion squid
gives me access to the internet.
Now the question is: can I have the credentials expire after a
certain time?
I
I'm not using authentication (the proxy doesn't require any login/password).
I'm using icap (for clamav).
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
On 6/02/2015 11:43 a.m., Ignazio Raia wrote:
This post has NOT been accepted by the mailing list yet.
Hello everyone,
I installed a Squid proxy server and it works perfectly.
I have two questions to ask about the authentication process.
1) I configured the basic_db_auth, but the browser
On 6/02/2015 9:32 p.m., Amos Jeffries wrote:
On 6/02/2015 6:10 p.m., Luis Miguel Silva wrote:
Dear all,
I recently compiled squid-3.4.9 with ssl-bump support and, although it is
working for the most part, I'm having some issues accessing some websites.
The behavior is REALLY weird so I'm
@FrebB:
I really don't know what identification helper is (I'm not a squid
guru, please explain or drop a link).
I'm on firefox 31.4.0esr (slackware linux 13.1).
I mean Authentication from Squid, a pop-up with account (login and password)
@Eliezer:
As FredB said, the issue comes
On 6/02/2015 10:23 a.m., l...@technomicssolutions.com wrote:
Actually, I have multiple websites and some using Google Analytics and some
uses Adobe. That is why I concentrated on SquidProxy as it logs corresponding
entries for all types of analytics. Just to make a analytics independent, can
I have the following scenario:
We have a number of Verizon Aps configured to run associated devices through a
GRE
tunnel between Verizon and our network, using a 10.99.0.0/16 subnet which
is NATed to a public address. Policy based routing sends all
port 80 and 443 traffic originating from
On 6/02/2015 8:59 p.m., Josep Borrell wrote:
Hi,
I have a squid box with two interfaces. One ADSL 20/1Mb and one SHDSL 4/4Mb.
It is a school and they are working with Google Apps for Education.
They do a lot of uploading and when using the ADSL, it collapses promptly.
Is possible to derive
On 7/02/2015 3:37 a.m., Raymond Norton wrote:
I have the following scenario:
We have a number of Verizon Aps configured to run associated devices
through a GRE
tunnel between Verizon and our network, using a 10.99.0.0/16 subnet which
is NATed to a public address. Policy based routing
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I have one ;)
http://i.imgur.com/VaPu6pq.png
06.02.2015 21:15, Amos Jeffries пишет:
On 7/02/2015 3:37 a.m., Raymond Norton wrote:
I have the following scenario:
We have a number of Verizon Aps configured to run associated devices
through
23 matches
Mail list logo
