Hi,
We're getting the below error when compiling squid 3.1.19 - looks like a
missing library 'libnet'. Strange things is its compiling fine on another
machine that doesn't have 'libnet' installed (not found with pkginfo anyway).
Do we really need libnet installed to get squid 3.1.19 compiled?
Hi all
Is there any way or acl example through which i can block http tunnel software.
One more thing , We are running time base acls and one of our user has full
time access, he is running proxy on his system through which he allowed
internet to those users which are blocked in our acl.
Hi,
Pl advise if some user want to download .torrent file. He should get
downloaded my own created file, already stored in my server.
Thanks/regards,
Vishal Agarwal
I am not able to use deny_info for my custome defined messages.
On 20/03/2012 07:53, Vijay wrote:
2012/03/20 10:14:23.889| aclCheckFast: list: 0x175c860
2012/03/20 10:14:23.889| ACLChecklist::preCheck: 0xbfccd8b4 checking
'ident_lookup_access deny all'
2012/03/20 10:14:23.889| ACLList::matches: checking all
2012/03/20 10:14:23.889| ACL::checklistMatches:
I got it resolved. Thanks Eliezer, you helped me to fix this error initially
I tried what you sent but it didn't work, that is what I thought, but then I
figured it was the PHP script which was wrong and so I reverted the changes
and tried it, now it work fine. thanks you
Thanks Regards
Vijay
Hello List,
Squid seems to be caching my static content correctly.
Whereas my dynamic content (might be even html file renamed to x.php served
through apache) is not being cached at all.
I am not sending any cache-control headers, cookies, querystrings or the like.
I am using the default
On 20/03/2012 6:31 p.m., Vishal Agarwal wrote:
Hi Amos,
You are right.
Will this work with transferring all the traffic to http port from iptables ?
Iptables -t nat -A PREROUTING -s 192.168.1.0/24 -p tcp --dport 80 -j REDIRECT
--to-destination serverip:3128
REDIRECT takes a port, and
On 20/03/2012 8:23 p.m., Maqsood Ahmad wrote:
Hi all
Is there any way or acl example through which i can block http tunnel software.
One more thing , We are running time base acls and one of our user has full
time access, he is running proxy on his system through which he allowed
internet
On 20/03/2012 9:14 p.m., Vishal Agarwal wrote:
Hi,
Pl advise if some user want to download .torrent file. He should get
downloaded my own created file, already stored in my server.
Thanks/regards,
Vishal Agarwal
I am not able to use deny_info for my custome defined messages.
That is the
Hi, I was hoping to use traffic shaping to reserve bandwidth for http streaming
video, and use squid to tag the video traffic separately from other content. I
am running OpenBSD 5.0 with squid 2.7, using squid as a transparent non-caching
proxy. I am attempting to get squid to set the TOS on
here is my acl and i want to limit download after every 10 MB of
download. now i am a bit confuse now. why this value giving me
expected result.
my_ip src 10.51.100.240
delay_pools 1
delay_class 1 1
delay_parameters 1 1/2000
delay_access 1 allow my_ip
according to my learning and
On 20.03.2012 07:31, Vishal Agarwal wrote:
Hi Amos,
You are right.
Will this work with transferring all the traffic to http port from iptables ?
Iptables -t nat -A PREROUTING -s 192.168.1.0/24 -p tcp --dport 80 -j REDIRECT
--to-destination serverip:3128
And further checking the
On 21/03/2012 2:26 a.m., Brian Landy wrote:
Hi, I was hoping to use traffic shaping to reserve bandwidth for http streaming
video, and use squid to tag the video traffic separately from other content. I
am running OpenBSD 5.0 with squid 2.7, using squid as a transparent non-caching
proxy. I
On 20.03.2012 03:54, Amos Jeffries wrote:
So:
- user configured browser to use a proxy
- browser does not use proxy
How is disobeying its own configuration details *not* a browser problem?
Answer: when the problem is the user themselves misunderstanding the
browser configuration.
On Mar 15, 2012, at 6:58 PM, Ahmad Faisal wrote:
Hi,
i have some query and would like to ask anyone on squid with cisco
catalyst 6500 switch with wccpv2
My setup:
- squid2.7-stable9 on freebsd 7.2-RELEASE
- cisco switch catalyst 6500 with ios 12.2(33)SXJ1
Internet
Hi Michael,
I have found in the past that PHP files don't always get cached, you can
explicitly tell Squid to cache files with a particular file extension (e.g.
.php).
Here is a rule that I use...
refresh_pattern \.php 60 20% 30 ignore-reload override-expire
override-lastmod
This will force
Hi Justin,
I've compiled Squid on Solaris systems before and there can be the odd
dependency nightmare.
I haven't compiled Squid with ldap_auth but after a bit of digging it looks
like you may need to install libnet (no dependencies other than possibly
libpcap) as this is a dependency of libldap.
Hello,
I compile squid 3.1.xx under Solaris with the following options. Configure/compile works out of the
box without installing anything other than basic Solaris 10.
I use ldap to authenticate users.
Hope this help.
JM
HELPERS=basic,digest,ntlm
BASIC_HELPERS=DB,LDAP,PAM,getpwnam,SASL
Ghassan,
I'm not sure adding additional hard drives will improve the performance of
Squid a great deal, if you're caching a lot of large objects over a long
period of time then it may prove beneficial. But if you're looking for
performance you would be better investing in more memory, if you can
Hi, all,
I have a fundamental question that, after studying books and on-line documents,
I still cannot answer it myself.
That is, when configuring Squid for transparent caching, why do we need to
forward HTTP from Port 80 to Port 3128? What makes it necessary? If we just let
Squid to listen
Hi there,
As an example, I set up Squid 2.7 on a HP BL460c (4x Quad-core CPU, 24GB
RAM) with Redhat 5 running bonded NICs over a 2x 2G port channel to a Cisco
6509. It took several days of testing to get the Kernel tuned to be able to
handle a high rate of connections (things like
On 20/03/2012 18:23, Zhu, Shan wrote:
Hi, all,
I have a fundamental question that, after studying books and on-line documents,
I still cannot answer it myself.
That is, when configuring Squid for transparent caching, why do we need to
forward HTTP from Port 80 to Port 3128? What makes it
On 3/20/2012 7:32 AM, Michael Borejdo wrote:
What might be the reason for squid not caching specific content?
Being new to squid, What is the best way to debug this situation?
I can provide more logging info, if needed.
Hello Michael,
Sometimes is usefull to see how the server puts the http
Hi folks,
We use two pfSense boxes for our wireless networks, all working well
with our proxy setup. The problem is, the squid access log only records
the IP address of the pfSense machines, not the actual originating IP?
Follow_x_forwarded has not been disabled anywhere?
Any ideas?
On 3/20/2012 1:23 PM, Zhu, Shan wrote:
Hi, all,
I have a fundamental question that, after studying books and on-line documents,
I still cannot answer it myself.
That is, when configuring Squid for transparent caching, why do we need to
forward HTTP from Port 80 to Port 3128? What makes it
Hi Shan,
If you are running Squid as a forward proxy, for example as an Internet
gateway, you would normally have a firewall (device or server running
IPTables) that your users would pass through. The idea with transparent
proxy is that your users would have no idea they are being proxied, that
On 20/03/2012 18:47, Peter Gaughran wrote:
Hi folks,
We use two pfSense boxes for our wireless networks, all working well
with our proxy setup. The problem is, the squid access log only records
the IP address of the pfSense machines, not the actual originating IP?
Follow_x_forwarded has not
Hi Peter,
I've seen similar issues with Bluecoat boxes in the past, whereby Squid
receives requests from the Bluecoats and the Bluecoat IP address appears in
the logs.
I'm guessing your pfSense boxes sit in front of your Squid server?
By default, Squid has 'forwarded_for on' which means it will
Hi, Gareth and others,
My situation is like part of you said, I am using the proxy server as a
gateway and the clients are not aware of it.
I am setting the squid to run on port 80, with only this configuration.
***
http_port 80 transparent
***
For experiment, I have no rules in IP tables,
Good numbers. I believe that it would be very beneficial to the community if
you wouldn't mind sharing the kernel tweaks and squid tweaks that you used to
achieve these numbers.
Thanks,
Josh
-Original Message-
From: GarethC [mailto:gar...@garethcoffey.com]
Sent: Tuesday, March 20,
Hi Amos
Thank you for the concern =2C but for your kind information we are doing this
with the permission of management and ofcourse it is limited to our office only.
Our main concern is to provide internet to the users without slow response so
that they can fully utilize the time .We just
On Mar 20, 2012, at 10:20 AM, Amos Jeffries wrote:
On 21/03/2012 2:26 a.m., Brian Landy wrote:
Hi, I was hoping to use traffic shaping to reserve bandwidth for http
streaming video, and use squid to tag the video traffic separately from
other content. I am running OpenBSD 5.0 with squid
On 21.03.2012 05:32, Eliezer Croitoru wrote:
On 20/03/2012 18:23, Zhu, Shan wrote:
Hi, all,
I have a fundamental question that, after studying books and on-line
documents, I still cannot answer it myself.
That is, when configuring Squid for transparent caching, why do we
need to forward
On 21.03.2012 05:03, Jose-Marcio Martins da Cruz wrote:
Hello,
I compile squid 3.1.xx under Solaris with the following options.
Configure/compile works out of the box without installing anything
other than basic Solaris 10.
I use ldap to authenticate users.
Hope this help.
JM
On 21.03.2012 06:36, Zhu, Shan wrote:
Hi, Gareth and others,
My situation is like part of you said, I am using the proxy server as
a gateway and the clients are not aware of it.
I am setting the squid to run on port 80, with only this
configuration.
***
http_port 80 transparent
***
For
Amos,
Clearly as you said, the iptables works not only for port forwarding, but also
for filtering. The security reason looks like the real reason that we need to
use iptables for transparent caching.
This is what I want to be 100% clear about.
Thanks,
Shan
-Original Message-
From:
On 21.03.2012 06:27, GarethC wrote:
Hi Peter,
I've seen similar issues with Bluecoat boxes in the past, whereby
Squid
receives requests from the Bluecoats and the Bluecoat IP address
appears in
the logs.
Happens whenever the client is another proxy ;)
I'm guessing your pfSense boxes sit
I dont understand maybe someone else can help me understand that...
how is that I allowed this domain in my log I get deny and next line is miss?!
1332295011.844 0 186.176.225.154 TCP_DENIED/407 4183 GET
http://f.femowe.com/cgi/r? - NONE/- text/html
1332295013.395166 186.176.225.154
On 21.03.2012 15:04, alexus wrote:
I dont understand maybe someone else can help me understand that...
how is that I allowed this domain in my log I get deny and next line
is miss?!
1332295011.844 0 186.176.225.154 TCP_DENIED/407 4183 GET
http://f.femowe.com/cgi/r? - NONE/- text/html
Hi Gareth,
OpenLDAP installed, as well as 'SUNWlldap'
root@mib01 / pkginfo | grep [lL][dD][aA][pP]
application SMColdap openldap
system SUNWlldapLDAP Libraries
I see the libnet.so libraries as part of the java runtime on the machine. I
guess
-Original Message-
From: Amos Jeffries [mailto:squ...@treenet.co.nz]
Sent: Tuesday, March 20, 2012 7:18 PM
To: squid-users@squid-cache.org
Subject: Re: [squid-users] stoppin Torrent file download
On 20/03/2012 9:14 p.m., Vishal Agarwal wrote:
Hi,
Pl advise if some user want to
FYI - configure options being used:
./configure --enable-icap-client --enable-ssl --with-openssl=/usr/local/ssl
--prefix=/apps/cwapps/squid-3119 --enable-storeio=diskd,aufs,ufs
--with-aio-threads=N --enable-removal-polices=heap,lru --enable-icmp
--enable-snmp --enable-cache-digests
42 matches
Mail list logo