But why would Squid even issue an "If-Modified-Since" to origin server if the
min value is set to 5 days? Would this object not be seen as fresh and would
just be served up by Squid as a TCP_HIT?
- Original Message
From: Henrik Nordstrom <[EMAIL PROTECTED]>
To: BUI18 <[EMAIL PROT
I am talking about If-Modified-Since between Squid and the web server,
not browser<->squid.
On ons, 2008-10-22 at 17:57 -0700, BUI18 wrote:
> Henrik - Thanks for taking time out to respond to my questions. I'm
> completely stumped on this one.
>
> In our production environment, we set min and
Henrik - Thanks for taking time out to respond to my questions. I'm
completely stumped on this one.
In our production environment, we set min and max to 5 and 7 days, respectively.
As I understand it, if the request is made for the object in say3 days or 4
days (less than 5 days), I would
On ons, 2008-10-22 at 16:49 +0200, Jakob Curdes wrote:
> .. I am trying to setup a RCPviaHTTP reverse proxy scenario as described in
>
> http://wiki.squid-cache.org/ConfigExamples/SquidAndRPCOverHttp
>
> Squid starts with my configuration (like example plus some standard
> ACLs) but connections
On ons, 2008-10-22 at 15:02 +0200, Francois Cartegnie wrote:
> Le mercredi 22 octobre 2008, vous avez écrit :
> > Interesting, but is missing a crucial piece. There is nothign which
> > establishes trust. If the same server can be reached directly without
> > using the reverse proxy then security i
On ons, 2008-10-22 at 11:31 +0200, Malte Schröder wrote:
> Hello,
> Squid3 seems to keep a LOT (over a thousand) idle connections to its
> parent proxy.
Not normal.
Squid version?
And how did you measure these? You are not counting TIME_WAIT sockets
are you?
Regards
Henrik
signature.asc
Desc
On ons, 2008-10-22 at 14:35 -0700, BUI18 wrote:
> Object is initially cached. Max age in squid.conf is set to 1 min.
> Before 1 min passes, I request the object and Squid returns TCP_HIT.
> After 1 min, I try to request for object again. Squid returns
> TCP_REFRESH_HIT, which is what I expect.
After some further investigation, it seem that RELEASE does not mean that Squid
deletes the object from cache. It appears that it releases from cache to the
request.
To restate the problem I am having:
Squid seems to re-fetch the entire object even though the object never changed
on the serve
Tarak Ranjan wrote:
Hi List,
I have set those acl for limiting the download size in
squid.conf file,
acl limitsize2 time MTWHF 00:30-07:55
acl limitsize time MTWHF 8:00-20:00
acl limitsize1 time SA 00:10-23:59
reply_body_max_size 25600 allow limitsize
reply_body_max_size 1024 allow limitsize2
re
No, it's a parent cache to another squid (2.7.STABLE5). It talks to a
WebWasher content filter.
On Wed, 22 Oct 2008 14:39:17 +0200
"Itzcak Pechtalt" <[EMAIL PROTECTED]> wrote:
> From: "Itzcak Pechtalt" <[EMAIL PROTECTED]>
> To: "Malte Schröder" <[EMAIL PROTECTED]>
> Cc: squid-users@squid-cache.o
.. forget it, I had a NAT rule in place so the request ended up somewhere else..
tcpdump was my friend.
JC
Ok.
On 10/21/08, Henrik Nordstrom <[EMAIL PROTECTED]> wrote:
> Scrolling back to my first response in this thread:
>
> http://marc.info/?l=squid-users&m=122366977412432&w=2
>
>
> On tis, 2008-10-21 at 21:18 +0530, Paras Fadte wrote:
> > Hi Henrik,
> >
> > Thanks for your reply. What would be
.. I am trying to setup a RCPviaHTTP reverse proxy scenario as described in
http://wiki.squid-cache.org/ConfigExamples/SquidAndRPCOverHttp
Squid starts with my configuration (like example plus some standard
ACLs) but connections with a browser to the SSL port on the outside take
eternally and
Le mercredi 22 octobre 2008, vous avez écrit :
> Interesting, but is missing a crucial piece. There is nothign which
> establishes trust. If the same server can be reached directly without
> using the reverse proxy then security is bypassed, or if the module is
> loaded on a server not using a reve
Hi,
If you use tranparent cache, you will have several connections open
per client IP.
Itzcak
On Wed, Oct 22, 2008 at 11:31 AM, Malte Schröder <[EMAIL PROTECTED]> wrote:
> Hello,
> Squid3 seems to keep a LOT (over a thousand) idle connections to its
> parent proxy. To me it seems as if doesn't pr
Matus UHLAR - fantomas wrote:
On 21.10.08 16:23, Alejandro Bednarik wrote:
You can also use url_regex -i
acl bad_sites url_regex -i "/etc/squid/bad_sites.txt"
http_access deny bad_sites
using regexes is very ineffective and may lead to problems if you don't
count with:
- dot matching ANY c
Hello,
Squid3 seems to keep a LOT (over a thousand) idle connections to its
parent proxy. To me it seems as if doesn't properly reuse existing
connections. Is there a way to find out what's going on? From what I
can see there are not more than about two dozens requests at the
same time. I already r
On tis, 2008-10-21 at 19:57 -0500, Lou Lohman wrote:
> I have been poking around the Internet and mailing lists and anything
> else I can think of, for DAYS, to try to answer what I thought would
> be a simple question, "How can I configure Squid so that my authorized
> Windows users (Members of t
Interesting, but is missing a crucial piece. There is nothign which
establishes trust. If the same server can be reached directly without
using the reverse proxy then security is bypassed, or if the module is
loaded on a server not using a reverse proxy.
This needs a configuration directive indica
On 21.10.08 14:58, Ricardo Augusto de Souza wrote:
> How do i block HTTPS sites?
if you mean any HTTPS sites, just deny the CONNECT method.
if you want to block HTTPS to specific sites, Lucas Brasiliano posted
somethign that should work and that you seem have ignored ...
> I am using this I squi
On 21.10.08 16:23, Alejandro Bednarik wrote:
> You can also use url_regex -i
>
> acl bad_sites url_regex -i "/etc/squid/bad_sites.txt"
> http_access deny bad_sites
using regexes is very ineffective and may lead to problems if you don't
count with:
- dot matching ANY character
- regex matching
Tarak Ranjan wrote:
Hi List,
I have set those acl for limiting the download size in
squid.conf file,
acl limitsize2 time MTWHF 00:30-07:55
acl limitsize time MTWHF 8:00-20:00
acl limitsize1 time SA 00:10-23:59
reply_body_max_size 25600 allow limitsize
reply_body_max_size 1024 allow limitsize2
re
22 matches
Mail list logo