Hi,
When I access 'https://www.hotmail.com', I get protocol error with the
following logs:
The cache log shows as below:
2014/05/21 11:51:42 kid1| fwdNegotiateSSL: Error negotiating SSL
connection on FD 21: error:1411809D:SSL
routines:SSL_CHECK_SERVERHELLO_TLSEXT:tls invalid
Hi Eliezer,
When I remove 'transparent' in 'http_port', I get 'Invalid URL'
error. I have enabled DNS also.
Regards,
krish
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Hotmail-issue-in-squid-3-4-4-tp4666020p4666037.html
Sent from the Squid -
On 21/05/2014 4:10 p.m., Cinaed Simson wrote:
On 05/20/2014 08:46 AM, fernando wrote:
Hi,
I don't know if this affects only the RPM packaging or squid sources. I'm
using Eliezer packages for CentOS 6, namely 3.4.3-1.el6.x86)64.
The issue is that sometimes service squid restart leaves old
Hi,
Thanks for you information. We are using ntlm auth, TCP Denied are ok
in this log? In ou log there are many error TCP Denied 407 and I'm not
sure if this is correct...
About second question, we need to use squid only as reporting tools,
how can we ensure that squid doesn't apply any
On 21/05/2014 8:11 a.m., Alex Crow wrote:
Wrong on my part again.
Changing the memory_replacement_policy still got to 100% cpu after
Shift-reload in Thunderbird a few times - even disabling cache_mem
entirely did not eliminate it. 3.3 never gets about about 67% load no
matter how many time
On 21/05/2014 6:37 p.m., vin_krish wrote:
Hi Eliezer,
When I remove 'transparent' in 'http_port', I get 'Invalid URL'
error. I have enabled DNS also.
Eliezer did not mentio teh transporent option.
You are using HTTP_port and sending it HTTP*S* traffic.
You need to configure
On 21/05/2014 7:18 p.m., Trenta sis wrote:
Hi,
Thanks for you information. We are using ntlm auth, TCP Denied are ok
in this log? In ou log there are many error TCP Denied 407 and I'm not
sure if this is correct...
They are part of the authentication process on each new connection. Just
Hi Folks,
i've installed an new SQUID Server for our Holding Company (same
ActiveDirectory Forest, but another Domain) and I have an little Problem with
it.
Here's the Auth and ACL External Config from both Servers (running and newly
installed)
Running Config (Part):
On 21/05/2014 8:00 p.m., Puschmann, Sven wrote:
Hi Folks,
i've installed an new SQUID Server for our Holding Company (same
ActiveDirectory Forest, but another Domain) and I have an little Problem with
it.
Here's the Auth and ACL External Config from both Servers (running and newly
Hi Amos,
Sanba/Winbind Version: Version 3.6.6 (from Debian APT Sources)
Squid Version: 3.1.20 (from Debian APT-Sources)
Both are the Same Version.
There are 2 Domains with mixed Subnets, the Proxyservers have unique Names and
IP Addresses and are both Resolved via DNS Correctly.
The New Proxy
Hey,
First verify that you have fixed the errors which also can be seen using
the command squid -kparse.
There is nothing we can help you if the settings are not in place.
Did you changed the http_port line which suppose to be https_port line?
Eliezer
On 05/21/2014 09:34 AM, vin_krish
Just to understand what I read here and there:
Is there a squid -k restart option?
I have tried this:
squid -? 21 |grep -i restart echo $?
and the result was: 1
which means there is not basic documentation of this option.
Thanks,
Eliezer
On 05/21/2014 09:40 AM, Amos Jeffries wrote:
The
Hi Eliezer ,
I have configured as :
http_port 8080 //for forward proxy
https_port 3128 intercept ssl-bump generate-host-certificates=on
dynamic_cert_mem_cache_size=4MB cert=cert.crt key=cert.key options=
https_port 3129 intercept ssl-bump generate-host-certificates=on
Thunderbird, are these troubles all coming from HTML emails?
I meant Firefox, sorry - I was writing the email in Thunderbird so typed
that in instead. Not quite 40 yet but already losing it!
Does using AUFS instead of diskd cache types help? there are a lot of
calls in that trace
Hi Cinaed,
The problem as I see it is there needs to be timeout (or a wait) between
stop and start in restart.
The stop branch returns immediately and then executes the start branch
which sees the pid file (since the controlling squid is waiting for the
children to complete their processes)
I'm running squid 3.4.5-20140514-r13135
I started switching over to diskd from aufs because I was tired of all the
is_empty() crashes.
I stopped squid, removed the cache directory and swapfile completely, then
started squid with the '-z' option to rebuild the cache directory.
Within a
Consider closely what protocol you are sending to which Squid ports ...
# HTTP browser explicit proxy config
http_port 8080
# HTTP port 80 NAT'ed
http_port 3128 intercept ssl-bump
generate-host-certificates=on
dynamic_cert_mem_cache_size=4MB
cert=cert.crt key=cert.key
options=...
#
Hi there,
To make squid run in SMP mode using Eliezer packages for CentOS 6.x it
is not enough to add SELinux policies as I already presented in another
thread. You have to create /var/run/squid with appropriate permissions.
I did:
# mkdir /var/run/squid
# chgrp squid /var/run/squid
# chmod g+w
On 21/05/2014 8:59 p.m., Eliezer Croitoru wrote:
Just to understand what I read here and there:
Is there a squid -k restart option?
I have tried this:
squid -? 21 |grep -i restart echo $?
and the result was: 1
which means there is not basic documentation of this option.
Yes thats probably
On 22/05/2014 3:21 a.m., Mike Mitchell wrote:
I'm running squid 3.4.5-20140514-r13135
I started switching over to diskd from aufs because I was tired of all the
is_empty() crashes.
I stopped squid, removed the cache directory and swapfile completely, then
started squid with the '-z'
Hi Fernando,
I don't believe so because I disabled apparmor and I am not running SELinux
because it is not by default enabled on OpenSuse that I am aware of.
Best regards,
The Geek Guy
Lawrence Pingree
http://www.lawrencepingree.com/resume/
Author of The Manager's Guide to Becoming Great
We were just stress testing a forward proxy of ours, and suddenly received this
error which made squid crash pretty hard, apparently.
2014/05/22 11:38:13 kid1| assertion failed: client_side.cc:1515:
connIsUsable(http-getConn())
2014/05/22 11:38:18 kid1| Set Current Directory to /var/spool/squid
22 matches
Mail list logo