I'm not sure if Squid should also be configured to handle SSL requests.
(eg : Squid as a transparent proxy for both port 80 and port 443
requests)
I know that squid will try to use the CONNECT method, but I'm wondering
if it's just overkill because it'll most likely bypass the
ed to allow the complete port range from 1024
through 32768.
...
[snip]
Does anyone know how This can be configured in a Linux Squid Install?
Is there are concern like this?
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
CPU kernel 2.6.9-gentoo-r1
Neuromancer 00:03:49 up 3:26, 5 users, load average: 0.19, 0.17, 0.40
em to be right.
I've not resorted to re-compiling yet because based on my googling, I
need to change FD_SETSIZE.
PS : This is Fedora Core 2, running with squid-2.5.STABLE5-4 (rpm)
Appreciate any and all help
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
CPU kernel 2.6.9-gentoo-r1
Neuroma
On Sun, 2004-11-21 at 02:12, Ow Mun Heng wrote:
> Need some advice, I can't seem to be able to locate resources which will
> help me here.
>
> I'm building a squid server which will serve a _lot_ of clients. I want
> to increase it's max-file-descriptors,
aufs /cache 25000 16 256"
> and I got close to 15% Byte Hit Ratio)
I've just built such a box on a P4 2.4 /512MB ram.
Max_obj_size 40 M (Apple Movie Trailers)
cache_dir aufs 300 60 256 (SATA reiserfs)
Not fully tested yet.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
CPU k
access)
somewhere in http://www/livejournal.com/users/lotso
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
CPU kernel 2.6.9-gentoo-r1
Neuromancer 15:29:02 up 6:10, 7 users, load average: 0.12, 0.31, 0.39
e contents are encrypted
anyway. I'm not sure but you can try.
The other way to get them to work is to use the CONNECT feature. Stuffs
like AIM/Yahoo etc will work if you use CONNECT.
Look at the
acl safe_ports
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
CPU kernel 2.6.9-gentoo-r1
Neuromancer 15:31:52 up 6:13, 7 users, load average: 1.11, 0.50, 0.43
On Fri, 2004-11-19 at 14:19, Venkatesh K wrote:
> This box serves 250 req/sec (peak) and 101 req/sec (day average).
> Cache size is 170GB and median service time is about 45ms.
170GB ? Over How many drives?
What's your Maximum_object_size?
Is there a way to benchmark squid?
--
idea how to get to compile.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
CPU kernel 2.6.9-gentoo-r1
Neuromancer 15:34:35 up 6:15, 7 users, load average: 1.03, 0.56, 0.45
he squid
> daemon.cheers!
I've managed to get the Max_file desc to 4096 already. It seems that
doing the ulimit-HSn 4096 at the init script will make it go to 4096. It
won't work with 8192.
>
> -m4-
>
> --- Ow Mun Heng <[EMAIL PROTECTED]> wrote:
>
> > On
On Mon, 2004-11-22 at 23:17, Andrew Sawyers wrote:
> Tobias Reckhard wrote:
> > Hi
> >
> > Short question: is it possible to implement failover and/or load sharing
> > with Squid configuration parameters alone when one Squid has two
> > upstream Squids available as cache_peers (but no direct acc
rect
#Squid passing client SSL to Exchange to handle
> Client (443) -> Squid -> (443) OWA
Which version of squid do I need to use?
> How do I configure my squid.conf for this?
I think you need to look at squid's acls list. (Safe_ports)
it uses CONNECT by default for 443.
--
Ow
On Sat, 2004-11-20 at 11:31, Venkatesh K wrote:
> On Sat, 20 Nov 2004 00:06:39 +0800, Ow Mun Heng <[EMAIL PROTECTED]> wrote:
> > I was reading about Tsunami's literature on "Designing a web caching
> > infrastructure" and came upon this line
> >
> >
On Mon, 2004-11-29 at 11:32, Martin Marji Cermak wrote:
> Hello guys,
> I have been playing with Squid under a heavy load and there are some stats.
> I am trying to maximise the "Byte Hit Ratio" value. I got 13% average,
> but I am not happy about this number - I want it higher (how to do it?).
Does anyone has any insight to this? Or nobody actually does
benchmarks??
On Mon, 2004-11-22 at 15:36, Ow Mun Heng wrote:
> Hi,
>
> How can One benchmark a squid proxy server? I know about
> web-polygraph/measurement-factory but the instructions are long and I've
> yet
hat center will fail.
AFAIK, Hearbeat uses serial cables for monitoring, (I may be wrong, the
last time I read the documentation).
I would appreciate any help in this.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 18:00:01 up 8:28, 6 users, 1.64, 0.76, 0.54
ips
> There's no better benchmark than real users.
I understand, but better not to risk it not_being_able to withstand the
grunt.
Do you have any experience with load_balance??
>
> Chris
>
> -----Original Message-
> From: Ow Mun Heng [mailto:[EMAIL PROTECTED]
> Sent: M
On Mon, 2004-11-29 at 23:10, Andrew Sawyers wrote:
> Ow Mun Heng wrote:
> > Can Hearbeat work for remote squids? I'm researching for fail-over and
> > high availablity for squid running in remote locations.
>
> I run my heartbeat connections via crossover cables directly
On Mon, 2004-11-29 at 20:37, Venkatesh K wrote:
> On Mon, 29 Nov 2004 18:00:47 +0800, Ow Mun Heng <[EMAIL PROTECTED]> wrote:
> > Can Hearbeat work for remote squids? I'm researching for fail-over and
> > high availablity for squid running in remote locations.
> &g
But
unfortunately it's doesn't go into load-balancing)
>
>
> On Tue, 30 Nov 2004 11:10:16 +0800, Ow Mun Heng <[EMAIL PROTECTED]> wrote:
> > On Mon, 2004-11-29 at 20:37, Venkatesh K wrote:
> >
> >
> > > On Mon, 29 Nov 2004 18:00:47 +0800, Ow Mun
HopsterPort
> I believe this
> information is the same all the time, but I cannot confirm.
Then you might want to exercise caution here with the rule above.
>
> Has anyone else has experience with this?
>
> Cheers,
>
>
>
>
>
>
--
Ow Mun Heng
Gentoo/Li
CHINE?
Calamaris is only a reporting tool. It only parses the log files. AFAIK,
its output is text format.
>
> IF YES, THE LISTEN PORT MUST BE OTHER THAN 80, RIGHT?
>
> THANKS A LOT.
> LOOP.-
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 21:49:37 up 17 min, 5 average: 0.47, 0.53, 0.36
On Wed, 2004-12-01 at 02:17, Chris Robertson wrote:
> > -Original Message-
> > From: Ow Mun Heng [mailto:[EMAIL PROTECTED]
> > On Tue, 2004-11-30 at 03:10, Chris Robertson wrote:
> > Do you have any experience with load_balance??
>
> I have some. I have
eated at 0.0.0.0, port 32768, FD 4
2004/10/19 09:25:08| helperOpenServers: Starting 5 'squid_redirect' processes
2004/10/19 09:25:09| User-Agent logging is disabled.
2004/10/19 09:25:09| Referer logging is disabled.
>
> Thanks all!
>
> regards
> Yong
>
> *
> *
>
>
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 18:12:38 up 8:48, 7 users, 0.20, 0.12, 0.12
On Wed, 2004-12-01 at 18:14, Ow Mun Heng wrote:
> On Wed, 2004-12-01 at 16:54, Yong Bong Fong wrote:
> > 2004/12/01 15:53:46| Referer logging is disabled."
> > Content-Type: text/plain; charset=ISO-8859-1; format=flowed
> > Content-Transfer-Encoding: 7bit
> >
&
175: 21702 Abortado
> start-stop-daemon --q uiet --start --pidfile $PIDFILE --exec $DAEMON
> -- $SQUID_ARGS squid.
>
> [EMAIL PROTECTED]:~ #
>
> ----------
>
> I have never had this problem installing squid :(
>
> Thanks to all.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 18:22:03 up 8:58, 7 users, 0.17, 0.17, 0.16
On Thu, 2004-12-02 at 13:13, Martin Marji Cermak wrote:
> Ow Mun Heng wrote:
> > On Mon, 2004-11-29 at 11:32, Martin Marji Cermak wrote:
> >>USED CONFIGURATION:
> >>maximum_object_size 51200 KB (SHOULD I MAKE IT HIGHER ???)
> >
> > I made mine to cache up t
why is
this being posted here?
I've no experience in running clamav with squid and neither do I think
that it is worthwhile.
Most viruses come in via email anyway.
And running clamav on a squid box will surely grind it to a screeching
halt due to the extra processing overhead
>
> >
;what the Squid limits are.
> > >>
> > >>USED HARDWARE:
> > >>Processor: P4 1.8GHz
> > >>Memory:1 GB
> > >>Hardisk: 40 GB IDE 7200rpm
> > >>Controler: Serverworks Chipset
> > >>Ethernet card: Broadcom T
s)
>
> Thats what my system administrator told me, but seems lke ClamAV is for
> use with qmail. And only use for antivirus, not for blocking files with
> certain extensions.
I believe that clamav or qmail can be configured to remove those
particular extension files.
>
> Th
not working ... I
Was it working with a previous version??
> want squid be full transparent for certificate.
>
> no idea ... if someone can help me please
>
> Thanks
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 17:26:53 up 7:37, 7 users, 1.08, 0.61, 0.40
On Thu, 2004-12-02 at 17:44, J Thomas Hancock wrote:
> First off I would like to thank everyone for their input on my previous disk
> configuration question.
>
> I am in the process of setting up a small army of transparent caching
> servers. I am using Fedora Core 3 as the OS and Squid version 2
>
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 17:21:40 up 8:02, 4 users, 0.70, 0.53, 0.44
On Mon, 2004-12-06 at 09:29, Yong Bong Fong wrote:
> Dear all,
>
>I was trying to test my squid_ldap_auth from the terminal as shown
>
> *As seen above, it responded with "bash: ./squid_ldap_auth:no such file
> or directory"
Works for me :-)
Either you're doing something wrong or...
try
On Sun, 2004-12-05 at 23:37, Lucia Di Occhi wrote:
> I am either having a problem or my machine is faster than lightning :-)
> I am running:
>
> Squid Cache: Version 2.5.STABLE7
> Dell 6550 dual Intel(R) Xeon(TM) MP CPU 2.70GHz - 512 KB cache and 3G Ram
> with 3 disks in Raid5
> (quite a sweet m
yet. Can't comment
>
> Regards,
>
> Milind
>
>
> *
> NOTHING IS IMPOSSIBLE, Because Impossible itself says - I'M POSSIBLE
> ************
> *
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 10:22:16 up 48 min, 5 average: 0.40, 0.74, 0.80
ore speed vs more bandwidth savings.
I personally put it at 40MB.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 11:09:29 up 1:35, 5 users, 0.71, 0.45, 0.34
On Wed, 2004-12-08 at 22:47, Elsen Marc wrote:
>
> >
> >
> > A client of ours wants one of our products to work through their proxy
> > instead of opeing a port on their firewall .. so I am trying
> > to find out if
> > squid will proxy a request made by a tcp socket ... Does
> > anyone know
t methods:
on Linux 2.4 with 32 threads, ext3fs is fastest.
scheme FS Mount Opt throughput
aufsext3noatime 168
ufs reiserfsnoatime,notail 21.4
> Post your parameters here to the list, when your tunning is done, please.
Yeah.. Please
is a RAM object cache, are they taken in account in
> this formula?
This is as per-written on the Squid's FAQ. (IIRC)
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 15:53:04 up 6:19, 6 users, 0.17, 0.23, 0.20
> > aufsext3noatime 168
> > ufs reiserfs noatime,notail 21.4
ufs ext3NONE 48.4
This is the order of fast'ness
ext2fs
ext3
xfs
reiserfs
For some reason, reiserfs is the lowest performance wise.
Now, i"m really having some doubts.
> Ooo
command, ulimit -HSn 8192 and lastly,
>
> This you need however.
I see, so, this is needed to get Squid to have 8192 file-descriptors.
Otherwise it'll default to 4096 max.
I'll see how far I can go without recompiling and just using Fedora's
packaged rpms
--
Ow Mun Heng
ver (https)
Between squidbox and bank-server, is the communication encrypted?
(CONNECT?)
> This is required if your
> server require the use of client certificates etc as these can not be
> proxied.
I believe all these are the requirements, if one were to run squid as a
surrograte proxy (in
On Thu, 2004-12-09 at 06:44, Henrik Nordstrom wrote:
> On Thu, 25 Nov 2004, Ow Mun Heng wrote:
>
> > The other question is, what the difference between that port range and
> > that which is already in my kernel?
> >
> > cat /proc/sys/net/ipv4/ip_local_port_ran
alas, I have not idea how to "proxy chain" anti-virus to squid.
Even after reading Duane Wessel's Book.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 10:49:37 up 1:44, 5 users, 0.09, 0.26, 0.45
On Wed, 2004-11-24 at 02:43, Rahul Sinha wrote:
> Hi,
>
> is that because max-file-desciptor is set only to 1024 the problem is arising
> ?
>
> do increasing max-file-descriptor work if many squid is serving lot of proxy
> ?
If it is, then you should see the squid complaining in the logs
On Thu, 2004-12-09 at 06:51, Henrik Nordstrom wrote:
> On Tue, 30 Nov 2004, Ow Mun Heng wrote:
>
> > On Tue, 2004-11-30 at 03:10, Chris Robertson wrote:
> >> For my own experience with Squid benchmarking, I used polygraph.
> >
> > That was the program I was seei
they
> assume there is no proxy and make direct TCP connections to their "home
> server".
I've not done extensive testing, but did I read right that squid does
not support Java proxying?? If that's the case, then transparent
proxying (interception) would have a big pro
On Mon, 2004-12-13 at 07:06, Daniel Graupner wrote:
> Henrik Nordstrom schrieb:
> >> This is a very silly behaviour, why does squid crp URLs.
> >
> > It is infact very smart reasons behind this behaviour of Squid, and
> > relates to many things, not just questionmarks. As you have only told
> >
On Mon, 2004-12-13 at 17:58, Henrik Nordstrom wrote:
> On Mon, 13 Dec 2004, Ow Mun Heng wrote:
> > But since you're saying to _not_ run it on the squid box, but in front
> > of squid, it should be in-consequential. But, alas, I have not idea how
> > to "p
On Mon, 2004-12-13 at 18:11, Henrik Nordstrom wrote:
> On Mon, 13 Dec 2004, Ow Mun Heng wrote:
>
> > So essentially this means that whatever's being transferred from the
> > client (via HTTPS), once it reaches the squid box, it will be sent
> > un-encrypted to the
On Mon, 2004-12-13 at 18:27, Henrik Nordstrom wrote:
> On Mon, 13 Dec 2004, Ow Mun Heng wrote:
>
> > On Thu, 2004-12-09 at 06:47, Henrik Nordstrom wrote:
> >>
> >> This question is more of an glibc question than kernel, and no, you do not
> >> need to ed
On Tue, 2004-12-14 at 00:41, Henrik Nordstrom wrote:
> On Mon, 13 Dec 2004, Ow Mun Heng wrote:
>
> > Hmmm.. I didn't know that. Does any Open-SOurced ones exists? Eg:
> > Clamav?
>
> A quick Internet search on Squid ClamAV gives the following references:
>
&g
ngy? Only have Apache 2.X around..
This is from my gentoo's Apache2
cat /etc/apache2/conf/apache2.conf | grep -i bind -b5
4545-Include conf/commonapache2.conf
4577-
4578-###
4582-### IP Address/Port
4602-###
4606:#BindAddress *
4621-Listen 80
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
s in Squid.conf.
something like
acl Int_net src 192.168.1.0/255.255.255.0
http_access allow Int_net
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
98% Microsoft(tm) Free!!
Neuromancer 16:06:27 up 6:33, 7 users, 0.15, 0.37, 0.44
not working
>
> I am starting to feel like a parrot now.
Don't Be. All of us appreciate input from you.
I for one, even though am not implementing such things, it still pays to
be know, to learn.
Thanks for teaching us.
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
Neuromancer 15
terminals has a 'power surfer',
> > they tend to use all of the bandwidth leaving not much for the other
> > terminals.
> >
Look at docum.org
I was looking up on QoS yesterday and found that someone hacked squid to
make a sort of squid-qos.
Might be worth a look
--
Ow Mu
se
--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz
98% Microsoft(tm) Free!!
Neuromancer 10:39:04 up 1:28, 5 users, 0.37, 0.28, 0.26
On Tue, 2004-12-21 at 17:35, Kinkie wrote:
> On Tue, 2004-12-21 at 10:40 +0800, Ow Mun Heng wrote:
> > Is there any possiblity of caching an entire site??
> >
> > eg: www.somesite.com
> >
> > reason is to just act sort of like a local mirror for that s
or manuals would be very helpful.
Look at the SSL_ports or SSL_safe_ports (can't remember the exact name)
and put in the ports for ICQ and others there.
That's just neccesary for them to use the CONNECT method for connecting.
Note that these are _not_ proxying requests. Your box just acts
t takes anywhere between 10 -> 20 seconds to load a page
> and often times out. Squid is set up with the http_accel options correctly
> configured
Can you post the 4 lines which would make transparent proxy work?
I can't remember it off-hand. But there should be 4 lines.
--
Ow Mun
s
> or reisersfs (with notail option) on cache disk and probably use dedicated
> cache drive.
Nope... The book - "Squid - the definitive guide" shows that ext3 is
still faster then reiserfs.
Search the archives for the bit which I wrote and quoted from the book
--
Ow Mun Heng
Ge
uses_host_header on
Please strip next time. :-)
The 4 options seems correct. I've not much idea what could be happening.
What about doing a tcpdump/ethereal trace on the payload??
>
>
> On Tuesday 04 Jan 2005 06:45, Ow Mun Heng wrote:
> > On Tue, 2005-01-04 at 09:45, jools wro
m may help too, using xfs
> > > or reisersfs (with notail option) on cache disk and probably use dedicated
> > > cache drive.
>
> On 05.01 14:44, Ow Mun Heng wrote:
> > Nope... The book - "Squid - the definitive guide" shows that ext3 is
> > still faster then
s not work. One has
to specifically say you want MSN proxied and you have to list ACLs in
squid. (SSL_safeports)
I'm sure there's a firewall someone in that network. Block the MSN
ports. Isn't it enough. (I know this is a stupid statement, but... lack
of a better statement and an u
those ports.
my iptables is sketchy.. something like
iptable -A INPUT -p tcp -m tcp -dport 110 -j ACCEPT
iptable -A INPUT -p tcp -m tcp -dport 25 -j ACCEPT
/good deed for the day
--
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz
98% Microsoft(tm) Free!!
Neuromancer 17:49:45 up 9:05, 7 users,
load average: 0.36, 0.39, 0.37
-j
> ACCEPT
> -A FORWARD -i eth0 -o eth1 -p tcp -m tcp --sport 1024:65535 --dport
> 1863 --tcp-flags SYN,RST,ACK SYN -j ACCEPT
> -A FORWARD -i eth0 -o eth1 -p tcp -m tcp --sport 1024:65535 --dport
> 5050 --tcp-flags SYN,RST,ACK SYN -j ACCEPT
> -A FORWARD -p icmp -m icmp --icmp-typ
s is the way to go for small files. But
after reading the Oreilly book - "Squid = the Definitive Guide", I was
surprised that ext3 actually performs better.
Raw Partitions? I don't now about that. Maybe someone on the list would
know??
>
>
> Your feedback would be _very_
On Tue, 2005-02-22 at 16:10, Stefan Neufeind wrote:
> Ow Mun Heng wrote:
> > On Tue, 2005-02-22 at 08:13, Stefan Neufeind wrote:
> > Did you ever determine what the bottleneck was in the 1st place?
>
> I'm not too sure how to adequately check that. The system is runnin
On Tue, 2005-02-22 at 18:32, Daniel Herrero MartÃnez wrote:
> Hi there,
> I wonder if there is any way to limit the number of connnections to a
> destination (based on the destination address). I know it is possible to
> establish a limit based on the source address with MAXCONN, Âis there
> any
First off, let me apologise for cross-posting this email to multiple
Mailing Lists.
I was feeling a bit un-appreciated as a Developer and I thought of all
the other developers of Open Source (Free) Software who relentlessly
contribute to/make Open Source (free) software.
I just wanted to take so
I was feeling a bit un-appreciated as a Developer and I thought of all
the other developers of Open Source (Free) Software who relentlessly
contribute to/make Open Source (free) software.
I just wanted to take some time to officially say *Thank You* for all
the good things which you guys/gals have
Hi All,
Just wanted to announce that MyOSS Magazine - Edition 3 (We're Edition
3!) is now officially hitting the street. This is a community driven
project which aims to publish monthly. (Sorry if this is considered as
spam).
Securing your Network Connection using OpenSSL
OpenSSL is a very impo
27;s should be that.
wifi-> proxy1-> proxy2 -> inet
right?
--
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz 1.5GB RAM
98% Microsoft(tm) Free!!
Neuromancer 14:52:16 up 1 day, 19:56, 7 users, load average: 0.99, 1.04,
0.88
> -Original Message-
> From: Palmer J.D.F. [mailto:[EMAIL PROTECTED]
>
> That all said, I have about 10 DL360/DL380s doing various
> things, and a
> couple of Dell laptops with the Broadcom 57** gigabit NICS in
> them and it
> isn't good news on all of them.
> We have had issues with po
> -Original Message-
> From: Denis Vlasenko [mailto:[EMAIL PROTECTED]
> On Monday 12 September 2005 12:16, Michal Mihalik wrote:
>
> > system SPEC 2x.
>
> I didn't understand this part.
I think he means he has 2 of these machines
>
> > Debian stable. 2.4 kernel.
> > Squid Cache: Ve
rade this old "crap" haha)
--
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz 1.5GB RAM
98% Microsoft(tm) Free!!
Neuromancer 12:30:10 up 3 days, 23:03, 6 users, load average: 0.79,
0.91, 1.08
On Tue, 2006-02-21 at 11:57 +0200, Denis Vlasenko wrote:
> On Tuesday 21 February 2006 10:31, Matus UHLAR - fantomas wrote:
> > On 21.02 12:33, Ow Mun Heng wrote:
> > > I've got a squid cache running as transparent proxy on an _very_ old
> > > machine.
> &
On Thu, 2006-02-23 at 10:50 +0100, Matus UHLAR - fantomas wrote:
> > > On 21.02 12:33, Ow Mun Heng wrote:
> > > > P 133 Mhz
> > > > 128MB Ram
> > > > 20GB Hard Disk
> > > > 1GB Cache in aufs
> > > > Fedora Core 3
> > >
ve got 1.5GB in my laptop, I have 2.5GB swap, never touched. (It's
just _that_ big to support software suspend.)
>
>
> Thank you very much,
>
> Wennie
>
--
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz 1.5GB RAM
98% Microsoft(tm) Free!!
Neuromancer 15:36:13 up 6:59, 5 users, load average: 0.29, 0.54, 0.56
h/squish.cron.sh'
*/5 * * * * /usr/local/squish/squish.cron.sh
Otherwise, nice intro into squish.
A bit better than delay pools I guess. Then again, both has different
uses.
--
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz 1.5GB RAM
98% Microsoft(tm) Free!!
Neuromancer 10:32:57 up 2 days,
on could occur if the system experiences unexpected system
shutdowns.
Try :
1. Shut down squid.
2. Remove the swap.state files from your cache directories.
3. Start Squid again. It will slowly rebuild swap.state from the cache
files.
--
Ow Mun Heng
Gentoo/Linux on DELL D600 1.4Ghz 1.5GB RAM
Hi,
When setting Max Object size to it's default 4MB, I get good browsing
and download speeds (large files).
When I increase the Size to say 50MB (so that more BIG files gets
cached), I noticed that the download speeds becomes slower. (~ 1/2)
Is there a correlation to the Max Object size to the f
On Fri, 2006-11-03 at 11:42 +0100, Henrik Nordstrom wrote:
> fre 2006-11-03 klockan 10:17 +0800 skrev Ow Mun Heng:
>
> > When setting Max Object size to it's default 4MB, I get good browsing
> > and download speeds (large files).
> > When I increase the Size to say
On Fri, 2006-11-03 at 10:00 +0100, Matus UHLAR - fantomas wrote:
> On 03.11.06 10:17, Ow Mun Heng wrote:
> > When setting Max Object size to it's default 4MB, I get good browsing
> > and download speeds (large files).
> > When I increase the Size to say 50MB (so that more
Hi,
What does it take for content to get into the cache? My understanding is
that a RELEASE means that the object isn't cached in the disk. (but,
does it mean that it's being cached in memory instead??)
I'm seeing a lot of RELEASE in my store.log and I'm wondering why and
how I can reduce it into
Hmm.. seems like the transparent option for squid 2.6.3 has changed from
the 2.5 series.
used to be that we needed a few of the
httpd_accel options.
When I upgraded it, the new version doesn't seem to recognise this
option.
Any Clues?
On Fri, 2006-11-10 at 12:09 +0100, Henrik Nordstrom wrote:
> fre 2006-11-10 klockan 18:52 +0800 skrev Ow Mun Heng:
> > Hmm.. seems like the transparent option for squid 2.6.3 has changed from
> > the 2.5 series.
>
> > Any Clues?
>
> See the release notes.
Than
Perhaps I just don't get it. I just upgraded to 2.6.3 and then all of a
sudden, I read baout this TPROXY feature.
It enables client and server ip spoofing and it basically bypasses the
cache (so as to make it really really transparent etc).
So.. if I understand it correctly, the aim of tproxy is t
Hi All,
Anyone here has successfully gotten cacti to work on getting SNMP data
from squid for graphing?? I would be highly interested in it.
I've gone through the cacti forums, found this, tried it, but wasn't
successful.
http://forums.cacti.net/about4142.html
On Sat, 2006-11-11 at 00:37 +0100, Henrik Nordstrom wrote:
> lör 2006-11-11 klockan 00:11 +0800 skrev Ow Mun Heng:
> > Perhaps I just don't get it. I just upgraded to 2.6.3 and then all of a
> > sudden, I read baout this TPROXY feature.
> > It enables client and server ip
On Sat, 2006-11-11 at 14:59 +0800, Adrian Chadd wrote:
> On Sat, Nov 11, 2006, Ow Mun Heng wrote:
>
> > > You will still have the same TCP/IP protocol issues if not more.
> > > The only problem it might solve is access those sites not happy when a
> > > user c
I know SSL connections aren't really supported, but I know it supports
pass through connection using the CONNECT method.
Last night, I tried to (i have a transparent proxy setup through my
firewall) redirect all HTTPS(Port 443) traffic through squid and ended
up with this error message in the logs
On Mon, 2007-01-08 at 16:33 +0100, Henrik Nordstrom wrote:
> mån 2007-01-08 klockan 13:52 +0800 skrev Ow Mun Heng:
> > I know SSL connections aren't really supported, but I know it supports
> > pass through connection using the CONNECT method.
>
> Yes...
>
> &g
On Thu, 2007-01-18 at 17:01 +0800, Jeff Pang wrote:
> Your config is for Squid 2.5.
> Squid 2.6 has some change for the setting of accelerator.
> You may need to read the up to date documents on wiki.squid-cache.org
http_port 3128 transparent
User Auth does not work using transparent..
On Tue, 2007-06-12 at 22:11 +0200, Andreas Pettersson wrote:
> Leonardo Rodrigues Magalhães wrote:
> >If they are not available, which would be the correct math for
> > getting the value ? Something with cacheHttpOutKb/cacheHttpInKb and
> > cacheServerInKb/cacheServerOutKb would give me the b
96 matches
Mail list logo
