ons 2009-11-25 klockan 00:52 -0200 skrev Marcus Kool:
> Therefore I have just a silly question:
> can we modify Squid to fork at a slower pace?
> It would be interesting to see if a 0.2 second gap
> between each fork gives the system a enough
http://www.squid-cache.org/Doc/config/sleep_after_fork
On Tue, Nov 24, 2009 at 9:52 PM, Marcus Kool
wrote:
> Linda started this thread with huge performance problems
> when Squid with a size of 12 GB forks 15 times.
I'm still not convinced that our memory usage is correct. Here's
where the cache_mem 10GB process is at right now:
Maximum Res
Linda started this thread with huge performance problems
when Squid with a size of 12 GB forks 15 times.
Linda emailed me that she is doing a test with
vm.pmap.pg_ps_enabled set to 1 (the kernel will
transparently transform 4K pages into superpages)
which gives a big relief for TLB management
an
On Wed, 2009-11-25 at 02:11 +0100, Henrik Nordstrom wrote:
> ons 2009-11-25 klockan 09:07 +1100 skrev Robert Collins:
> > On Tue, 2009-11-24 at 13:45 +0100, Henrik Nordstrom wrote:
> > > tis 2009-11-24 klockan 15:06 +1100 skrev Robert Collins:
> > >
> > > > http://www.netbsd.org/docs/kernel/vfork.
tis 2009-11-24 klockan 11:09 -0200 skrev Marcus Kool:
> vfork will probably help but has side effects and I don't know
> if the Squid code is suitable for vfork.
It's not. Not even suitable for posix_spawn in it's current form but
easier to adopt for that than vfork.
Regards
Henrik
ons 2009-11-25 klockan 09:07 +1100 skrev Robert Collins:
> On Tue, 2009-11-24 at 13:45 +0100, Henrik Nordstrom wrote:
> > tis 2009-11-24 klockan 15:06 +1100 skrev Robert Collins:
> >
> > > http://www.netbsd.org/docs/kernel/vfork.html has some interesting notes
> > > from the BSD world about this.
On Tue, 24 Nov 2009 19:57:23 +0100, Ulisse Informatica
wrote:
> Nobody can help me? :-((
Not unless you say what the problem is.
So far you only stated the abstract topology and a few config lines that
you tried entering into squid.conf.
The last two attempts were obviously wrong syntax, squid w
On Tue, 24 Nov 2009 12:36:28 -0500, "Gary Bennett"
wrote:
> We have two virtual interfaces on our squid server:
>
> acl authproxy myip 1.1.1.100
> acl ipproxy myip 1.1.1.101
>
> We would like to make all users coming in via the authproxy network
> connection authenticate via our LDAP. We would l
On Tue, 24 Nov 2009 08:19:25 -0800, Kurt Buff wrote:
> On Fri, Nov 13, 2009 at 20:21, Amos Jeffries
wrote:
>> Ah, yes. You don't allow localhost access to the proxy.
>>
>> In which case for you it is:
>> squidclient -h $PROXYIP http://example.com/
>
>
>
>>> refresh_pattern ^ftp: 144
On Tue, 2009-11-24 at 13:45 +0100, Henrik Nordstrom wrote:
> tis 2009-11-24 klockan 15:06 +1100 skrev Robert Collins:
>
> > http://www.netbsd.org/docs/kernel/vfork.html has some interesting notes
> > from the BSD world about this.
>
> vfork is fundamentally broken.
Beyond the obvious (that it do
Hi,today i visited whatismy.com with a PC which is configured using a
squid proxy . On the site i saw that while giving my reel ip adress
also the web site gives me much more information hostname of my squid
proxy server, the proxy software and version which is squid x.y. So
what is giving so muc
Nobody can help me? :-((
We have two virtual interfaces on our squid server:
acl authproxy myip 1.1.1.100
acl ipproxy myip 1.1.1.101
We would like to make all users coming in via the authproxy network connection
authenticate via our LDAP. We would like all users coming in via ipproxy to
have no auth, but be restricted
I'm working on a new squid installation, where squid users need to be
authenticated to Active Directory via Kerberos. I've read several
configuration examples and I can't remember how many how-to guides, but
I must be overlooking something simple.
I'm running squid 3.0STABLE18 on CentOS 5.4 in a
On Fri, Nov 13, 2009 at 20:21, Amos Jeffries wrote:
> Ah, yes. You don't allow localhost access to the proxy.
>
> In which case for you it is:
> squidclient -h $PROXYIP http://example.com/
>> refresh_pattern ^ftp: 1440 20% 10080
>> refresh_pattern ^gopher: 1440 0%
Robert Collins wrote:
On Mon, 2009-11-23 at 21:40 -0500, Linda Messerschmidt wrote:
Maybe. We would like to diagnose this problem and fix it properly,
but if
its too much hassle you can go that way.
It would definitely be my preference to diagnose and fix the problem
and I can live with a fai
Hello,
When running Squid with SSL port with a password protected cert, squid can only
start with -N option, not going to backend. This is b/c the parent can't pass
the password provided by user to child.
But if we use this cert with Apache, which is also running with multi-processes
(more one
tis 2009-11-24 klockan 15:06 +1100 skrev Robert Collins:
> http://www.netbsd.org/docs/kernel/vfork.html has some interesting notes
> from the BSD world about this.
vfork is fundamentally broken.
there is other alternatives coming, getting around the virtual memory
issue when starting new process
Ultrasurf can be blocked by ufdbGuard, a free URL rewriter for Squid.
ufdbGuard uses various techniques to block Ultrasurf:
- verifying the HTTPS connections by opening a new HTTPS connection
and check if the other side speaks SSL+HTTP
- blocking HTTPS to sites without a FQDN in the URL
- block
Amos Jeffries a écrit :
>> This is quite strange, I think I'm misunderstanding something.
>> I'm using squid as a reverse proxy.
>>
>
> I understand.
>
>
>> Clients (internet people surfing on my website) should connect to squid
>> boxes to retrieve static content. Squid send the right file
Eric Van Steenbergen wrote:
Hello all,
I'm trying to configure Squid to ask for authentication using LDAP but
ONLY on one cache_peer. Before I had it activated on all servers and
it worked perfectly. All the other webservers however have their own
authentication except this wiki.
This is what I
21 matches
Mail list logo
