Thanks!it works!!!but... have this strange behavior in
access.log1470835274.046896 192.168.1.172 NONE/200 0 CONNECT
mail.google.com:443 - HIER_DIRECT/172.217.28.229 -1470835274.569521
192.168.1.172 TCP_MISS/204 406 GET https://mail.google.com/mail/gxlu? -
but, its possible to do with this version?? (3.3.8) i have CentOs 7 and
thats the official packet.
thanks
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
I want to limit the bandwidth for youtube, so I want to intercept https
connections. I followed several tutorials and can not. Could someone give
me a hand ?? Thanks to all.
this is my squid.conf
# Squid listen Port
http_port 192.168.1.215:3128 ssl-bump generate-host-certificates=on
Hi to all.
I keep trying to achieve inspect https. I think I'm close to doing. This is
my current configuration relative to ssl-bump.
-
# Squid listen Port
http_port 192.168.1.215:3128
https_port 3129 intercept ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=4MB
Hi
Squid configured to authenticate with AD with LDAP. this is the relevant
configuration.
# Active Directory
auth_param basic program /usr/lib64/squid/basic_ldap_auth -R -b
"cn=Users,dc=example,dc=lan" -D sq...@example.lan -w pass -f
sAMAccountName=%s -v 3 -s sub -h 192.168.1.60
auth_param
Hi, again.
Well i installed squidclamav, c-icap, and clamav; and its working all fine,
but... the download is too slow, the download of a file. There is a way to
accelerate this??
Also, when the file its a virus, the message "this is a virus bla bla", go
fast... i mean the slow download its for
Hi,
I'm having this problem:
if i reload the service (systemctl reload squid)... the service failed and
dont reload... but, if i do systemctl start squid, all is working fine...
this begin to happend after a bad reboot... (and after the bad reboot, squid
dosent work for a moment giving this error:
Hi, no
[root@squid ~]# df -h
S.ficheros Tamaño Usados Disp Uso% Montado en
/dev/mapper/centos-root48G16G 33G 32% /
devtmpfs 896M 0 896M 0% /dev
tmpfs 906M 2,1M 904M 1% /dev/shm
tmpfs 906M 8,5M
Hi to all.
Im a little confuse about this... i just want "antivirus", i dont care block
some web, filter, etc. (at least no more that what i get with squid)... so,
just for antivirus, what recommend???
clamav
squidclamav
squidguard
Somebody have a tutorial to install something of this on
Ok, thanks.
But something more its wrong look up this:
[root@squid ips]# squid -k restart
squid: ERROR: Could not send signal 21 to process 8083: (3) No such process
[root@squid ips]# squid -k shutdown
squid: ERROR: Could not send signal 15 to process 8083: (3) No such process
[root@squid
Hi, again.
Now, i do this
[root@squid ips]# ps aux | grep squid
root 2228 0.0 0.0 130900 344 ?Ss ene24 0:00
/usr/sbin/squid -sYC
squid 2230 6.2 64.9 1341864 1205160 ? Rene24 263:30 (squid-1)
-sYC
squid 2231 0.4 0.1 68196 1948 ?Sene24 20:35
:-)
lol
This is the krb5.conf in the AD.
[libdefaults]
default_realm = EPRUEBA.LAN
dns_lookup_realm = false
dns_lookup_kdc = true
~
just that.
the admin of the AD, tell me that squid need to authenticate with Kerberos
to have all other
Hi.
Could give me a link for configuring Kerberos (Heimdal) ???.
I can not find tutorials about it.
Thanks!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/AD-Ldap-automatically-take-the-user-that-is-logging-on-PC-tp4678994p4679045.html
Sent from the Squid
For eg., in all the config that i read is necessary a file call something
like squid.keytab...
its possible just make a user in AD like "squid", and then just log the
squid in the Ad??? or is mandatory generating this file???
thanks
--
View this message in context:
Hi. Im having problems with Kerberos.
I cannot do the keytab...
kinit squid (all good)
-
klist
Ticket cache: FILE:/tmp/krb5cc_0
Default principal: sq...@xxx.lan
Valid starting Expires
lol
no, for all the ACL.
vip and control...
that no users need to enter username and password ... (only to log on to the
PC, but do not have to put username and password in the browser)..
for all.
(i dont speak english.)
--
View this message in context:
PLEASE HELP!
I probe this
" You can use debug_options 11,2 to see the HTTP message headers and
figure it out"
and now i cant stop the debug??? i have a big big access.log... i cannot
stop the debug.
--
View this message in context:
Hi to all.
Im having problem with the
web.whatssap.com
and with Dropbox client...
There is a way to exclude this things from the proxy???
Thanks!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Web-Whatsapp-Dropbox-problem-tp4679299.html
Sent from the
Finally i update to squid 3.5 and try the acl with dstdomain
Craddock, Tommy wrote
> Hello,
> Create an ACL that will be a list of domains, either in the ACL or in a
> txt file that the ACL refers to, and place any URLs you want bypassed by
> the proxy into the ACL. Something like this:
> ACL
Ok,thanks!
But something is wrong with my config
I dont have almost no users... (because is proxy testing) and i have too
many download avg.
Look , this is Torch to the ip of proxy, to see whats going on...
Hi.
A query. Sslbump is possible without installing the certificate, machine by
machine ???
Is there any way that this certificate Squid SUBMIT ??
sorry for my english.
Thanks!
--
View this message in context:
"I believe he wants a mechanism for squid to be able to provide the fake CA
certificate to the browser"
Exactly. ok, no possible then.
Thanks
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/ssl-bump-certificate-question-tp4679409p4679413.html
Sent
hi.
Thanks
but, now im using ssl-bump with squid 3.3.8 is there a possibility that work
web.whatsapp and drobpox with this version, or at least exclude them from
the "proxy"???
Thanks
--
View this message in context:
Thanks.
But...
I'm misunderstanding ?
Tx , is not the download?
I think it works this way in the mikrotik . That is, the transmission would
be the " download "
--
View this message in context:
By the way...
I have this on log
https://fbcdn-video-k-a.akamaihd.net/hvideo-ak-xat1/v/t42.1790-2/12094265_992502374146158_1776024195_n.mp4?
- HIER_DIRECT/204.2.178.146 -
i do not know how to use https://regex101.com/
it will be like
akamaihd\.net\/v\/(.*\.mp4)\?
Thanks.
--
View this
Hi.
Im using ssl-bump.. all ir working fine, but i want to know if it is
possible that which is not seen crossed out and red "https".
This happen just in Chrome
This page is insecure (broken HTTPS)
SHA-1 Certificate
The certificate for this site expires in 2017 or later, and the certificate
chain
Ok.
Access.log
1473352640.832514 192.168.1.172 TCP_MISS/200 527 GET
https://web.whatsapp.com/status.json - HIER_DIRECT/31.13.85.51 text/json
1473352642.737290 192.168.1.172 TCP_MISS/404 464 GET
https://web.whatsapp.com/404.appcache - HIER_DIRECT/31.13.85.51 text/html
1473352643.237143
I cant believe how good is your help! (that you look my config in the other
post)
Thanks!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/squid-TCP-DENIED-403-tp4679435p4679439.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Hi,
If i go to http://affiliates.digitalriver.com/z/36067/CD109988 squid tell me
ACCESS DENIED. I look the access.log and yes... is
1473428538.203 0 192.168.1.17 TCP_DENIED/403 4032 GET
http://affiliates.digitalriver.com/z/36067/CD109988 - HIER_NONE/- text/html
But, i dont have any denied
But... now that i think... there is a way to prevent this?? because, i see
now that this is the "real" link... i mean, i wrote
http://www.vladan.fr/recommends/essentials
then i get "ACCES DENIED" with that web
(http://affiliates.digitalriver.com/z/36067/CD109988)
but, should go too
Hi
I keep having problem...
i put this on squid.conf
acl excludeSSL ssl::server_name .whatsapp.com
ssl_bump splice excludeSSL
ssl_bump peek all
ssl_bump bump all
but, nothing same behavior...
--
View this message in context:
Hi.
If i put
acl step1 at_step SslBump1
acl excludeSSL ssl::server_name_regex web/.whatsapp/.com
ssl_bump peek step1
ssl_bump splice excludeSSL
ssl_bump bump all
I dont get nothing about web.whatsapp.com in access.log
But if i change config to
ssl_bump stare all
ssl_bump bump all
I get
Thanks.
There you have
# Recommended minimum configuration:
#
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
#acl localnet src 10.0.0.0/8# RFC1918 possible internal network
#acl localnet src
HI.
I want Single Sing on... i want can take groups to assing acl and control
bandwith, etc.
I need ldap??? i know i need kerberos to sso... but is necessary ldap for
take groups??? or with kerberos i can "take" groups??
by the way,
i probe this
basic_ldap_auth -R -b
Hi.
Sorry but... dont work...
In the chrome i get this
Creating Application Cache with manifest
https://web.whatsapp.com/404.appcache
web.whatsapp.com/:1 Application Cache Checking event
web.whatsapp.com/:1 Application Cache Error event: Manifest fetch failed
(404)
It is only my pc in the proxy. So , see the access.log is simple ... really ,
no more information than copied.
.either way, the website never finish loading
--
View this message in context:
Hi.
What's your squid version??
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Cannot-get-ACL-to-work-tp4679502p4679520.html
Sent from the Squid - Users mailing list archive at Nabble.com.
___
squid-users mailing
Hi, thanks
With
acl step1 at_step SslBump1
acl excludeSSL ssl::server_name_regex web/.whatsapp/.com
ssl_bump peek step1
ssl_bump splice excludeSSL
ssl_bump bump all
I dont get nothing about web.whatsapp.com in access.log
except this, a lot of time after i close the tab window of web
Hi.
Another question in reference to this topic off delay pools.
if i have "internet-limitation" (a group with 100kb for all webs) and i want
that users of that group have different youtube bandwith... is this
posible??
I need to do another group with the user of that group that i want
so... any advice about this??
Thanks!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Kerberos-appropriate-log-file-tp4679740p4679901.html
Sent from the Squid - Users mailing list archive at Nabble.com.
___
Ok,
Well i have this settings
-
*cat /etc/sysconfig/squid
*# Kerberos autenticacion
KRB5_KTNAME=/etc/squid/PROXY.keytab
export KRB5_KTNAME
# # default squid options
Thank you very much. Sorry but ... also he authenticated with Kerberos ?? or
only Ldap ?? Because the important thing for me is Kerberos.
APOLOGY ignorance about it.
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/SSO-ldap-kerberos-tp4679470p4679542.html
mm
so...
i think this is working for non take the certificate
acl step1 at_step SslBump1
acl excludeSSL ssl::server_name_regex web/.whatsapp/.com
ssl_bump peek step1
ssl_bump splice excludeSSL
ssl_bump bump all
but, anyway something more is happening because well... dosent
Hi,
Thanks a lot.
But, i really dont get something...
about delay pools
you tell me that
Amos Jeffries wrote
> Note: requests which match the "redes_sociales adminis" ACLs have BOTH
> pool #1 and pool #4 restrictions applied to them.
>
> Note: requests which match the "stream adminis" ACLs
So, i have a little more of info
this is config
###Kerberos Auth with ActiveDirectory###
auth_param negotiate program /lib64/squid/negotiate_kerberos_auth -d -s
HTTP/squid.example@example.lan
auth_param negotiate children 10
auth_param negotiate keep_alive on
#acl auth
Hi,
Im having this error randomly.
This is traying access google.com
The following error was encountered while trying to retrieve the URL:
https://www.google.com.ar/*
Failed to establish a secure connection to 172.217.28.227
The system returned:
(71) Protocol error (TLS code:
Hi.
I have this in cache.log
Starting new ssl_crtd helpers...
2016/09/20 16:30:15 kid1| helperOpenServers: Starting 1/8 'ssl_crtd'
processes
2016/09/20 16:30:15 kid1| Error negotiating SSL on FD 28: error:1409F07F:SSL
routines:SSL3_WRITE_PENDING:bad write retry (1/-1/0)
2016/09/20 16:30:16 kid1|
Hi.
Kerberos authentication is working now .
This is my config
###Kerberos Auth with ActiveDirectory###
auth_param negotiate program /lib64/squid/negotiate_kerberos_auth -d -s
HTTP/squid.example@example.lan
auth_param negotiate children 10
auth_param negotiate keep_alive on
acl
so.. there is no way to do that with ldap?
:-(
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/AD-Ldap-automatically-take-the-user-that-is-logging-on-PC-tp4678994p4679001.html
Sent from the Squid - Users mailing list archive
Hi.
Im trying to configure SSO (single sing on) with Kerberos.
I have this error
[root@squid squid]# kinit administrator
Password for administra...@xxx.lan:
Warning: Your password will expire in 28 days on mié 21 sep 2016 12:20:39
ART
[root@squid squid]# msktutil -c -b "CN=COMPUTERS" -s
... and a last thing with this theme of limit video. for
facebook?
what would be the sysntax???
(i get this on log
https://video-yyz1-1.xx.fbcdn.net/v/t42.1790-2/14194700_1292914777409287_1273911953_n.mp4?
- HIER_DIRECT/31.13.80.9 video/mp4
)
Thanks
--
View this
Hi.Thanks
Yes i have a delay pool pointing to googlevideo.com and its working... but,
it's strange because... look this.
The proxy for now is being tested. And I have very few users (ip) in the
proxy.
So i have this delay pool and acl.
http_access allow localhost
http_access allow administration
Thats ok i dont want to give more Bandwith, and im not interest in caching
video.
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Limit-Bandwith-for-youtube-tp4679182p4679201.html
Sent from the Squid - Users mailing list archive at Nabble.com.
I have ssl-bump enable... I guess "quic" is not the problem.
In fact, in the pc, yes, the video slows down ... however, bandwidth,
showing the Proxy in the mikrotik is excessive ..
(sorry I do not speak English)
My delay pools are fine?
--
View this message in context:
Hi.
I have too much traffic to this ip 190.61.17.9 i really dont know what
it is... so i want to block that ip.
How i can do this?
Thanks!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Block-access-to-a-ip-external-tp4679184.html
Sent from the Squid -
Hi im doing bump.
all is working fine except that i have this error in log
49484.020 0 192.168.1.17 NONE/200 0 CONNECT www.facebook.com:443 -
HIER_NONE/- -
1472149484.225 1644 192.168.1.2 TCP_MISS/200 1493 POST
https://outlook.live.com/owa/ev.owa2? - HIER_DIRECT/132.245.61.50
I have a lot of
"NONE/200".. that's an error i guess.
or not??
Thanks
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Strange-log-https-problem-tp4679179p4679192.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Hi.
I have thought to have several delay pools but I doubt whether this is the
right way.
Eg.
I want to give to the "administration" 512kb in total, to be distributed
among 8 users.
Give the "video editing area" a total of 1000KB to divide among 8 users.
I want to limit the bandwidth dedicated to
Hi.
Sorry for my ignorance, but, i have squid authentication with kerberos...
all is working fine...
but i have some behavior in cache.log that... i dont know if this is the
expected, or there is some problem
because the file is going to be huge as put the squid in production ... this
is
#Pools para ancho de Banda
delay_pools 3
###VELOCIDAD PARA REDES SOCIALES
delay_class 1 1
delay_parameters 1 1/10
delay_access 1 allow adminis redes_sociales !stream
delay_access 1 deny all
#Limitar Video Streaming a 20k
delay_class 2 1
delay_parameters 2 2/10
Hi.
squid 3.5.20
Im having a lot of these in cache.log
2016/10/18 10:36:11 kid1| DiskThreadsDiskFile::openDone: (2) No such file or
directory
2016/10/18 10:36:11 kid1| /var/spool/squid/00/92/92E9
2016/10/18 10:36:14 kid1| DiskThreadsDiskFile::openDone: (2) No such file or
directory
Yes.
cache_dir aufs /var/spool/squid 10 16 256
cache_mem 256 MB
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Error-DiskThreadsDiskFile-openDone-2-No-such-file-or-directory-tp4680142p4680149.html
Sent from the Squid - Users mailing list archive at
By the way...
When i get this error
2016/10/24 12:13:36 kid1| ipcacheParse: No Address records in response to
'client.wns.windows.com'
2016/10/24 12:13:36 kid1| ipcacheParse: No Address records in response to
'client.wns.windows.com'
2016/10/24 12:13:36 kid1| ipcacheParse: No Address records
Hi.
The squid was working perfect... but, i need to change the router (for some
problems). So im using a Juniper Firewall like router...
So, now i have this error
2016/10/24 12:13:27 kid1| WARNING: All 32/32 ssl_crtd processes are busy.
2016/10/24 12:13:27 kid1| WARNING: 32 pending requests
Hi
Thanks!
Can you guide me on this "Use an helper that will check the status of the
internet connection.
If the Internet is down then redirect to a special error page" ???
--
View this message in context:
HI.
I want have just a "error 404" for all "errors"
Like this
http://www.posicionamientowebysem.com/wp-content/uploads/2013/09/error-404.png
or this
https://www.techtricksworld.com/wp-content/uploads/2015/12/Error-404.png
and no text...
how i can do this??
--
View this message in context:
Hi, yes i want do this
"just want to provide the same error for different codes "
and the web page could be the "error pages" from Chrome.
Thanks
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Just-one-error-page-tp4680631p4680636.html
Sent from the
ok, i have my error page... (just one, like i want).
How i tell squid to uses just that for all errors??
and
I can use that page for all errors of just one ACL??
thanks
--
View this message in context:
mmm,
how i "ist the full list of error pages files and create a symbolic link
from the single one to all the other named that are installed"
by the way, i can use this with just one ACL? and the "regular errors pages"
with another?
im doing this, because we are changing a lot of things (we have
Hi,
for know... how you do
Amos Jeffries wrote
> define some ACL to identify the qtox traffic you might be
> able to splice it.
i mean, that kind of ACL·
Thanks
--
View this message in context:
Hi.
Well, i just want to know if is possible config at the same time Transparent
and No Transparent for different subnets...
Like
192.168.1.0/24 No transparent
192.168.100.0/24-- Transparent
i want this, because i have a net (1.0) that i can manager and other
Ok... but i have this problem
ERROR: NAT/TPROXY lookup failed to locate original IPs on
local=192.168.1.15:3130 remote=192.168.1.1:52090 FD 14 flags=33
...
I put some dstnat in Mikrotik (192.168.1.1)
ip firewall nat add chain=dstnat src-add=192.168.1.121 protocol=tcp
dst-port=80
Thanks.
Anyway i have another issue... when, for example, a web have a bad
certificate... then squid show "the error page of bad certificate and no
connect..."... then i have "oh, fucking proxy". and i want to avoid that
kind of error too... so, i stick with just the same page for all error (if i
Hi
i want to know if it's possible bypass the request that go to a local
server.
Like if im in 192.168.1.15 and want to go to 192.168.1.20 (server) (or from
192.168.1.5 to 192.168.6.10).
I know that this is possible from the web browser configuration, but want to
know if it is possible doing
"It sounds like many of your users have already been trained to think
that"
its exactly like that. If a light bulb break... was the proxy.. if a
chair is broken... was the proxy... so i want for a while at least avoid
this complaints
Thanks
--
View this message in context:
Hi.
Today the users cant go to internet because the web browser asking everytime
the user and pass, constantly.
This is the error in cache.log:
2017/03/01 08:22:16 kid1| ERROR: Negotiate Authentication validating user.
Result: {result=BH, notes={message: gss_accept_sec_context() failed:
Hi.
Now squid stop... abnormaly.
2017/03/01 12:04:31 kid1| helperOpenServers: Starting 5/32 'ssl_crtd'
processes
FATAL: Ipc::Mem::Segment::open failed to
shm_open(/squid-ssl_session_cache.shm): (2) No such file or directory
Squid Cache (Version 3.5.20): Terminated abnormally.
CPU Usage: 0.095
Im having this problem too
mar 01 12:23:37 squid.x.lan squid[17628]: Error negotiating
SSL connection on FD 181: error:1408A0C1:SSL
routines:SSL3_GET_CLIENT_HELLO:no shared cipher (1/-1)
mar 01 12:23:38 squid.x.lan squid[17628]: Error negotiating
SSL connection on
Hi.
It's possible to put the squid server as gateway??? and config to ear in
port 80 instead of 3128? This will work?
Thanks to all.
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-as-gateway-tp4683022.html
Sent from the Squid - Users mailing list
Hi, and thanks.
Maybe i dont explain well.
I just want this:
WanRouter---Squid-switch--PC
I want to declare in "PC" IP, MASK, AND GATEWAY, instead of the WanRouter, i
want that PC have for gateway the ip of the Squid.
I do this by now.
sudo iptables -A PREROUTING -t nat -s
Hi to all.
Im having this warning
2017/07/11 11:37:44 kid1| WARNING: Disk space over limit: 17241692.00 KB >
1536 KB
2017/07/11 11:37:56 kid1| WARNING: Disk space over limit: 16800692.00 KB >
1536 KB
2017/07/11 11:38:07 kid1| WARNING: Disk space over limit: 16466860.00 KB >
1536 KB
Ok Yuri, im re re re reading... :-)
And probe another configs, like this
http://wiki.squid-cache.org/ConfigExamples/Intercept/LinuxRedirect
and nothing, i dont get where i fail.
Squid, it is config in interception mode.
cache.log
2017/07/11 14:15:43 kid1| Accepting HTTP Socket connections
Thanks
Yes, im looking the wiki and follow this
http://wiki.squid-cache.org/ConfigExamples/Intercept/LinuxDnat
And, it is not working. Nothing it is going to squid.
I can go to internet because
# Controls IP packet forwarding
net.ipv4.ip_forward = 1
but, nothing throug squid.
What can be?
Hi, and thanks
The ROUTERWIFI is a TpLink TL-WR940N i dont see in this router any Nat
option :-(
This is the router table of the SquidBox
Kernel IP routing table
Destination Gateway Genmask Flags Metric RefUse
Iface
0.0.0.0 10.1.158.1 0.0.0.0 UG
Hi, and thank you all.
Well this is the diagram.
INTERNET
+
+
FIREWALL (10.1.158.1/24)
+
+
+
SQUID (2 interfaces) 10.1.158.2/24
192.168.1.20/24
+
+
+
ROUTERWIFI( WANstatic ip 192.168.1.40/24 gw 192.168.1.20) LAN
192.168.0.1/24)
squid config:
acl red1 src
Hi.
What's going on here?
Can somebody give me a hand?
I dont make any change so... what's going on??
2017/07/03 12:44:41 kid1| Error negotiating SSL on FD 481:
error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify
fai
led (1/-1/0)
2017/07/03 12:45:38 kid1| Closing HTTP
Hi.
mmm... im having a doubt.
I usually use Systemctl for start, stop, reload, and status; but sometimes i
heard that it was not the best way to do these actions.
Way? I heard something wrong?
And if not the best way, what would it be?
1) squid -z
2) squid
???
And from there, how i can stop and
Hi.
Why you say "This is because you use two commands"?
i use systemctl reload squid. or systemctl stop, start
This is the cache.log
Thanks to all.
2017/07/05 07:41:07 kid1| Error negotiating SSL on FD 161:
error::lib(0):func(0):reason(0) (5/-1/104)
2017/07/05 07:42:29 kid1| Error
Ok, thank you all!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/The-best-way-to-start-stop-reload-status-tp4682998p4683005.html
Sent from the Squid - Users mailing list archive at Nabble.com.
___
squid-users
Hi.
Im having this problem.
may 11 11:26:23 squid..lan squid[32138]: WARNING: All 30/30
negotiateauthenticator processes are busy.
may 11 11:26:23 squid..lan squid[32138]: WARNING: 30 pending requests
queued
may 11 11:26:23 squid..lan squid[32138]: WARNING: Consider increasing
the
how you do the option 1???
Thanks
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/How-to-make-sslbump-ing-more-robust-option-to-continue-tp4682359p4682364.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Hi.
this is my config file
GRUPOS DE IP
acl sin_autenticacion src "/etc/squid/listas/sin_autenticacion.lst"
acl red6 src 192.168.6.0/24
###Kerberos Auth with ActiveDirectory###
auth_param negotiate program /lib64/squid/negotiate_kerberos_auth -s
HTTP/squid.xxx@xxx.lan
Hi.
Can somebody tell why the squid server it's going slow???
top - 15:05:21 up 3:52, 1 user, load average: 0,93, 2,15, 10,85
Tasks: 186 total, 1 running, 185 sleeping, 0 stopped, 0 zombie
%Cpu(s): 1,7 us, 0,5 sy, 0,0 ni, 97,2 id, 0,7 wa, 0,0 hi, 0,0 si, 0,0
st
KiB Mem : 3882708
Sorry now squidclient it's working! was the ipv6.
Thanks!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/WARNING-All-20-20-negotiateauthenticator-processes-are-busy-tp4682362p4682444.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Hi.
The server is serving web pages very slow.
Not related to bandwith of delay pools...
Thanks
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Slow-server-tp4682400p4682440.html
Sent from the Squid - Users mailing list archive at Nabble.com.
And if i do this
http_port 127.0.0.1:3128
The i get this
[root@squid ~]# squidclient -vv mgr:menu
verbosity level set to 2
Request:
GET cache_object://localhost/menu HTTP/1.0
Host: localhost
User-Agent: squidclient/3.5.20
Accept: */*
Connection: close
.
Transport detected: IPv4-mapped and
Thanks, now i have "access denied"...why???
[root@squid ~]# squidclient -vv -h 192.168.1.215 mgr:info
verbosity level set to 2
Request:
GET cache_object://192.168.1.215/info HTTP/1.0
Host: 192.168.1.215
User-Agent: squidclient/3.5.20
Accept: */*
Connection: close
.
Transport detected:
Hi.
Thanks!
We have 100 users... What would you think is a good "auth_param
negotiate children"??
I cant run squidclient
[root@squid ~]# squidclient mgr:negotiate_authenticator
ERROR: Cannot connect to [::1]:3128
[root@squid ~]# squidclient -vv mgr:negotiate_authenticator
verbosity
/utbrE1SqqfBwTvqMYcj74pHTZWDvMUKYP1nf0bZgSALdDEATutes5b0vB12TnyVHz53PC7loe0sDti4761U7djBT5yT9AYBQACGWX2CsOjvNbszTOxHtgG1ry3T45UIomlL5XqcMfUS8fqlpVbEnEfmiFjagWDDdrqntgxaRJmZPTrc8X2yBvexO4UkLo/qsyJbm32N2LjAtP0MhJeHHTOk5PFNrgyG+/lIaikXmCV2pOzeZvcDBYRvUBqgW8pIdjvrw8SUhZarZ65JQNxQ5u409tPiqDRH/3bXQ88+RNnoWD6HzfT2y5+DTUN+mwkNlwBPIgp\n
220
erdosain9 wrote
> ETC
> and 35, someone it's eating...and by the way the first "error" (a
Thanks you all!
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Documentation-for-squidclient-tp4682457p4682464.html
Sent from the Squid - Users mailing list archive at Nabble.com.
___
squid-users mailing list
1 - 100 of 163 matches
Mail list logo