we have one rule that filter the traffic toward private directions, but
sometimes if fails with gateway timeout.
067588792.006 239048 x.x.x.x TCP_MISS/504 7219 GET
http://192.168.0.1/noticias/mail/imgs/blue.gif - NONE/- text/html
1067588792.009 2 x.x.x.x TCP_DENIED/403 6796 GET
On Fri, 31 Oct 2003, Brett Lymn wrote:
Because it can be seen as an interruption to service - squid actually
appears to refuse requests for a short period when it is reconfiguring
some users find that disturbing.
True.. Squid briefly (usually 1ms or less) refuses new connections while
reading
On Fri, 31 Oct 2003, Fritz Mesedilla wrote:
X-Forwarded-For: 192.168.247.21
It got my private ip address. How do I hide this including the line about squid?
Look for forwarded_for in squid.conf.
Regards
Henrik
Hi there,
I am looking for an alternative solution to the Network Appliance Web Caches C760
platform.
Will Squid be a sufficient product for use in an ISP environment?
We currently have over 120million HTTP requests per day with a ful set of
access-control filters.
I need to give
Hi,
How much RAM is in the machine? How fast is the disk (rotational speed
and data rate)?
The machine hardware configuration is:
RAM: 128 MB
Hard disk: 20 GB
P3 1.2 processor
How do I find out the rotational speed data rate?
Looking at your past emails, I see that you are using
Hello,
I'm trying to configure my squid to not do cache, just proxy, but it
seems to have a minimum size...
I know this message already passed here, but I couldn't find them.
So, how can I configure squid to not cache the pages, just proxy ???
Thanks...
I need wb_group to work under samba 3.
Compiling it with the samba 3 libraries give this error_
[EMAIL PROTECTED] winbind_group]# make
source='wb_common.c' object='wb_common.o' libtool=no \
depfile='.deps/wb_common.Po' tmpdepfile='.deps/wb_common.TPo' \
depmode=gcc3 /bin/sh
On Fri, 31 Oct 2003, Stephen Bailey (Backbone Team) wrote:
I am looking for an alternative solution to the Network Appliance Web
Caches C760 platform.
Will Squid be a sufficient product for use in an ISP environment?
Depends on the bandwidth requirements and how many proxy servers you are
On Fri, 31 Oct 2003, Lombardo Federico wrote:
I need wb_group to work under samba 3.
Won't work. wb_group is a Samba-2.X helper.
For Samba-3 you can use the wbinfo_group helper which is Samba version
neutral.
Regards
Henrik
Hi, everybody...
I´m heavi this freak problem...
I´ve setting up a Linux Box as Squid-cahe and gatway
for may network. The problem is:
LAN: 129.12.7.0/24
Gateway/Proxy: -- eth0: 129.12.7.1/24
-- eth1: 129.12.7.2/24
ADSL-Router: 129.12.7.254/24
(see: It´s all in the same
Hello all,
I'm triyng to setup SQUID to work with dansguardian here. But I have
a little problem that my auth scheme must be NTLM, and DansGuardian does
not support it. So, I am make the following scheme:
Network- SQUID1 (NTLM+BASIC) - DansGuardian - SQUID2 - Internet
The problem
Alex Carlos Braga Antão wrote:
Hello,
I'm trying to configure my squid to not do cache, just proxy, but it
seems to have a minimum size...
I know this message already passed here, but I couldn't find them.
So, how can I configure squid to not cache the pages, just proxy ???
Insert a rule allowing IM access before you require authentication
in
http_access.
What would that look like in a squid.conf file?
Right now, I have the following order of acl operator lines:
Your http_access list looks fine. The only reason you should be seeing
a login prompt for IM is if
nikonlinux wrote:
Hi, everybody...
I´m heavi this freak problem...
I´ve setting up a Linux Box as Squid-cahe and gatway
for may network. The problem is:
LAN: 129.12.7.0/24
Gateway/Proxy: -- eth0: 129.12.7.1/24
-- eth1: 129.12.7.2/24
ADSL-Router:
On Fri, 31 Oct 2003, Alex Carlos Braga Antão wrote:
I'm trying to configure my squid to not do cache, just proxy, but it
seems to have a minimum size...
Squid FAQ 4.20 Can I make Squid proxy only, without caching anything?
url:http://www.squid-cache.org/Doc/FAQ/FAQ-4.html#ss4.20
Regards
On Fri, 31 Oct 2003, nikonlinux wrote:
Hi, everybody...
I´m heavi this freak problem...
I´ve setting up a Linux Box as Squid-cahe and gatway
for may network. The problem is:
LAN: 129.12.7.0/24
Gateway/Proxy: -- eth0: 129.12.7.1/24
-- eth1: 129.12.7.2/24
On Fri, 31 Oct 2003, Alex Carlos Braga Antão wrote:
I'm triyng to setup SQUID to work with dansguardian here. But I have
a little problem that my auth scheme must be NTLM, and DansGuardian does
not support it. So, I am make the following scheme:
cache_peer SQUID2 port 1
Henrik I'm sorry to be pedant,
but wbinfo_group is a perl script, I've a lot of users... I'm afraid that
will slow down authentication process, isn't it ?
wb_group is as far tested to be rock stable and fast, is possible to
re-implement it to work on samba 3 ?
Is in roadmap a ntlm_auth for ADS
Thanks again for the help Henrik.
Answers to your questions are below.
On Thursday, October 30, 2003, at 05:57 PM, Henrik Nordstrom wrote:
On Thu, 30 Oct 2003, Jonathan Giles wrote:
in squid.conf in ver. 3, these are the options I have made:
https_port 443 cert=/etc/openssl/cacert.pem
On Fri, 31 Oct 2003, Lombardo Federico wrote:
but wbinfo_group is a perl script, I've a lot of users... I'm afraid that
will slow down authentication process, isn't it ?
Not really. The speed difference is marginal, and in both cases the
results are aggressively cached by Squid.
wb_group is
On Fri, 31 Oct 2003, Jonathan Giles wrote:
1067612977.854 22 10.1.16.100 TCP_MISS/400 262 GET
https://owa.clinedavis.com/exchange -
FIRST_UP_PARENT/owa.clinedavis.com text/html
TCP_MISS means that the page wasn't in the cache, so I should just
ignore it right?
Right.. but the /400
I tried installing the cachemgr.cgi from a stable release,
but it still just redirects me. I've carefully read and
followed the directions in the FAQ for configuring apache.
I don't think my httpd.conf file is the problem, though,
since I get the login page. Any ideas on things
to try would be
Hi all
I have an issue where a client cannot get access to a Citrix server from
behind a pair of squid servers over port 443; the solution is using
Citrix NFuse and Citrix Secure Gateway.
The users can get access over HTTPS to the NFuse web page however when
the attempt to connect to the CSG
I had the same problem. My determination was that what ever Citrix is doing to tunnel
the ICA protocol over SSL does not meet the SSL protocol specs. I had to change the
configuration to have the Citrix SSL connections not use any type of proxy.
Tim Bernhardson
Senior Technical Engineer
On Fri, 31 Oct 2003, Andrew Woodland wrote:
The users can get access over HTTPS to the NFuse web page however when
the attempt to connect to the CSG server the connection seems to be
rejected and the client request states that is cannot connect to the
proxy.
See access.log
Most likely the
I'm running Squid 2.5 and RC.Firewall on a Mandrake 9.1 box. The
firewall denies any unrequested outside traffic, but allows anything
that IS requested from the inside.
And this is the beginning of my problem. I have a division that may
begin using VPN connections to a vendor, and I set up the
I'm running Squid 2.5 and RC.Firewall on a Mandrake 9.1 box. The
firewall denies any unrequested outside traffic, but allows anything
that IS requested from the inside.
And this is the beginning of my problem. I have a division that may
begin using VPN connections to a vendor, and I set up
On Fri, Oct 31, 2003 at 04:50:41PM -0200, Pedro Zorzenon Neto wrote:
Is there any way to tell squid to pipe all it will answer to users to
another program before answering?
The intention is to sanitize html content on-the-fly and remove some
unwanted tags like script.
No way with squid.
I have been searching USENET archives, the mailing list archives, the FAQ,
everything I can get my hands on for several hours. I have read about
refreshing, no_cache and cache_peer, refresh_pattern, and I cannot get
squid to write a damn thing to disk.
Worse, it releases everything from
Does PAM have to be installed for NTLM authentication to work with the
Samba 3.0 ntml_auth helper?
I'm using Slackware Linux which of course does not have PAM. So far I
have not been able to get NTLM authentication working although basic
authentication does work with the helper. The only people
I upped the debugging level to 3 by editing the cachemgr.cc source code and
recompiling
squid. I also changed my httpd.conf a bit to allow directory indexing like
so:
Options Includes FollowSymLinks Indexes
Now I get this in my apache error log when I try to get in:
cmgr: encoding for
On Fri, 31 Oct 2003, Eric Geater 10/30/03 wrote:
I tried it again, but it's still not working. When I went to
squid-cache.org to look at the FAQ (I did this time!), on the 450k HTML
doc (http://squid-docs.sourceforge.net/latest/book-full.html) I did a
search for vpn l2tp and pptp, but could
On Fri, 31 Oct 2003, Pedro Zorzenon Neto wrote:
Is there any way to tell squid to pipe all it will answer to users to
another program before answering?
The easiest method is by using one of the ICAP patches, and write your own
ICAP server.
Regards
Henrik
On Fri, 31 Oct 2003, Jim Richey wrote:
Does PAM have to be installed for NTLM authentication to work with the
Samba 3.0 ntml_auth helper?
No, and neither does NSS.
You just need winbindd and the ntlm_auth helper. It is safe to ignore
anything which refers to PAM or NSS in the winbind
It sounds like you're probably more advanced than I am with
squid, so I apologize if this is obvious, but I've learned some about
when things do and don't cache by lynxing pages through squid
and then lynxing them directly from the site then comparing the headers
like this:
lynx -mime_header
On Fri, 31 Oct 2003, Y Jones wrote:
cmgr: encoding for pub...
cmgr: got req: host: 'localhost' port: 80 uname: '' passwd: '' auth: ''
oper: ''
wrote request: 'GET cache_object://localhost/ HTTP/1.0
Accept: */*
'
...and I get to a page that says Cache Manager menu for localhost:
and
I've verified that my httpd.conf says:
Listen 81
..and my squid.conf says
http_port 80 accel vport=81
squid and apache are running on the same machine.
At any rate trying port 80 or 81 produces the same result.
From: Henrik Nordstrom [EMAIL PROTECTED]
To: Y Jones [EMAIL PROTECTED]
CC: [EMAIL
The corresponding items in access.log are all TCP_MISS/200 (not
304). This
occurs even after clearing the browser cache and restarting the browser
and
loading the site for the first time. I have checked site cacheability
with a cacheability engine. I have changed refresh_pattern to give
Thanks for all the replies, I have solved the problem.
When making my initial configuration before running, I made the following typo:
maximum_object_size 32768 MB
Oops. (I meant KB, not MB!) Apparently, this causes squid to not cache
anything. Not sure why. Perhaps there should be some range
39 matches
Mail list logo