tis 2009-09-22 klockan 00:15 -0500 skrev Dale Mahalko:
* doesn't require the users to remember a name and password to use
the proxy, and does an auto-login so I can identify the user in the
proxy access logs
* uses password encryption to prevent sniffing of passwords on the network
For
tis 2009-09-22 klockan 18:31 +0530 skrev vikas rawat:
I will install Squid3.x from source only, and squid2.x was bydefault
installed in RHEL5.0. I am not planning to run both 2.x and 3.x
simultaniously. But if install 3.x and how to migrate from 2.x, OR if
3.x not give desired output how to
tis 2009-09-22 klockan 13:31 -0500 skrev Dale Mahalko:
We don't have domain controllers in novell's eDir, so dc= appears to
be the wrong identifier for Novell's LDAP.
dc= is Domain Component, not related to Domain Controllers.
It's just a different way of naming the LDAP tree, using the DNS
ons 2009-09-23 klockan 11:52 -0300 skrev Claudio Redi:
Basically I'd like to know which headers would you set in order to
cache a (very) dynamic page for 10 minutes.
Cache-Control: max-age=600
is sufficient for Squid and most other caches.
Some almost prehistoric caches requires Expires to
ons 2009-09-23 klockan 11:28 -0500 skrev Luis Daniel Lucio Quiroz:
I did change my memory_replacement_policy, and mean_object_size because
server
is in production, a -k reconfigure is enoght or I must stop and start squid
changes to memory_replacement_policy need a full restart to get
tor 2009-09-24 klockan 16:25 -0300 skrev Mariel Sebedio:
Hello, I just compiled Squid-3.0.STABLE19 with this options
squid-3.0.STABLE19]# ./configure --prefix=/ --enable-snmp
--enable-cache-digest --enable-err-language=Spanish --enable-delay-pools
If you really want this then try --prefix=,
ons 2009-09-23 klockan 15:27 -0500 skrev Luis Daniel Lucio Quiroz:
We are about to make stack trace,
but sys admins is worry about diskspace, aproxy, how many diskspace we need
for disktrace
If it's the digest authentication issue then no additional backtrace is
needed. The needed data is
mån 2009-09-21 klockan 13:54 -0700 skrev Guy Bashkansky:
Using Squid as a reverse cache proxy, need to give access only to
clients whose IP addresses are from particular netblocks:
acl service dstdomain .foo.com
acl clients src 123.45.67.89/255.255.255.128
http_access deny service
mån 2009-09-21 klockan 17:07 +0800 skrev liu ming:
Is there any detail plan of location_rewrite in Squid 3.1? I need it for
IPv6 reverse cache and rewrite location of www.example.com to
ipv6.example.com
I am not aware of anyone working on porting that directive no.
Regards
Henrik
mån 2009-09-21 klockan 10:49 +0200 skrev Silamael:
The point i don't understand is, why Squid forwards the request without
any DNS reply but seems to do some timeout handling if NXDOMAIN is replied?
Probably you get a retransmission to another DNS server that answers
when you block traffic
mån 2009-09-21 klockan 14:14 +0100 skrev Michael Graham:
Hi all,
I've noticed that the option upgrade_http0.9 doesn't exist for squid 3
but does in squid 2.7.
I had brief look at http://wiki.squid-cache.org/RoadMap/Squid3 and
couldn't see it mentioned anywhere.
Is there any plan to
mån 2009-09-21 klockan 10:27 +0200 skrev Matias:
Hi,
I'm monitoring the oids:
1.3.6.1.4.1.3495.1.4.1.3 (cacheHits)
and
1.3.6.1.4.1.3495.1.4.1.6 (cacheMisses)
Those two are
squid.cacheNetwork.cacheIpCache.cacheIpHits
and
squid.cacheNetwork.cacheIpCache.cacheIpMisses
What you are looking
tis 2009-09-22 klockan 15:39 +1200 skrev Amos Jeffries:
I gave it a try but got stuck at finding point in 3.x where the headers
were upgrade-changed. Seems to be a bit dispersed in 3.x.
That's why I gave the patch as reference... What it is doing is skipping
to produce the headers if the reply
lör 2009-09-19 klockan 13:45 +0800 skrev andre wang:
Trying send the same http request many times, squid returns MISS.
Then I make the same HTTP request using GET method instead of HEAD.
After done GET request, i come back sending squid HEAD request:
squidclient -m HEAD
sön 2009-09-20 klockan 23:26 +1200 skrev Amos Jeffries:
never_direct allow all
This is redundant with 'always_direct deny all'
No it's not. It would have been redundant if there was an always_direct
allow all, but not on deny.
The default for both always_direct and never_direct is both
sön 2009-09-20 klockan 23:46 +1200 skrev Amos Jeffries:
* Squid can also open https:// URLs if the client browser is happy to
be talking unsecured HTTP and let the secure bit only happen between
Squid and the website. (There are no actual web browsers I know of that
do this, only
sön 2009-09-20 klockan 08:09 -0400 skrev CDMB:
I am getting an error message when reverse proxy to outlook web access
from cache.log:
2009/09/20 02:00:52| ctx: exit level 0
2009/09/20 02:00:52| ctx: enter level 0:
'https://webmail.xxyy.com/exchange/mn-vw'
2009/09/20 02:00:52| http.cc(573)
mån 2009-09-21 klockan 00:30 +1200 skrev Amos Jeffries:
Will there be some kind of How-To for using this new feature?
Yes, its in the configuration manual login=NEGOTIATE setting for
http://www.squid-cache.org/Doc/config/cache_peer
There also needs to be a ticket in Kerberos somehow..
fre 2009-09-18 klockan 17:23 +0200 skrev Benjamin Indermühle:
2009/09/18 09:05:38| fwdNegotiateSSL: Error negotiating SSL
I doubt that.
ntlm breaks during the handshake and not when starting the connection.
the ssl connection is established.
The errormessage says otherwise.
ons 2009-09-16 klockan 06:39 -0700 skrev sandiphw:
Recently I found that logfiles are flooding with informations like
access.log
1253094090.451 0 192.168.42.30 TCP_DENIED/407 1725 OPTIONS
http://ab-desktop/ - NONE/- text/html
Seems that client is running some malfunctioning
ons 2009-09-16 klockan 06:39 -0700 skrev sandiphw:
Logfiles becomes in over a GB witin 7 days and squid stops working. We need
to manually replaced these files with new one. debug_option is set to
default. How to stop these informations comming to logfiles?
It's normal requests and should
ons 2009-09-16 klockan 13:49 +0530 skrev Avinash Rao:
The cache.log is not populated:
Odd.. but seems your Squid is getting lost somewhere in the log
rotation.
Some things to try to collect more details.
1. try if squid -k debug gives you some debug output, but probably not
if cache.log is
ons 2009-09-16 klockan 10:53 +0100 skrev J Webster:
IS there a setting in the conf where we can remove the squid version from
error pages?
httpd_suppress_version_string
Regards
Henrik
ons 2009-09-16 klockan 12:04 +0200 skrev Fili:
Strangly enough on some of the website's embedded mp3 files are often
cut short to a mere 2sec file (while they are minutes long). When
performing a hard refresh, the file usually can be played as normal.
I've tried on several operating
ons 2009-09-16 klockan 18:02 +0530 skrev Avinash Rao:
3) how do i use truss, not found on my machine
What OS are you running on the server? If Linux then use strace instead.
4) r...@sunbox:~# gdb /usr/sbin/squid 21557
This GDB was configured as x86_64-linux-gnu...
(no debugging symbols
tis 2009-09-15 klockan 14:43 +1200 skrev Amos Jeffries:
Yes, but here we are talking about the other side, when Squid makes the
outgoing connection. That part do not need to depend in any way on how
We are talking about setting http_port (incoming) options. Or so I thought.
I am not sure
tis 2009-09-15 klockan 11:12 +0530 skrev Avinash Rao:
Yes, the squid process is running and there is no problem.
I don't see anything fishy in the cache.log either. I post the
contents of cache.log soon.
Also check your /var/log/messages file.
Regards
Henrik
squid
User: -nduda- (S-1-5-21-1735149609-2005929907-911163043-2553)
Group: -group4-(S-1-5-21-1735149609-2005929907-911163043-14421)
Sending OK to squid
OK
-Original Message-
From: Henrik Nordstrom [mailto:hen...@henriknordstrom.net]
Sent: Monday, September 14, 2009 4:55 PM
tis 2009-09-15 klockan 20:27 +0800 skrev Ryan Chan:
Hello,
On Mon, Sep 14, 2009 at 3:36 AM, Henrik Nordstrom
hen...@henriknordstrom.net wrote:
sön 2009-09-13 klockan 15:24 +0800 skrev Ryan Chan:
Is that only if and only if a user press F5 in their browser, the IMS
will be sent
tis 2009-09-15 klockan 22:47 +1200 skrev Amos Jeffries:
feaks wrote:
I'm using Version 2.5.STABLE3 and i get this error:
Upgrade time!
2.5 has been obsolete for more than a few years.
2009/09/15 10:18:55| WARNING: ldap_group #1 (FD 26) exited
2009/09/15 10:18:55| WARNING:
tis 2009-09-15 klockan 13:29 +0200 skrev Tobias Reckhard:
The problem I've got is that I don't know how to extend the Squid
configuration to redirect any requests to
https://www.somesite.com/somepath to the other back-end server. I've
tried a url_regex ACL and tying that to a second
tis 2009-09-15 klockan 13:44 +0200 skrev Phibee Network Operation
Center:
A user want access to a FTP server with IE. He use the
url ftp://login:p...@domain.com
He can see the ftp, see all files but if he want upload a file, he have
a error
msg that said: Your proxy are not configured for
tis 2009-09-15 klockan 13:16 + skrev Hubert Asior:
Does anyone know how I can configure my squid server to automatically
redirect all users to a particular url anytime the browser is opened
(forcing a particular home page for all proxy users)?
The proxy can't tell when browsers are
tis 2009-09-15 klockan 22:33 +1200 skrev Amos Jeffries:
Sounds like a typical MTU situation. Forcing 9000 bytes through a 1500
byte port on the switch will result in failure. The switch will be
generating ICMP messages to signal the problem and cause automatic
packet reduction to kick
tis 2009-09-15 klockan 17:57 +0400 skrev Mario Remy Almeida:
Hi Amos,
But I can login and browser the Applications server without any issue
even if MTU set to 9000.
If the vmware instance is running bridged it quite likely won't notice
if the MTU setting it's trying to use is incompatible
tis 2009-09-15 klockan 15:49 +0100 skrev Nigel:
The four http linked Eicar files at
http://www.eicar.org/anti_virus_test_file.htm are all intercepted when
using IE. However Firefox only intercepts the two 'zip' files. the com
and txt file can be accessed.
Could it be the case that these
tis 2009-09-15 klockan 20:27 +0530 skrev vikas rawat:
Hi,
For AD authentication i tried;
auth_param basic program /usr/lib/squid/squid_ldap_auth -R -b
dc=Seinpuvi0001,dc=company-sbm,dc=com -D
cn=testadmin,cn=Pune/Users,dc=Seinpuvi0001,dc=company-sbm,dc=com -w
pwd -f sAMAccountName=%s -h
tis 2009-09-15 klockan 17:02 +0200 skrev Schermuly-Koch, Achim:
Ok. I have implemented som code, that adds an ETag header dependung of the
requested URI and the sessionId. Unfortunately it does not work. The more i
am thinking about it the more i am coming to the point, that it cannot work
tis 2009-09-15 klockan 18:03 +0100 skrev Genaro Flores:
I guessed so but I was thinking a specialized tool could do the indexing
for whoever wants/needs it. Maybe I'll try making a couple short scripts
for that purpose and for searching the index and retrieving the targets. I
was wishing
tis 2009-09-15 klockan 06:37 -0700 skrev ilinktech:
My question - I know that Squid can do reverse proxy for OWA (I've seen the
examples) but since ISA is already doing the auth / reverse proxy functions
and as all I really need is a way to get the traffic from site1 to site2,
what would the
tis 2009-09-15 klockan 13:32 -0400 skrev Nick Duda:
Nothing is different. They are all distribution groups, nothing is different.
And still samba winbind is not returning the ..-7230 group SID (group3)
for your user SID... which means that as far as Samba winbind is
concerned you are not member
tis 2009-09-15 klockan 21:45 +0200 skrev Matus UHLAR - fantomas:
The last part is unfortunately non-trivial on some OS:es where
getsockname returns the original destination with no indication that the
request was intercepted. So we assume that all requests arriving on an
intercept flagged
tis 2009-09-15 klockan 15:50 -0400 skrev bryan_cole...@dart.biz:
Can squid be setup to act as a socks 5 proxy? If so, would you please
point me to the proper configuration documents/examples.
No. Squid is an caching HTTP proxy only.
I have been
using ss5 as my socks 5 proxy; however, it
tis 2009-09-15 klockan 18:57 -0700 skrev ScarEye:
Squid is installed on an embedded device, With 16MB of RAM and 8MB of PROM it
would fill up within a few seconds.
We have this one computer that needs access to 3 websites that I don't want
192.168.1.2-192.168.1.10 to have access to. The IP
sön 2009-09-13 klockan 18:30 -0400 skrev Dhyan Mishra, Contractor, Code
5592:
I use WCCPv2 configurations as I did in the previous 3.0. However,
it does not send a single packet to the router. I compiled with
the same options enabling wccp
That is a known bug when not having any cache_dir.
mån 2009-09-14 klockan 10:25 -0400 skrev Dhyan Mishra, Contractor, Code
5592:
Amos/Henrik,
I applied the patch you linked below to the
squid-3.1.0.13 - Aug 04,2009 build, and recompiled it.
This fixed the WCCPv2 and the transparent proxying works.
However, in my configuration I am
: -noproxyuse-
SID: --
GID: --
Sending ERR to squid
And I still get the Access Denied page.
-Original Message-
From: Nick Duda
Sent: Monday, September 14, 2009 10:16 AM
To: 'Henrik Nordstrom'
Cc: squid-users@squid-cache.org
Subject: RE: [squid-users] Deny access
mån 2009-09-14 klockan 22:44 +0900 skrev Mikio Kishi:
Hi, Leonardo
not directly that way . you'll have to use reply_body_max_size
for that.
you'll have to define your other ACLs and merge them with
reply_body_max_size which takes the maximum site as argument.
I'd like to use it
mån 2009-09-14 klockan 19:33 +0530 skrev Avinash Rao:
I am having problems with Squid everyday.. twice everyday to be precise.
Squid stops responding.. I have to restart squid service to resume
service. Even the old cache_mem = 100MB setting had the same problem,
the current setting of
mån 2009-09-14 klockan 16:07 +0200 skrev Matus UHLAR - fantomas:
btw, why it isn't possible to use authentication on the same port as
transparent proxy? Couldn't squid detect if to use authentication just
from finding out if the connection was redirected or not?
The last part is unfortunately
mån 2009-09-14 klockan 15:08 +0100 skrev Genaro Flores:
Ah, thanks. I reckon there have been no changes since I last asked the
question. Although 'purge' does look promising (except for efficiency and
that I doubt it can do anything to decrease the time required to perform
multiple
lör 2009-09-12 klockan 16:50 +1200 skrev Amos Jeffries:
No its not.
accel mode == reverse proxy == squid pretending to be a web server.
tproxy == squid pretending not to be there.
But why is that? There is not really any technical reason why not TPROXY
can be used in reverse proxy mode as
mån 2009-09-14 klockan 13:22 -0500 skrev Randy Sargent:
I am setting up a reverse proxy with SSL offloading on a Debian (Lenny)
system with Squid3 for multiple sites/servers, including Outlook Web
Access (2003).
For OWA SSL-Offload you need to set the front-end-https=auto option in
tis 2009-09-15 klockan 12:28 +1200 skrev Amos Jeffries:
The big reason is that TPROXY passes the IPs to Squid inverted via
accept(). There is no probe like the NAT ORIGINAL_DST to separate the
TPROXY and non-TPROXY received connections. The only way to identify this
IP inversion is the flags
sön 2009-09-13 klockan 15:11 +0800 skrev Wong:
Is this issue relate to Symantec Liveupdate problem if HTTP proxied by
Squid?
No idea. Don't know Symantec Liveupdate.
Regards
Henrik
sön 2009-09-13 klockan 15:24 +0800 skrev Ryan Chan:
Is that only if and only if a user press F5 in their browser, the IMS
will be sent?
No. IMS is a cache validation and is done by caches (including browser
caches) whenever there is access to a stale object.
Regards
Henrik
lör 2009-09-12 klockan 18:13 +0800 skrev Ryan Chan:
Now I understood Squid is not 100% HTTP 1.1 complaints.
1. Why it that? Too hard to implement?
The small parts still missing are not seen very important by most, and
requires a quite big effort to get done.
2. Which parts in the HTTP 1.1
lör 2009-09-12 klockan 10:28 +0200 skrev matteo cazzador:
Excuse me for my terrible english, i want 2 things
1. that if parent proxy (contenti filter dansguardian) go down , the
local proxy permit the navigation (http and https).
2. https passing through parent proxy
Ok.
Sounds like the
tor 2009-09-10 klockan 11:08 -0300 skrev Augusto Casagrande:
Hi, a new issue.
I have noticed that Squid stops and starts automatically.
My /var/log/messages shows :
.
.
.
.
squid[20957]: assertion failed: ACLProxyAuth.cc:227:
authenticateUserAuthenticated(checklist-auth_user_request)
tor 2009-09-10 klockan 11:36 +1200 skrev Amos Jeffries:
cache_peer_access server_2 allow sites_server_2
No deny all here? or did you intend this server to be a backup provider
of img01.cprpt.com as well?
cache_peer_access works the same as the other access directives. If your
last
fre 2009-09-11 klockan 18:35 +0200 skrev matteo cazzador:
hello, i'm trying to configure two proxy servers, one is a parent proxy,
i'm a novice , i've a problem, why the https request don't pass through
parent proxy?
note i use in the direct proxy squd.conf:
cache_peer 10.X.X.X parent
fre 2009-09-11 klockan 12:51 -0400 skrev Nick Duda:
How can I configure squid to allow access to all users and block users in a
certain AD group?
See the wbinfo_group helper. (external_acl_type)
Regards
Henrik
tor 2009-09-10 klockan 20:48 +0800 skrev Ryan Chan:
Can you point me to the related doc?
For HTTP/1.0 keep-alive? Not sure where that specification is today.
Think it was a Netscape document. It's existence is mentioned in
HTTP/1.1 specifications. But the principle is very simple, Connection:
ons 2009-09-09 klockan 10:52 +0530 skrev Avinash Rao:
Even i don't have access.log on my system. I see only cache.log and
store.log under /var/log/squid. Why i access.log used and how can i
enable it. I am using Squid2.6stable18.
Have you configured the access_log directive in your
ons 2009-09-09 klockan 12:02 +0530 skrev Avinash Rao:
http_access allow staffgroup
http_access allow student staffgroup
The above is wrong.
The first directive allows everyone in staffgroup without restriction,
which means the second can not be reached. Squid uses the first
http_access line
ons 2009-09-09 klockan 11:24 +0300 skrev Kevin Kimani:
This is the error message am getting from access.log.
1252483940.606 2 10.176.203.55 TCP_MISS/503 1660 GET
http://www.aphrc.org/ - DIRECT/63.246.8.100 text/html
What error do you get in the browser (disable show friendly error
Hmm.. that does not match your access.log entry where it obviously could
find the IP..
ons 2009-09-09 klockan 12:09 +0300 skrev Kevin Kimani:
am using ubuntu.
The browser displays The following error was encounterd
Unable to determine IP address from hostname for www.aphrc.org
the dns
tis 2009-09-08 klockan 11:29 +1200 skrev Amos Jeffries:
[2] No. Go back to the _current_ documentation and responses. Disregard the
terminology from a decade ago about a non-relevant release of Squid. Things
change.
The dstdomain acl is still the same
www.example.com - Matches just the host
tis 2009-09-08 klockan 17:54 +0200 skrev apmail...@free.fr:
Still, is it possible to present specific autentication schemes depending on
the
useragent ?
Not yet.
Maybe I didn't explain clearly : it's not the migration process in itself that
worries us. It's the everyday use of the future
tis 2009-09-08 klockan 10:27 -0800 skrev Chris Robertson:
For what it's worth, I found that putting my COSS stripe in a file on a
congested disk did nothing for performance. I wound up creating two
partitions per disk. The first is dedicated to COSS and the second
(formatted ext3) holds
ons 2009-09-09 klockan 00:29 +0800 skrev Ryan Chan:
Hello,
I am using Squid 3.0 as a reverse proxy to Apache 1.3.
What I found out that is client = squid is using keep alive (from
live http header, Connection: keep alive)
but squid = apache is only using HTTP 1.0 (from apache access
tis 2009-09-08 klockan 23:09 +0200 skrev Friedrich Hattendorf:
Seems to be a problem of squid.conf:
all three had the same entry:
#Default:
# cache_access_log /var/log/squid/access.log
I deleted the # in the above line with access.log, restarted
squid and the access .log was there
tis 2009-09-08 klockan 17:16 -0500 skrev SecureSoft - Daniel Merino:
winbindd[11358]: [2009/09/08 13:09:53, 0]
rpc_client/cli_pipe.c:rpc_api_pipe(790)
Sep 8 13:09:53 s7729w50 winbindd[11358]: rpc_api_pipe: Remote machine
s7729502.pe.igrupobbva pipe \NETLOGON fnum 0x4007returned critical
sön 2009-09-06 klockan 07:26 -0700 skrev pokeman:
Thanks henrik for your tip can you guide me what is the recomended setting
for coss .2ndly currenly i am using aufs . after enabling coss what heppen
with store cache object. coss required to use clean disk .
You can use both coss aufs on the
mån 2009-09-07 klockan 07:09 -0500 skrev Luis Daniel Lucio Quiroz:
I did forget the fact that if I use my webbrowser to look that url, it works.
I think it is a matter of the trendmicro client.
Squid crashes is by definition a Squid problem. May be triggered by
unexpected oddnesses or
mån 2009-09-07 klockan 12:19 -0300 skrev RicardoCh:
In Squid I have a line acl myweb dstdomain /usr/squid/domain.
Where domain save a list:
*.mydomain.com
www.mydomain.com
*.otherdomain.com
www.otherdomain.com
There should be no stars. Jus
.mydomain.com
and don't list explicit
mån 2009-09-07 klockan 19:13 +0300 skrev Itzcak Pechtalt:
Hi,
I have some problem with Squid 2.7.
A very large object is saved to disk even it exceeded
maximum_object_size which is 4MB.
It seems that chunked objects are saved to disk without any limit.
Applies to objects without a prior
in squid.conf
cache_dir coss /cache1 12 max-size=524288 block-size=64
mount point= /cache1
harddisk size 120 GB= 12
max-size object= ?
block-size = ?
Henrik Nordstrom-5 wrote:
sön 2009-09-06 klockan 07:26 -0700 skrev pokeman:
Thanks henrik for your tip can you guide me what
sön 2009-09-06 klockan 16:50 +1200 skrev Amos Jeffries:
NP: making the L1/L2 values 100 10 is probably a bad idea. AFAIK they
should be exponentials of 2 for fastest file path location.
No, but the resulting directory sizes of the L2 directories should be
reasonably block-aligned (the
lör 2009-09-05 klockan 03:52 -0700 skrev pokeman:
Hello
Today i have seen some issue with Disk I/O performance issue can any
tell me how to improve that !
Well, it seems you are running the cache on a single HDD. This won't
scale well and you will be limited by the number of seeks/s the
fre 2009-09-04 klockan 11:27 -0400 skrev Chris Woodfield:
The question is - does the Actual column count the distribution of
individual hashes to a particular parent, or the number of queries
directed there?
% of the queries.
Regards
Henrik
fre 2009-09-04 klockan 15:23 -0500 skrev Bob T. Terminal:
I am working on a project which requires the redirect program to know
the Authorization information for the http headers. I was wondering if
anyone could tell me if the ClientHttpRequest referenced in the
redirectStart function
tor 2009-09-03 klockan 23:53 -0700 skrev Chudy Fernandez:
ignore-no-store has been removed in 2.7?
This option has never been available in Squid-2, only Squid-3.
Regards
Henrik
fre 2009-09-04 klockan 11:37 +0200 skrev Pierre Thomas:
2009/09/04 11:31:36| Processing Configuration File: /etc/squid/squid.conf
(depth 0)
2009/09/04 11:31:36| Can't use proxy auth because no authentication schemes
are fully configured.
FATAL: ERROR: Invalid ACL: acl SSO proxy_auth
fre 2009-09-04 klockan 06:16 -0400 skrev Sachin Malave:
Is there a way to configure squid at same gateway without transparent
mode but should support authentication.
Yes, just add another http_port without the transparent option and have
your clients configured to use that as proxy.
Regards
fre 2009-09-04 klockan 11:03 +0400 skrev Aleksey Samostrelov:
Hello.
On squid 2.6 STABLE17 can not change cache manager email on error page.
It is always proxy_administrator though cache_mgr parameter set to custom
email.
Then you have some setting setting it to proxy_administrator as
fre 2009-09-04 klockan 06:45 -0700 skrev Chudy Fernandez:
Is there a patch to use it in squid-2?
Probably.. digging.
no, the squid-2 version of that patch did not have ignore-no-store, only
the squid-3 version.
http://www.squid-cache.org/bugs/show_bug.cgi?id=1057
Regards
Henrik
fre 2009-09-04 klockan 15:41 -0500 skrev Dave Dykstra:
On Thu, Sep 03, 2009 at 09:48:43PM +0200, Henrik Nordstrom wrote:
tor 2009-09-03 klockan 09:46 -0500 skrev Dave Dykstra:
When is the next squid-2.7 stable release expected? I am very eager
for the fix in http://www.squid-cache.org
tor 2009-09-03 klockan 19:03 + skrev Ricardo A:
Dear Chris and Henrik,
I'm sorry, but now cannot access webpages from outside...
Yes I can from LAN...
I repeat that is a debian Lenny webserver-fileserver-firewall (iptables-Squid
2.7-Samba 3-Apache 2, all in the same machine).
tor 2009-09-03 klockan 13:36 +0200 skrev Developer:
I have question about caching on squid.
I have same URL with different caching directives private (user logged)
and public. Each page have different ETAG.
And when is respective version served?
I can not find anything about this in HTTP 1.1
tor 2009-09-03 klockan 06:57 -0700 skrev Phil_Smith:
Hi, I have installed SQUID 3 on an OpenSuSe 11.1 server fitted with 2 NICs.
NIC1 is connected to a Broadband router. NIC 2 is connected to an internal
LAN.
Ok. Not a too uncommon setup.
I followed the instructions in the squid.conf file
tor 2009-09-03 klockan 09:46 -0500 skrev Dave Dykstra:
When is the next squid-2.7 stable release expected? I am very eager
for the fix in http://www.squid-cache.org/bugs/show_bug.cgi?id=2451
(regarding 304 Not Modified responses).
When I find some spare or paid time to finish it up.
Regards
tis 2009-09-01 klockan 20:17 -0700 skrev xetorthio:
Hi everyone!
I ran today to a really strange behavior of squid.
My application (A) opened by mistake a lot of persistent connection to
another application (C) going through a squid (B) for caching purposes.
When I saw the connections I
ons 2009-09-02 klockan 12:24 +0600 skrev Yuri Vorobyev:
It is possible to limit bandwidth to users, based on ident acl's?
I'm upgraded to version 3.0.18 and trying this:
For this to work reliably you probably need to refer to an ident acl in
http_access, making Squid wait a little for the
ons 2009-09-02 klockan 14:38 +0600 skrev Yuri Vorobyev:
acl ident ident REQUIRED
http_access deny ident_aware_hosts ident !all
Unfortunately it doesn't work.
Which Squid version?
Regards
Henrik
ons 2009-09-02 klockan 09:27 -0500 skrev Luis Daniel Lucio Quiroz:
Is there any reason to know why squid suddenly reports 1024 file descriptors,
if i restart it it goes normal to 64k descriptors.
Someone may have restarted it before with a low ulimit..
Regards
Henrik
ons 2009-09-02 klockan 12:21 -0500 skrev SecureSoft - Daniel Merino:
I’m looking for instructions about how to authenticate my squid with two
Active Directories. I could authenticate it with one AD with ntlm. Thanks
for answering
Set up a trust relation between the two.
Regards
Henrik
ons 2009-09-02 klockan 12:52 -0500 skrev SecureSoft - Daniel Merino:
How works this? Because when i configure the squid Server in the Kerberos
and samba i set up a active directory config and I don’t know how to add
another one.
Trust relations is configured in the active directory servers.
ons 2009-09-02 klockan 12:42 -0700 skrev Guy Bashkansky:
Now I see the Expires header having a value in the past, which may
confuse clients and caches further down the chain.
Scenario: origin returns max-age=900 (15 min) and refresh_pattern
overrides expire to 24 hours, what do the headers to
ons 2009-09-02 klockan 13:42 -0700 skrev Guy Bashkansky:
I'm using a customized version of Squid 2.4 STABLE6. But nothing
seems to be customized in refresh.c, except for my own recent swap of
age and expires checks (as recommended).
Ouch.. that's a very very old relese. Upgrading highly
201 - 300 of 11697 matches
Mail list logo