Hi ajhart,
Thanks for the reply, I really appreciate it!!
The squid-cachemrg-3.0 rpm file I got form http://rpm.pbone.net/
If tried to install it but it need other older version packages that I
already have.
With the rpm -ql squid-cachemgr command, it tells me that there is no
cachemgr
Hi,
is there any way to use optional ntlm fakeauth?
We have no need to stop users that not gets authenticated, but we would like
to have them logged into the accesslog.
For the moment we are using fakeauth_auth and it works almost out of the
box. But a little wish, perhaps not possible to do,
Dhruv Ahuja wrote:
Hi All
I am successfully using NTLM authentication in my Fedora 8 Squid and
Windows 2003 Active Directory environment.
With NTLM in place, the usernames appear to be in the form of
DOMAIN\username, which prevents me for being able to use them in any
LDAP filter within
On ons, 2008-05-21 at 11:54 +0800, chris brain wrote:
running squid2.6stable20 on opensuse 10.3 and the logfile_rotate command is
set to 4 (logfile_rotate 4) and it is still keeping 10 days of logs. On our
other 3 proxys running stable 16 it works ok.
Perhaps you are also using logrotate
On ons, 2008-05-21 at 09:23 +0200, Falk wrote:
is there any way to use optional ntlm fakeauth?
No, if you use authentication then the client has to complete the
authentication hanshake.
Regards
Henrik
signature.asc
Description: This is a digitally signed message part
Hello Guys,
I have 2 boxes, one running squid 3.0-stable5 and other 3.0-stable6.
Both hand compiled for enabling ldap authentication helpers.
I got ldap authentication running successfully on both boxes,
there's no problem on that.
the problem is when i issued the
Hi,
I'm struggling to get the logic right for only caching certain pages -
it seems very easy to do the negative (don't cache ...) but the
converse doesn't seem possible... I must be missing something.
ie. I want to cache
www.mysite.com
www.mysite.com/hello/this.aspx?hi=thereyou=there
Henrik Nordstrom disse na ultima mensagem:
On mån, 2008-05-05 at 10:13 -0300, Michel (M) wrote:
ok I will do it
swap.state.new is written and stops after some bytes ( 100 k), I guess
then when the first client requests come in it stops writing it and
swap.state grows out of bounds until
Hi Guys,
I've a running a transparently working copy of squid 2.6 stable 19 on a
Linux FC9 box.
I wanted to block msn/windows live messenger through it, i've add following
code in my squid.conf
acl msnmime req_mime_type ^application/x-msn-messenger
acl msngw url_regex -i gateway.dll
Messenger uses port 1863 tcp for communication, and some HTTPS SOAP
requests to M$ servers.
You need to block this port using iptables.
iptables -A FORWARD -p tcp --dport 1863 -j DROP
iptables -A FORWARD -p tcp --sport 1863 -j DROP
adnann5 wrote:
Hi Guys,
I've a running a transparently
Messenger will also use port 80. You'll need to do l7-filter for that. Or using
squid, setup acls for the messenger mimetype which will catch it if it's coming
through port 80, and then also block port 1863.
I believe that's been covered before in this group so you may want to search
the
Hello, all -
I'm running into some issues where I can't quite seem to get HTCP to
work properly. I'm using 3.0STABLE5-2, with HTCP enabled at compile
time, and although I have Squid set up properly working as a stand-alone
reverse proxy cache, I cannot get one node to talk with another.
So far
Hello again -
Reading my logs when trying to play with ICP and HTCP, I see a few
options that I'm not too familiar with. I see TCP_MISS and UDP_MISS.
From what I've read and understand on the documentation of the general
log, TCP_MISS is written when an object is not found in *this* cache,
Hello again, all -
Searching through my logs, I see UDP_MISS statements which are almost
exclusively when an ICP query is made for an object of a directory type,
not a file type:
1211373356.819 0 192.168.15.87 UDP_MISS/000 131 ICP_QUERY
Hello,
I have been exeperiencing the same authentication bug reported previously
(basic authentication not working).
I'd like to try stable5 or 6 as announced, but need an RPM since I am using
Fedora 9.
Is there one available? If so where?
Thanks,
Cliff
Have WCCPv2 running between Cisco 4948 gigE switch and Squid on Linux
server (WCCPv2 is working fine, see redirects on TCPDUMP).
Routing incoming WCCP redirects to ETH0 and outgoing to ETH1 on server.
Squid starts without error and performs well for about 20 minutes; then
some web pages
Hi,
I have a case where a squid provides caching services for a multi-user
Unix system which has identd enabled. I'd like squid to log the ident
value of a user with the access in the access log. I have already
accomplished this (it's rather easy to do), but I am concerned about
load issues this
Dan Trainor wrote:
Hello again, all -
Searching through my logs, I see UDP_MISS statements which are almost
exclusively when an ICP query is made for an object of a directory type,
not a file type:
1211373356.819 0 192.168.15.87 UDP_MISS/000 131 ICP_QUERY
On Thu, 2008-05-22 at 04:23 +0700, Phattanon Duangdara wrote:
Dan Trainor wrote:
Hello again, all -
Searching through my logs, I see UDP_MISS statements which are almost
exclusively when an ICP query is made for an object of a directory type,
not a file type:
1211373356.819 0
Dan Trainor wrote:
Hello again -
Reading my logs when trying to play with ICP and HTCP, I see a few
options that I'm not too familiar with. I see TCP_MISS and UDP_MISS.
From what I've read and understand on the documentation of the general
log, TCP_MISS is written when an object is not
On Thu, 2008-05-22 at 04:53 +0700, Phattanon Duangdara wrote:
Dan Trainor wrote:
Hello again -
Reading my logs when trying to play with ICP and HTCP, I see a few
options that I'm not too familiar with. I see TCP_MISS and UDP_MISS.
From what I've read and understand on the
On ons, 2008-05-21 at 12:04 -0300, Leonardo Rodrigues Magalhães wrote:
it seems to be that when transparent option is enabled, squid
assumes ALL requests received are transparently intercepted, which is
NOT true. Simply removing the transparent from http_port make things
works again
On ons, 2008-05-21 at 17:11 +0200, Anton Melser wrote:
Hi,
I'm struggling to get the logic right for only caching certain pages -
it seems very easy to do the negative (don't cache ...) but the
converse doesn't seem possible... I must be missing something.
To allow caching of only some URLs
On ons, 2008-05-21 at 14:03 -0600, Dan Trainor wrote:
It would make sense as to why Squid would be handing out a UDP_MISS for
that, since it would also make sense that Squid has no desire to cache
directories
Squid does not make a distinction between a directory and a page or
another HTTP
On Thu, 2008-05-22 at 00:18 +0200, Henrik Nordstrom wrote:
On ons, 2008-05-21 at 14:03 -0600, Dan Trainor wrote:
It would make sense as to why Squid would be handing out a UDP_MISS for
that, since it would also make sense that Squid has no desire to cache
directories
Squid does not make
On ons, 2008-05-21 at 15:44 -0500, Cliff Hayes wrote:
I'd like to try stable5 or 6 as announced, but need an RPM since I am using
Fedora 9.
Fedora development is on 3.0.STABLE6.
I don't know why FC9 haven't been updated yet, but you should be able to
use the Fedora development version.
On ons, 2008-05-21 at 19:16 -0300, Leonardo Rodrigues Magalhães wrote:
Anyway, i think this should be investigated and, if declared as
feature and not bug, it should be at least documented. Actual
'transparent' option documentation says nothing about authentication
mechanisms completly
Henrik Nordstrom escreveu:
Not sure if it's a bug or a feature..
But it's very easy to live with. Just set up another http_port for the
transparent interception.
Yeah i also dont know if this is a bug or a feature :) And it's
easy to live with, i agree with that.
Anyway, i
Henrik Nordstrom escreveu:
On ons, 2008-05-21 at 19:16 -0300, Leonardo Rodrigues Magalhães wrote:
Anyway, i think this should be investigated and, if declared as
feature and not bug, it should be at least documented. Actual
'transparent' option documentation says nothing about
Leonardo Rodrigues Magalhães wrote:
Henrik Nordstrom escreveu:
Not sure if it's a bug or a feature..
But it's very easy to live with. Just set up another http_port for the
transparent interception.
Yeah i also dont know if this is a bug or a feature :) And it's
easy to live
What are the primary differences between these releases? If I am
running Squid 2.6stable20 will it be relatively easy to upgrade too
the latest stable 3 release? Never had much trouble going from one
STABLE 2.6 to the next.
Does Squid 3 handle .NET issues or IIS webservers any better then 2.6?
Marc Haber wrote:
Hi,
I have a case where a squid provides caching services for a multi-user
Unix system which has identd enabled. I'd like squid to log the ident
value of a user with the access in the access log. I have already
accomplished this (it's rather easy to do), but I am concerned
Hi, all -
I'm doing some testing when trying to clear individual objects from the
cache, and came up with a few questions that I have not been able to
figure out based on my research.
I'm essentially trying to get those HTCP CLR commands to propagate to
other cache_peer hosts.
As I understand
Matt wrote:
What are the primary differences between these releases? If I am
running Squid 2.6stable20 will it be relatively easy to upgrade too
the latest stable 3 release? Never had much trouble going from one
STABLE 2.6 to the next.
Does Squid 3 handle .NET issues or IIS webservers any
What are the primary differences between these releases? If I am
running Squid 2.6stable20 will it be relatively easy to upgrade too
the latest stable 3 release? Never had much trouble going from one
STABLE 2.6 to the next.
Does Squid 3 handle .NET issues or IIS webservers any better then
What are the primary differences between these releases? If I am
running Squid 2.6stable20 will it be relatively easy to upgrade too
the latest stable 3 release? Never had much trouble going from one
STABLE 2.6 to the next.
Does Squid 3 handle .NET issues or IIS webservers any better then
I have problems with users connecting to websites on IIS servers not
able to authenticate with user name and password. Some other user
complains they cannot upload .NET. Will the chunked-encoding issue
cause this?
No. Thats another two issues altogether.
The authentication one is
Another URL,
http://blogs.techrepublic.com.com/networking/?p=308
On Wed, May 21, 2008 at 9:48 PM, Thomas Raef [EMAIL PROTECTED] wrote:
Messenger will also use port 80. You'll need to do l7-filter for that. Or
using squid, setup acls for the messenger mimetype which will catch it if
it's
I have problems with users connecting to websites on IIS servers not
able to authenticate with user name and password. Some other user
complains they cannot upload .NET. Will the chunked-encoding issue
cause this?
No. Thats another two issues altogether.
The authentication one is
Hello, list.
I want to setup public proxy, that will serve clients from anywhere, after
registration.
I will setup captive portal for authorization/registration and external
authenticator,
that will check user validity, and redirect unauthorizated to captive
portal.
I guess that simple
Shelton, may be the tag
http_access allow our_network
should go after and not before (or may be you don't need it at all)
http_access denied custom_denied_domains dst
etc/squid/denied_domains.acl
hope to be helpful.
i'm a beginner.
Regards,
Felix Lazaro Carbonell
Site filtering issue
But wouldnt that only override max-age which is received in headers sent
by servers?
The ones we want to override are from client requests only.
Plus refresh_pattern can not take an acl since it's global and only based
on path.(ie no acls)
Or am I not seeing things clearly?
42 matches
Mail list logo