do-able, but
slightly more tricky
Ed W
don't disagree, but this will be a great first step to prove
whether it can work or not. Also, at least this bit will be standards
compliant, so we can work on bending the rules outside of that change
later on. I think this will be really good groundwork (and benefit squid)
Cheers
Ed W
to others than just me!
Thanks
Ed W
will continue to explore the code in the
meantime.
Thanks
Ed W
to reset the mark for each request? Where would be the correct location
to put the marking code in this case, ie I guess where the packet is
sent to the upstream socket? (I guess I need to be careful about
pipelining also?)
Thanks for your thoughts
Ed W
on it, and copies this back
to the client response connection?
How tricky would it be to offer this option in both directions? Does
anyone else have a use for this kind of feature?
Thanks
Ed W
required can be done using only etag
revalidation (and some tweaking of etags, but squid needs know nothing
about that...)
If anyone else is interested in such support then please shout. Alex,
would you mind picking this up with me again with a view to sponsoring
development?
Thanks
Ed W
be squid.
So yes, Peek with restrict (and a rather abrupt disconnect) would be
superb for our purposes. Will wait and watch!
Cheers
Ed w
access to servers which meet/fail to match a certain SSL cname?
eg I want to block facebook access, but without sslbump, so I allow SSL
proxying, but deny connections to servers with an SSL cname *.facebook.com?
Thanks
Ed W
protocol are the only exception I can think
of). If you DONT want to max out a given pipe then you need to
configure this in some way
Note you may have other problems which you might want to tune as well as
delay pools...
Ed W
that tcp is supposed to learn how to hog the entire connection,
allocating traffic more evenly is a tricky problem and you might want to
use the various features in squid delay pools and linux traffic control
to control this..?
Good luck
Ed W
headers for the response with the
different Accept-Encoding headers and compare?
Ed W
proxy clients?
(ie those with a proxy set in their browser). The cache_peer line uses
login=PASSTHRU so we never get involved with the authentication on the
local squid
Thoughts on how I could achieve this please (without two squid
instances)? Squid 3.2.0.16
Thanks
Ed W
someone have some big picture comments on rock store - benefits,
any known issues?
Cheers
Ed W
virtualisation solution, so as live
migration. On the flip side, the performance is very high with a
container solution and my machines boot in 1-2 seconds, so it's
really very easy for me to manage without a full virtualisation solution
Good luck
Ed W
situation)
Good luck
Ed W
Thanks
Ed W
P.S. If someone wanted to investigate adding gzip to Squid directly
then they would be looking for a hook into the code somewhere that
handled all the client bound response bodies, with access to the
original request to check Accept-Encoding headers. Where might someone
look
signaling criteria, you can use the auth user,
but pre-grouped to the service class names that you need. As an
extension to this basic idea I believe you can use the auth helpers to
derive these usernames from other criteria such as client IP address,
etc. Does this help?
Good luck
Ed W
So you could be smarter and instead inject some javascript which checks
if you are in a frameset and if not creates one. This of course has
some subtleties with ajax...
Ed W
On 11/10/2011 12:28, Hasanen AL-Bana wrote:
I believe yes ! but it will cause lots of troubles with pages like
page got suddenly slow on me because I was being
redirected to some german akamai site rather than the UK one...
This is likely to make a difference between snappy and sluggish though,
not dead...
Good luck
Ed W
), then it might be useful to generate (and
later test) etags based on some consistent hash algorithm?
Thanks
Ed W
recompression and
upstream gzip of content (actually probably we will use our own
compressing tunnel across the slow link)
Anyone know of any already written ecap/icap servers I might want to
investigate?
Cheers
Ed W
using Ziproxy and looking at moving the interesting bits to
a Squid ecap module. I have also used Rabbit proxy which is somewhat
similar)
Thanks for your comments
Ed W
, I realise this could lead to some side effects where the action of
visiting the web page itself causes some other side effect, however, I
think this is a manageable problem for this requirement?
Thanks for any pointers to ideas or other products that might help?
Ed W
someone advise how difficult this feature might be to add to Squid
3.1? Bonus marks if it doesn't break streaming resources...
Any other ways to achieve the same effect?
Thanks
Ed W
Rabbit:
http://www.khelekore.org/rabbit/
Grateful for any thoughts
Ed W
to be on the external proxy...
If anyone knows of any other good opensource proxy applications
(commercial or otherwise) that I could use for this process then please
let me know
Ed W
27 matches
Mail list logo
