On 2014-07-08 16:41, winetbox wrote:
sorry for being out of topic, since my squid configuration is here, and
squid's experts are already here, i'd like to ask about my cache
config.
NP: here is an email mailing list. All posted mails get to the
experts. It helps us a lot to manage the flow
On 2014-07-08 13:17, Dan Charlesworth wrote:
Hey folks
So I support a bunch of Squid deployments and every so often I’ll get
a call about a poor performance, or very large access logs files etc.
Oftentimes as soon as I crack open the access log I see there’s a
handful of machines (sometimes
On 2014-07-08 17:36, Nil Nik wrote:
I am NOT looking for client IP or host. I am looking for target server
IP.
In case of 'ssl_bump none' squid access log shows IP of server instead
of domain.
Nik Nik,
The answer to your original question is that Squid only has the TCP/IP
packet details
Well - there are 4 Points here:
a) this is gradual behavior that takes month to accumulate
b) extra used memory is much bigger than Cache (1.5x aprox), which looks wrong
to me as the other parameters you have given (diskcache,...) are not
c) we have not seen this behavior with 3.3 and have just
Thanks Hassan,
I have covered all the steps except the WCCP Configuration, Coz i dont
use WCCP Router. I tried discovering for Routing loop and was unable
to find any, Could you please help me How to Find a Routing loop.
Here is my Squid Conf and my TCPdump sample.
http://pastebin.com/aJskfywx
Rate limit using iptables
http://thelowedown.wordpress.com/2008/07/03/iptables-how-to-use-the-limits-module/
seems to be the simplest solution for an upper limit of requests/time.
Practically, you want the same as an administrator, who wants to protect his
web server against a DoS attack by means
tcpdump shows traffic flowing both ways, which is good. We also need
to have the following settings:
# sysctl.conf
net.ipv4.ip_forward = 1
net.ipv4.conf.default.rp_filter = 0
net.ipv4.conf.all.rp_filter = 0
net.ipv4.conf.eth0.rp_filter = 0
net.ipv4.conf.eth1.rp_filter = 0
The last two lines
On 2014-07-08 19:38, Martin Sperl wrote:
Well - there are 4 Points here:
a) this is gradual behavior that takes month to accumulate
b) extra used memory is much bigger than Cache (1.5x aprox), which
looks wrong to me as the other parameters you have given
(diskcache,...) are not
c) we have not
Hello Dear,
Thank you for taking your time to help me with my problem.
I have a modem DSL with connexion up to 6 MB/s, 30 Pcs are connected
at the same time to the network via cables and wifi. The problem is
the users cannot use equally the connexion.
My question : how can i limit the
The problem is that it is a slow leak - it takes some time (month) to find
it...
Also it only happens on real live traffic with high volume plus high
utilization of Vary:
Moving our prod environment to head would be quite a political issue inside our
organization.
Arguing to go to the latest
On Tuesday 08 July 2014 at 12:18:09, Yemen SAYOUR wrote:
I have a modem DSL with connexion up to 6 MB/s, 30 Pcs are connected
at the same time to the network via cables and wifi. The problem is
the users cannot use equally the connexion.
My question : how can i limit the connexion using
Thanks Hassan,
Yes I have the following settings done.
Please see the details in the pastebin
http://pastebin.com/YzKDSV7J -- Find Results.
http://pastebin.com/XhZYiDxm --sysctl.conf
Thanks,
Ganesh J
On Tue, Jul 8, 2014 at 2:29 PM, Nyamul Hassan nya...@gmail.com wrote:
tcpdump shows traffic
For a very first beginning, you might look into the delay_pools of squid, to
distribute and limit download speed, at least. Works only for proxied
traffic, of course, so torrents etc. are not throttled.
But easy to implement.
--
View this message in context:
Thank you,
But by limiting the download speed, can i attribute for each @IP a
portion of bandwidth? (exemple 2%)
Le 08/07/2014 14:29, babajaga a écrit :
For a very first beginning, you might look into the delay_pools of squid, to
distribute and limit download speed, at least. Works only for
Not percentagewise, only in absolute values.
I had problems myself to vaguely understand at least the doc about
delay_pools, look into the documented squid.conf. So somebody else should
answer your detailed questions, if any.
However,
I use it to put an upper limit of 125kbit/s download speed to
Yemen, what router do you use for going to the internet? Regular
linux box? Or something else?
Regards
HASSAN
On Tue, Jul 8, 2014 at 8:18 PM, babajaga augustus_me...@yahoo.de wrote:
Not percentagewise, only in absolute values.
I had problems myself to vaguely understand at least the doc
Hello there,
is there a special configuration of squid to allow connections for a
Citrix ICA-Client to go through to proxy? We're not able to connect the
Citrix ICA-Client (Web) through our squid proxy to a Citrix server outside
in the internet. With the Microsoft ISA-Proxy it does.
Our
On 08/07/2014 16:13, andreas.resc...@mahle.com wrote:
Hello there,
is there a special configuration of squid to allow connections for a
Citrix ICA-Client to go through to proxy? We're not able to connect the
Citrix ICA-Client (Web) through our squid proxy to a Citrix server outside
in
Ok. Good so far. I saw you opened another email about this. Please
keep related discussions in one single thread. We had similar TProxy
issues around 7-8 days ago. From your emails, it seems you are
running CentOS 6.5, just like we are. The difference is that you are
using Squid 3.1 which is
Hey There,
Can you run the next script?
http://www1.ngtech.co.il/squid/basic_data.sh
(use curl to download the file, with default wget you might get wrong
line ending matching windows ones)
Eliezer
On 07/07/2014 08:47 PM, Info OoDoO wrote:
Hi,
I configured Squid in Tproxy mode and Mangled
Sorry for the other mail chain. it was opened accidentally yesterday.
Thanks for the response.
please find the required data below.
http://pastebin.com/Abs3QmMe -- cache.log
http://pastebin.com/eS94BHHu -- TCP Dump.
I was able to see the site logged in access.log with http code 504,
Gateway
+Eliezer
Thanks,
Ganesh J
On Tue, Jul 8, 2014 at 11:46 PM, Info OoDoO i...@oodoo.co.in wrote:
Sorry for the other mail chain. it was opened accidentally yesterday.
Thanks for the response.
please find the required data below.
http://pastebin.com/Abs3QmMe -- cache.log
For your kind attention, i have not installed Squid 3.1.10 from YUM. I
have Compiled and installed from the source with the following
options.
http://pastebin.com/jFhzd3qj
Oh! If you did compile it, then can you check if you have
libcap-devel installed?
Regards
HASSAN
Yes.. it is installed..
libcap-devel.x86_64 2.16-5.5.el6 @base
Thanks,
Ganesh J
On Tue, Jul 8, 2014 at 11:49 PM, Nyamul Hassan nya...@gmail.com wrote:
For your kind attention, i have not installed Squid 3.1.10 from YUM. I
have Compiled and installed from the
Sorry, I installed it recently and it was not there when i compiled
and configured squid from source.
Thanks,
Ganesh J
On Tue, Jul 8, 2014 at 11:52 PM, Info OoDoO i...@oodoo.co.in wrote:
Yes.. it is installed..
libcap-devel.x86_64 2.16-5.5.el6 @base
Thanks,
We were in the same problem just a few days ago. Can you recompile and check?
Also, since you are compiling, then can you also try the latest stable
version 3.4.6?
Regards
HASSAN
On Wed, Jul 9, 2014 at 12:24 AM, Info OoDoO i...@oodoo.co.in wrote:
Sorry, I installed it recently and it was not
Configured Squid 3.4.6 again with all the options, still facing the same issue.
Thanks,
Ganesh J
On Tue, Jul 8, 2014 at 11:55 PM, Nyamul Hassan nya...@gmail.com wrote:
We were in the same problem just a few days ago. Can you recompile and check?
Also, since you are compiling, then can you
What router are you using??
Eliezer
P.S. I will be at the squid irc channel for about couple hours
http://webchat.freenode.net/?channels=squid
On 07/08/2014 10:19 PM, Info OoDoO wrote:
Configured Squid 3.4.6 again with all the options, still facing the same issue.
Thanks,
Ganesh J
On Tue,
Note that I have changed the script to match couple new aspects..
I will later on probably will add debian\ubuntu and maybe others support
for the script.
Eliezer
On 07/08/2014 08:40 PM, Eliezer Croitoru wrote:
Hey There,
Can you run the next script?
Hey Andreas,
What do you see in the access.log when you try to access the website?
Also try to change the behavior of:
http://www.squid-cache.org/Doc/config/forwarded_for/
Eliezer
On 07/08/2014 06:13 PM, andreas.resc...@mahle.com wrote:
Hello there,
is there a special configuration of squid
Amos Jeffries wrote
On 2014-07-08 16:41, winetbox wrote:
sorry for being out of topic, since my squid configuration is here, and
squid's experts are already here, i'd like to ask about my cache
config.
NP: here is an email mailing list. All posted mails get to the
experts. It helps us a
On 2014-07-09 03:13, andreas.resc...@mahle.com wrote:
Hello there,
is there a special configuration of squid to allow connections for a
Citrix ICA-Client to go through to proxy? We're not able to connect the
Citrix ICA-Client (Web) through our squid proxy to a Citrix server
outside
in the
Hey Mike,
I was wondering if you have these Selinux rules in binary or another
format(src) which I can try to use and package them in RPM?
Thanks,
Eliezer
On 06/27/2014 12:08 AM, Mike wrote:
After some deeper digging, it seems selinux was only temporarily
disabled (via echo 0
Hi,
I have been attempting to configure SSL bumping with Squid v3.3.8. I
have a well configured Squid proxy for HTTP and HTTP Intercept
proxying. I am now trying to expand the configuration to bump SSL
connections. I believe I have the basics of the configuration correct
for both direct HTTPS
34 matches
Mail list logo