By did not work i mean that web pages are not getting
processed.Initial 1-2 requests for a web page are getting through but
then it gets stuck. No response and access log shows this ABORT error.
Since you said that it has nothing to do with the forward-proxy issue,
i have no idea what is happening.
On 24/04/2012 6:04 p.m., Ahmed Talha Khan wrote:
How would i define it then in a forward proxy mode? I am getting the
port 3128 is the registered service port for HTTP proxies. It is best to
pick another port randomly and firewall it so that clients cannot
connect directly to that NAT interce
ok i just disabled all the rules and it works for me now ill test
which rule is making a problem and let you know also.
Thanks
On Mon, Apr 23, 2012 at 11:20 PM, Muhammad Yousuf Khan wrote:
> here is the log for bbc.co.uk . first and last msg of log
>
> so you can see the time delay.
>
> 33520503
How would i define it then in a forward proxy mode? I am getting the
following in my access.log file.
1335250139.466 29498 192.168.8.39 NONE_ABORTED/000 0 GET
http://www.nvidia.com/ - HIER_NONE/- -
The NONE_ABORTED squid request status shows that it is aborting the
request. This is happening for
Sure, this is what I’m using:
acl d_neulion url_regex -i neulion[.](com|net).*[.]ts$
clientside_tos 0x46 d_neulion
Brian
On Apr 23, 2012, at 2:02 AM, Andrew Beverley wrote:
> On Sun, 2012-04-22 at 21:30 -0400, Brian Landy wrote:
Hi, I applied the patch but it doesn’t seem to be working
On 24.04.2012 08:21, Joaquín Puga wrote:
Hi all,
We are using squid v2.6 STABLE21 as a reverse proxy. We have a three
websites using http and 2 using https, each of them with its own IP.
We have two Verisign SSL certificates (single domain) for the https
connections. Those certificates expire in
On 24.04.2012 01:42, anita wrote:
Hi Amos,
Thanks for the reply.
I have another query now.
If the squid is configured in the transparent mode,
a. if a url say yahoo.com is requested through a browser like IE to
squid,
will the IE itself initiate a DNS lookup before forwarding the
request to
sq
On 24.04.2012 00:46, Francis Fauteux wrote:
> From: Amos Jeffries [mailto:squ...@treenet.co.nz]
On 21/04/2012 5:53 a.m., Francis Fauteux wrote:
> * We are using squid version 3.1.14, for which we cannot find the
> release notes (3.1.15 is the earliest version we found).
> Can you conf
Hi all,
We are using squid v2.6 STABLE21 as a reverse proxy. We have a three
websites using http and 2 using https, each of them with its own IP.
We have two Verisign SSL certificates (single domain) for the https
connections. Those certificates expire in less than a month and we are
considering r
here is the log for bbc.co.uk . first and last msg of log
so you can see the time delay.
335205033.183841 10.51.100.240 TCP_MISS/200 24506 GET
http://www.bbc.co.uk/ - DIRECT/212.58.244.66 text/html
1335205057.936328 10.51.100.240 TCP_REFRESH_HIT/304 435 GET
http://static.bbci.co.uk/wwhome
Here you go with my squid.conf
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192
On 23/04/2012 18:38, Muhammad Yousuf Khan wrote:
well i have been experiencing slow Internet browsing. not very slow
but comparatively slower then IPCOP firewall. i can not understand how
come i diagnose the issue.
i mean. i increase the RAM , i checked the DNS every thing is fine but
my browser
On 23/04/2012 16:42, anita wrote:
Hi Amos,
Thanks for the reply.
I have another query now.
If the squid is configured in the transparent mode,
a. if a url say yahoo.com is requested through a browser like IE to squid,
will the IE itself initiate a DNS lookup before forwarding the request to
squi
well i have been experiencing slow Internet browsing. not very slow
but comparatively slower then IPCOP firewall. i can not understand how
come i diagnose the issue.
i mean. i increase the RAM , i checked the DNS every thing is fine but
my browser stuck at "connecting" ones it start download it do
Hi,
I tried what Dean mentioned, and it worked well. Thanks.
On Mon, Apr 23, 2012 at 7:04 PM, Leonardo Rodrigues
wrote:
>
> despite the fact the most usual is browsing by hostnames of any kind,
> there's LOTS of pages that uses IP addresses on the links displayed and,
> thus, your rule would
Hi Amos,
Thanks for the reply.
I have another query now.
If the squid is configured in the transparent mode,
a. if a url say yahoo.com is requested through a browser like IE to squid,
will the IE itself initiate a DNS lookup before forwarding the request to
squid or will it simply forward the req
despite the fact the most usual is browsing by hostnames of any
kind, there's LOTS of pages that uses IP addresses on the links
displayed and, thus, your rule would probably break LOTS of legitime
browsing where the user is NOT really 'typing' an IP address.
for example, even HOTMAIL
> > From: Amos Jeffries [mailto:squ...@treenet.co.nz]
> On 21/04/2012 5:53 a.m., Francis Fauteux wrote:
> > * Modify the RESPMOD server to inject an "X-Next-Services:
> > new_respmod_service"
> > header to activate the new service, and inject an "X-Next-Services: "
> > header to deactivat
-Original Message-
Is it possible to block all IP based lookups from the browser with squid
acls?
If I assume you mean to match request to IP address,
http://192.168.1.1/, instead of to a hostname like
http://www.example.com, the following works quite well.
# Match By IP Requests
acl BYI
On 23/04/2012 11:15 p.m., Bijoy Lobo wrote:
Hi Will,
Will assigning more threads to squid solve this?
What make you think throwing more threads at a problem will make
anything crash less? Not that Squid uses threads anyway being a
single-threaded process.
On Tue, Apr 10, 2012 at 6:34 PM,
On 23/04/2012 11:06 p.m., Ahmed Talha Khan wrote:
So this port which is squid needs has to have connection with the
client?or with itself? How will i do that?
http_port 127.0.0.1:3128 ? would this work?
It is for the clients and peers to contact. Localhost would stop the
warning, but not solv
On 23/04/2012 8:25 p.m., MarkD wrote:
(think I posted this in the wrong forum last week, apologies)
I've tried all sorts and can't get delay pools working for youtube's HD
resolutions of 720 and 1080p.
Below is a config snippet I've been using which should block all streamed
media. This works
Hi Will,
Will assigning more threads to squid solve this?
On Tue, Apr 10, 2012 at 6:34 PM, Bijoy Lobo wrote:
> Hi Will,
>
> do I need to patch the squid source?
>
> On Tue, Apr 10, 2012 at 6:17 PM, Will Roberts wrote:
>> I think you're seeing bug #3405 which has a temporary patch attached:
>>
>
So this port which is squid needs has to have connection with the
client?or with itself? How will i do that?
http_port 127.0.0.1:3128 ? would this work?
-talha
On Mon, Apr 23, 2012 at 4:03 PM, Amos Jeffries wrote:
> On 23/04/2012 9:07 p.m., Ahmed Talha Khan wrote:
>>
>> Hey,
>> I am using 3.3 s
On 23/04/2012 9:26 p.m., Bijoy Lobo wrote:
Hello All,
Is it possible to block all IP based lookups from the browser with squid acls?
What do you call an "IP based lookup"? The obvious interpretation of a
request arriving over IP protocol means *everything* is blocked.
Amos
On 23/04/2012 9:07 p.m., Ahmed Talha Khan wrote:
Hey,
I am using 3.3 sources to make a transparent proxy. i have configured
the http port in the squid like this
http_port 192.168.8.40:3128 intercept ssl-bump
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
cert=/home/talha/squid/ww
Hello All,
Is it possible to block all IP based lookups from the browser with squid acls?
regards
Bijoy
Hey,
I am using 3.3 sources to make a transparent proxy. i have configured
the http port in the squid like this
http_port 192.168.8.40:3128 intercept ssl-bump
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
cert=/home/talha/squid/www.sample.com.pem
key=/home/talha/squid/www.sample.c
(think I posted this in the wrong forum last week, apologies)
I've tried all sorts and can't get delay pools working for youtube's HD
resolutions of 720 and 1080p.
Below is a config snippet I've been using which should block all streamed
media. This works for bbc.co.uk but not for youtube.com
I did recompile using
--enable-removal-policies="lru heap"
and added
memory_replacement_policy heap LFUDA
cache_replacement_policy heap LFUDA
no errors in cache.log or \var\log\messages after restart and after reconfigure
though Cache Manager still says removal policy is lru
Cache Manager menu
30 matches
Mail list logo