Dear Amos,
This problem is resolved by disabling following pieces of lines in my setup...
#Define Local Servers
# acl localServers dst 10.0.0.0/8
# Local server should never be forwarded to neighbour/peers and they should
never be cached.
#always_direct allow localservers
#cache deny
ons 2010-03-31 klockan 07:56 +0200 skrev Henrik Nordström:
Squid-3.1.1 has been packaged for Fedora 12. Those of you who use Fedora
please help testing the update and give feedback. Testing of updates is
an important aspect of Fedora updates and also Squid development. Fedora
uses a community
GIGO . wrote:
Dear Amos,
This problem is resolved by disabling following pieces of lines in my
setup...
#Define Local Servers # acl localServers dst 10.0.0.0/8 # Local
server should never be forwarded to neighbour/peers and they should
never be cached. #always_direct allow localservers #cache
tis 2010-03-30 klockan 22:48 -0300 skrev Alex Montoanelli:
My question is, Can squid slow down, when used with large cache_dir,
and they are close to 80% of use?
I/O load on the cache dirs gets much more intensive when Squid starts to
recycle space. This is due to most filesystems not being
Ok I have an issue here... Compiled Squid
Squid Cache: Version 3.1.1
configure options: '--build=x86_64-linux-gnu' '--prefix=/usr'
'--includedir=/include' '--mandir=/share/man' '--infodir=/share/info'
'--sysconfdir=/etc' '--localstatedir=/var' '--libexecdir=/lib/squid3'
UPDATE!
It seems to only happen when the --disable-ipv6 option is used during
compile, perhaps the default acl handler for IPV4 needs a bit of
love... doesn't seem the same as the one included as default.
On Wed, Mar 31, 2010 at 1:00 AM, Kurt Sandstrom sandma...@gmail.com wrote:
Ok I have an
Hi
How do I use `follow_x_forwarded_for` to allow X-Forwarded-For header for all
IP's in my LAN 192.168.0.0/21. They all go through the squid proxy, 192.168.0.1.
Thanks
Dayo
Hi,
I`m running squidclamav and squirm with viralator.
For Firefox users I will use squirm and for tools like wget the full
transparent squidclamav.
Both tools are working. How can I solve this problem?
My ideas are for squid.conf:
Can I cat if the client uses Firefox?
Can I switch between
Hi,
On Wed, Mar 31, Dayo Adewunmi wrote:
How do I use `follow_x_forwarded_for` to allow X-Forwarded-For header for all
IP's in my LAN 192.168.0.0/21. They all go through the squid proxy,
192.168.0.1.
it depends on what you want.
Do you have an another proxy between the clients and squid, or
Dieter Bloms wrote:
Hi,
On Wed, Mar 31, Dayo Adewunmi wrote:
How do I use `follow_x_forwarded_for` to allow X-Forwarded-For header for all
IP's in my LAN 192.168.0.0/21. They all go through the squid proxy, 192.168.0.1.
it depends on what you want.
Do you have an another proxy
Is there a trick to trace cache_hits and Cache_misses in SARG and in more
readable format.Also in detail and summarized form that how much data has been
came through the cache.or i have to use someother tool and which?
what is the best reporting tools to use for squid.Can someone give a
Hi,
On Wed, Mar 31, Dayo Adewunmi wrote:
There's no other proxy between clients and squid. I'm trying to get squid
to include LAN IPs for external servers. So, for that it's forwarded_for
on? Or do you mean follow_x_forwarded_for on?
from squid.conf
# TAG: forwarded_for on|off
#
Dieter Bloms wrote:
Hi,
On Wed, Mar 31, Dayo Adewunmi wrote:
There's no other proxy between clients and squid. I'm trying to get squid
to include LAN IPs for external servers. So, for that it's forwarded_for
on? Or do you mean follow_x_forwarded_for on?
from squid.conf
# TAG:
After little problem I installed squid 3.1.1 with openssl on my ubuntu
server 9.10.
Now i have my ssl certificate (.cer) on my exchange server but squid (or
openssl ?) require a .pem certificate.
I have doubts about this.
Is the certificate the same of exchange ?
(if yes) The same
Dayo Adewunmi wrote:
Hi
How do I use `follow_x_forwarded_for` to allow X-Forwarded-For header
for all
IP's in my LAN 192.168.0.0/21. They all go through the squid proxy,
192.168.0.1.
Thanks
Dayo
Consider: Are 192.168.0.0/21 all proxies which you trust not to forge
the header?
GIGO . ha scritto:
Is there a trick to trace cache_hits and Cache_misses in SARG and in more readable format.Also in detail and summarized form that how much data has been came through the cache.or i have to use someother tool and which?
what is the best reporting tools to use for
I have been unable to get TPROXY working correctly with squid. I have
used the steps in http://wiki.squid-cache.org/Features/Tproxy4 and re
checked everything.
Versions:
Kernel 2.6.28-11-server (ubuntu)
Squid Cache: Version 3.1.1
configure options: '--build=x86_64-linux-gnu' '--prefix=/usr'
I am working on testing a hosted web filter solution, this involves chaining
our internal squid proxy to the hosted web filter proxy server. I was seeing
very poor performance and found several TCP connection to
filters.dnsdomainname.com/8081 failed entries in the log. I discovered that
It's not possible to have two redirectors in Squid.
2010/3/31 Stefan Reible m...@stefan-reible.de:
Hi,
I`m running squidclamav and squirm with viralator.
For Firefox users I will use squirm and for tools like wget the full
transparent squidclamav.
Both tools are working. How can I solve
/dev/sdc1 1.8T 339G 1.4T 20% /cache1
/dev/sdd1 1.8T 333G 1.4T 20% /cache2
pr0xySRV:~# more /etc/squid/squid.conf |grep cache_swap_high ; more
/etc/squid/squid.conf |grep cache_swap_low
cache_swap_high 95
cache_swap_low 94
it didnt even reach 60% of its usage
OK,
I will accept that a browser behind a proxy is going to load the pages
slower then a browser in front of the proxy.
But I need to trim some time on the page load.
I installed firebug. It can report load times of web pages.
http;//www.google.com will be example.
If I test on my local PC I
ons 2010-03-31 klockan 01:07 + skrev Diego Lima:
The browser software is Microsoft Internet Explorer 7 and 8, however
I've not been able to track down what causes that since only a few
users are having problems.
Do these users experience the same problem if they log on to a computer
where
ons 2010-03-31 klockan 12:25 -0500 skrev Dean Weimer:
I am working on testing a hosted web filter solution, this involves
chaining our internal squid proxy to the hosted web filter proxy
server. I was seeing very poor performance and found several TCP
connection to
I found it listed in 3.0PRE3 bugs, here is the link that I found, it is listed
as fixed.
http://ftp.isu.edu.tw/pub/Unix/Proxy/Squid/Versions/v3/3.0/bugs/index.html#squid-3.0.PRE3-accel_cache_peer_name
However, this exact problem was occurring I would have never gotten out, I
discovered since
ons 2010-03-31 klockan 14:41 -0500 skrev Dean Weimer:
I found it listed in 3.0PRE3 bugs, here is the link that I found, it is
listed as fixed.
And it is fixed. That was a typo which made Squid always use the name=
instead of the host when figuring out how to connect to the peer.
Obvious error,
ons 2010-03-31 klockan 09:47 -0700 skrev Kurt Sandstrom:
I have been unable to get TPROXY working correctly with squid. I have
used the steps in http://wiki.squid-cache.org/Features/Tproxy4 and re
checked everything.
I did not see your routing setup in the data you dumped. Without the
After little problem I installed squid 3.1.1 with openssl on my ubuntu
server 9.10.
Now i have my ssl certificate (.cer) on my exchange server but squid (or
openssl ?) require a .pem certificate.
I have doubts about this.
Is the certificate the same of exchange ?
(if yes) The same
You can export the certificates from most Microsoft programs into PKCS12
format it will have a .pfx extension. Then you can use OpenSSL to
convert that to a PEM format. Look at the openssl man page for pkcs12
for more info, on how to do the conversion.
-Original Message-
From: Andrea
1st, I'm not sure this is good, and this is right after a restart
Memory usage for squid via mallinfo():
Total space in arena:3180 KB
Ordinary blocks: 3035 KB 2 blks
Small blocks: 0 KB 0 blks
Holding blocks: 504 KB 2 blks
Is the certificate the same of exchange ?
(if yes) The same certificate will installed on squid and on exchange?
How to make the .pem certificate for squid?
You need to tell us more about your setup. Probably you want to
terminate a SSL connection on the reverse-proxy and forward the
Henrik Nordström wrote:
ons 2010-03-31 klockan 14:41 -0500 skrev Dean Weimer:
I found it listed in 3.0PRE3 bugs, here is the link that I found, it is listed
as fixed.
And it is fixed. That was a typo which made Squid always use the name=
instead of the host when figuring out how to connect
Kevin Blackwell wrote:
OK,
I will accept that a browser behind a proxy is going to load the pages
slower then a browser in front of the proxy.
But I need to trim some time on the page load.
I installed firebug. It can report load times of web pages.
http;//www.google.com will be example.
If
1. NAT interception going on? or browser proxy configuration settings?
According to this page
http://wiki.squid-cache.org/ConfigExamples/Intercept/AtSource
No
2. What Squid version?
Squid Cache: Version 2.6.STABLE21
3. is DNS working properly and fast for the proxy?
I think so. DNS Lookups:
NTLM kills performance. I have the same problem. Any ideas are welcome.
Kevin Blackwell akblack...@gmail.com escribió:
1. NAT interception going on? or browser proxy configuration settings?
According to this page
http://wiki.squid-cache.org/ConfigExamples/Intercept/AtSource
No
2. What Squid
I have the following in startup
ip rule add fwmark 1 lookup 100
ip route add local 0.0.0.0/0 dev lo table 100
The ouput of ip route show table 100: local default dev lo scope host
One other thing is strange, my PREROUTING rules in mangle don't load
in my script. I have to manually add
35 matches
Mail list logo
