On 24.01.2011 21:32, Henrik Nordström wrote:
Sure. Revision 11172. Drops those method checks.
Thanks guys, you're great! Problem is solved with the latest version
from the repository.
(sorry, it took me a while to actually find time to test it...)
David
Hi,
does squid have the capability of HTTP rewrite like apache's mod_rewrite?
Thanks.
--
Free SmartDNS Hosting:
http://DNSbed.com/
On 08/02/11 22:53, Terry. wrote:
Hi,
does squid have the capability of HTTP rewrite like apache's mod_rewrite?
mod_rewrite does several very different things. AFAIK they are all
possible in Squid, with all the same nasty side effects still present.
Squid also has many mechanisms for doing
2011/2/8 Amos Jeffries squ...@treenet.co.nz:
What exactly are you trying to achieve?
Hi amos,
Our backend server is a rails framework, the frontend is squid for
reverse proxy.
So I was asking does squid do the stuff of rewrite instead of letting
rails do that.
Regards.
--
Free SmartDNS
Hmmm, I have Vary Accept Language added now to the response header
but I'm still getting a cache hit, even when I change browser
language. Below is still returning a cache hit of the English
version of the page, which was previously cached by Squid.
Response Headers
DateTue, 08 Feb 2011
I'm trying to setup Squid 3.1.11 as a reverse proxy with LDAP
authentication. I compiled Squid with the --enable-basic-auth-helpers=LDAP
but when I run make, I get the below error. I'm using Suse Linux Enterprise
server 11 with SP1. Any ideas?
squid_ldap_auth.c:641: error: expected â)â before
Sounds like a fairly basic coding syntax error that any motivated
programmer can quickly resolve themselves.
michael_gra...@cadc.uscourts.gov 2/8/2011 10:39 AM
I'm trying to setup Squid 3.1.11 as a reverse proxy with LDAP
authentication. I compiled Squid with the
Sorry, I don't understand your answer. I'm trying to compile squid with
LDAP support.
Mike Grasso
Data Network Administrator
DC Circuit Court of Appeals
(202) 216-7443
From: Chad Naugle chad.nau...@travimp.com
I am investigating, but it seems to me that your issue could be platform
specific, to SLES 11 SP1, because the code has not changed since 3.1.10.
Are you upgrading Squid, or is this the first time you are compiling
Squid?
michael_gra...@cadc.uscourts.gov 2/8/2011 10:55 AM
Sorry, I don't
This is a fresh install on a test server. Your probably right on it being a
platform specific problem.
Thanks...
From: Chad Naugle chad.nau...@travimp.com
Is cache keys using Vary headers available in Squid 3.1. Is there
something I need to enable?
Jeff
On Tue, Feb 8, 2011 at 10:30 AM, Jeff Gerbracht jeffgerbra...@gmail.com wrote:
Hmmm, I have Vary Accept Language added now to the response header
but I'm still getting a cache hit, even
Is --enable-basic-auth-helpers=LDAP the only configure options, or
what else are you passing to ./configure so I can try to reproduce it?
michael_gra...@cadc.uscourts.gov 2/8/2011 11:04 AM
This is a fresh install on a test server. Your probably right on it
being a
platform specific problem.
I'm using the two below as well.
--enable-storeio=aufs --enable-removal-policies
From: Chad Naugle chad.nau...@travimp.com
Okay, I have been able to reproduce your error.
The problem, which I am searching for a solution right now, is because
SLES 11 SP1 appears to not install the LDAP headers required by Squid's
Helper. I am searching for the correct RPM's you need to install
prior.
Perform this:
rpm -q openldap2
Which will report to you what version of openldap is installed, my
system came with:
openldap2-2.4.20-0.4.29
Where the ldap.h header is included in the openldap2-devel package,
which will have other dependencies, such as libldap, and other
-devel packages.
It
My system has the same version. I don't have the second SLES 11 DVD so I
will download now.
Thank you.
From: Chad Naugle chad.nau...@travimp.com
More info, I bumped up logging to level 9, and it appears that both
requests are generating the same key though there is a Vary:
Accept-Language in the request header and the Accept-Language values
are different in the header.Assuming I'm reading the logs
correctly.
English request
I have not attempted to install DVD2 yet personally, but there is a
chance that I am wrong, and that the -devel packages are all part of
the SDK release, which is a separate download of 2 DVD's in itself. I
do not personally like this approach that SLES 11 SP1 is going, because
SLES 10 SP3 (SP4
Dear i Use squid 3.1.10 and i would like to allow MSN messenger pass
trough squid
According wikis i did this :
# Permit MSN
acl MSN_ports port 1863 443 1503
acl MSN_domains
dstdomain .microsoft.com .hotmail.com .live.com .msft.net .msn.com .passport.com
acl MSN_hosts dstdomain
Which all looks ok, but is there an http_access that allows anything
other than the CONNECT method, such as:
http_access allow MSN_hosts
http_access allow MSN_domains
http_access allow MSN_net
Not to mention any other sites / hosts / ports (Such as port 80) before
the http_access deny all,
On 02.02.2011 10:49, Jack Falworth wrote:
The receive buffer size is stored in SQUID_TCP_SO_RCVBUF. There are
some code parts where this size is assigned to size_t variables which
are normally 16bit sized.
Sorry for that, I was wrong. size_t are at least 16bit, my fault.
Hi
You just have to install the openldap2-devel-package from the
SLES11-SP1-SDK-DVD:
zypper install openldap2-devel
Then you should be able to compile squid.
Regards,
Tom
2011/2/8 Chad Naugle chad.nau...@travimp.com:
I have not attempted to install DVD2 yet personally, but there is a
chance
Our site consists of mostly articles. Each article has user entered comments
at the bottom. The comment section cannot be cached. They need to see their
comments right after they enter them. The problem is I need the rest of the
page cached. Is the only way to solve this is to load the page from
Le mardi 08 février 2011 à 20:32 +0200, Bilal J.Mahdi a écrit :
Dear david
Why u wana allow MSN messenger pass trough squid. Ley msn go direct and only
pass the port 80 trough squid.
-Original Message-
From: David Touzeau [mailto:da...@touzeau.eu]
Sent: Tuesday, February
Le mardi 08 février 2011 à 13:35 -0500, Chad Naugle a écrit :
Which all looks ok, but is there an http_access that allows anything
other than the CONNECT method, such as:
http_access allow MSN_hosts
http_access allow MSN_domains
http_access allow MSN_net
Not to mention any other sites
Or you might try using iFrame loading comments from different page.
On Tue, Feb 8, 2011 at 10:09 PM, Andy Nagai ana...@wernerpublishing.com wrote:
Our site consists of mostly articles. Each article has user entered comments
at the bottom. The comment section cannot be cached. They need to see
Hello all,
I want to configure a web proxy squid cache for my LAN
users (~1000 PCs exist on the LAN). I want use
squid+squidguard+authentication on a domain controler (active directory
:')
For the moment, we want install only one server (and in the future a second...).
My question is where
Usually Squid runs on a machine with Public Access, as opposed to the
rest of the network, whether it being a NAT/Firewall itself, or behind a
Hardware Firewall, while the Firewall blocks outbound traffic from
everywhere BUT the Proxy.
Placing Squid in the DMZ can work as well, as long as the
On Tue, 8 Feb 2011 22:12:29 +0800, Terry. wrote:
2011/2/8 Amos Jeffries:
What exactly are you trying to achieve?
Hi amos,
Our backend server is a rails framework, the frontend is squid for
reverse proxy.
So I was asking does squid do the stuff of rewrite instead of letting
rails do
On Tue, 8 Feb 2011 12:25:46 -0500, Jeff Gerbracht
jeffgerbra...@gmail.com
wrote:
More info, I bumped up logging to level 9, and it appears that both
requests are generating the same key though there is a Vary:
Accept-Language in the request header and the Accept-Language values
are different
On Tue, 08 Feb 2011 19:22:26 +0100, David Touzeau wrote:
Dear i Use squid 3.1.10 and i would like to allow MSN messenger pass
trough squid
NOTE: the default squid configuration allows it through without problems.
According wikis i did this :
Which wiki? Not the Squid one which only lists
Hi
How can I let packages/sites bypass Squid?
I do not mind if people listen to online stuff, what I mind is that I end up
with loads of entries in the squid log and in the cache.
For example I want squid not to touch/log/cache/whatever any packet that is
application/x-fcs (and other media
i dont now the log options well but..
i would take another approach and instead of making it not to be in the
log... i would make something to make these lines to not be shown when
analyzing the logs.
you can either use grep -v or some perl\python script that can do this
easily.
On
On Feb 8, 2011, at 8:49 PM, Jobst Schmalenbach wrote:
Hi
How can I let packages/sites bypass Squid?
it depends on how your users are configured. Do they have a static entry for an
http proxy for their client? or is everything transparent ?
-j
I do not mind if people listen to online
For the list:
Thread title is a complete lie. Jobst has an ongoing set of requests
about turning Squid into a silent black-box relay for certain traffic so
that the proxy admin cannot see what is going on in his own network.
On 09/02/11 14:49, Jobst Schmalenbach wrote:
Hi
How can I let
On Wed, Feb 09, 2011 at 05:54:25PM +1300, Amos Jeffries (squ...@treenet.co.nz)
wrote:
For the list:
Thread title is a complete lie. Jobst has an ongoing set of
requests about turning Squid into a silent black-box relay for
certain traffic so that the proxy admin cannot see what is going on
if its over HTTP, squid will touch it and log it, though it might not
cache it if you tell it not to, but it will still log it
otherwise, look into iptables
or some sort of sed based cronjob to prune lines from the logs that you
don't want
On 2/8/2011 5:49 PM, Jobst Schmalenbach wrote:
Hi
On Wed, Feb 09, 2011 at 05:54:25PM +1300, Amos Jeffries (squ...@treenet.co.nz)
wrote:
You have the general idea of how to prevent things being re-used
form disk (a disk file will likely still be opened for backing the
RAM in-transit copy).
There are two problems though:
1) each ACL name
On 09/02/11 08:44, David Touzeau wrote:
Le mardi 08 février 2011 à 13:35 -0500, Chad Naugle a écrit :
Which all looks ok, but is there an http_access that allows anything
other than the CONNECT method, such as:
http_access allow MSN_hosts
http_access allow MSN_domains
http_access allow
39 matches
Mail list logo