RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear amos, Is there any update From: Muhammed Shehata [m.sheh...@tedata.net] Sent: Monday, December 17, 2012 10:24 AM To: Amos Jeffries Cc: squid-users@squid-cache.org; IT Network Security Subject: Re: [squid-users] Squid3 extremely slow for some website cnn.com 2nd file for large attach size Best Regards, *Muhammad Shehata* IT Network Security Engineer TEData Building A11- B90, Smart Village Km 28 Cairo - Alex Desert Road, 6th October, 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net On 12/13/2012 11:58 PM, Amos Jeffries wrote: On 13/12/2012 9:41 p.m., Muhammed Shehata wrote: Dear Amos, -the interrelation: the logs are from two squid similar servers that only differ in version and client at both request doesn't disconnect or anything the aborted maybe mean that squid can't get this url contains java script but what I wonder of why squid can get it successfully -here is the logs with time : squid2 on Centos5.2 1355387935.418 7 x.x.x.x TCP_MISS/304 324 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript squid3 on Centos 6.3 13/Dec/2012:10:39:05 +0200 20020 x.x.x.x TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js - HIER_DIRECT/cdn.optimizely.com - 13/Dec/2012:10:39:25 +0200 20020 x.x.x.x TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js - HIER_DIRECT/cdn.optimizely.com - Aha. Thanks this makes more sense. 7ms with a response versus 20 seconds with nothing returned. Although for better debug you should get the squid-3 to leave upstream server IP address in the log. It could be some problem of which IP is being connected to by Squid. With 3.2 at debugs_options 11,2 you get a cache.log HTTP trace of what is going between Squid and optimizely and client. I suspect optimizely is not responding when a request is delivered to them - but you need to track that down. Amos
RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear Pawel, thanks for your replay, I have two similar implementations client dans squid Internet the only difference between them is the squid version and centos version 1. squid2.6stable20 with centos 5.2 final 2. squid3.2.4 with centos 6.3 final Mshehata IT NS From: Paweł Mojski [paw...@pawcio.net] Sent: Wednesday, December 12, 2012 5:44 PM To: squid-users@squid-cache.org Subject: Re: [squid-users] Squid3 extremely slow for some website cnn.com W dniu 2012-12-12 11:53, Muhammed Shehata pisze: Dears, Is there any on can help [...] Hi; Could you please tell me what is your deployment scenario? Regards; Pawel Mojski
RE: RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dears, sorry but I've an urgent case, is there any Ideas about the JS issues in squid3 From: Muhammad Shehata Sent: Tuesday, December 11, 2012 9:32 AM To: Eliezer Croitoru; squ...@treenet.co.nz Cc: squid-users@squid-cache.org Subject: RE: [squid-users] Squid3 extremely slow for some website cnn.com Dear Amos,Eliezer Could you help me in that, I found squid3 failed to get some Java script pages in some websites squid3 logs : TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js squid3 logs :TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript Is there any patch to solve such issue in squid3 and if there any configuration option to speed up the response time without affecting badly Mshehata IT NS Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net
RE: RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear Sunyconq, Thanks for your update, but actually I modified the MTU and there is no diferrence at all I think it's related to java script handling method in squid2 and squid3 as the squid2 get it but squid 3 abort it which cause the slowness Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net -Original Message- From: 叶雨飞 [mailto:sunyuc...@gmail.com] Sent: Tuesday, December 11, 2012 12:09 PM To: Muhammad Shehata Cc: Eliezer Croitoru; squ...@treenet.co.nz; squid-users@squid-cache.org Subject: Re: RE: [squid-users] Squid3 extremely slow for some website cnn.com Try lowering MTU to 1400 on squid's system , sometime that's a non-obvious problem. On Tue, Dec 11, 2012 at 1:58 AM, Muhammad Shehata m.sheh...@tedata.net wrote: Dears, sorry but I've an urgent case, is there any Ideas about the JS issues in squid3 From: Muhammad Shehata Sent: Tuesday, December 11, 2012 9:32 AM To: Eliezer Croitoru; squ...@treenet.co.nz Cc: squid-users@squid-cache.org Subject: RE: [squid-users] Squid3 extremely slow for some website cnn.com Dear Amos,Eliezer Could you help me in that, I found squid3 failed to get some Java script pages in some websites squid3 logs : TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js squid3 logs :TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript Is there any patch to solve such issue in squid3 and if there any configuration option to speed up the response time without affecting badly Mshehata IT NS Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net
RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear Macus, Actually I don't think so as It being get on squid2 as below TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 /javascript Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net -Original Message- From: Marcus Kool [mailto:marcus.k...@urlfilterdb.com] Sent: Tuesday, December 11, 2012 1:09 PM To: Muhammad Shehata Cc: Eliezer Croitoru; squ...@treenet.co.nz; squid-users@squid-cache.org Subject: Re: [squid-users] Squid3 extremely slow for some website cnn.com I have problems with optimizely.com for a long time. When I use a proxy in the USA, retrieving websites is OK but when I stop using the proxy in the USA it fails to load. I live in Brazil and you have a problem being in Egypt so my guess is that optimizely.com hangs when you are in a country for which it has no configuration. You can safely block optimizely.com and the websites that use it, have no problems. Marcus On 12/11/2012 07:58 AM, Muhammad Shehata wrote: Dears, sorry but I've an urgent case, is there any Ideas about the JS issues in squid3 From: Muhammad Shehata Sent: Tuesday, December 11, 2012 9:32 AM To: Eliezer Croitoru; squ...@treenet.co.nz Cc: squid-users@squid-cache.org Subject: RE: [squid-users] Squid3 extremely slow for some website cnn.com Dear Amos,Eliezer Could you help me in that, I found squid3 failed to get some Java script pages in some websites squid3 logs : TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js squid3 logs :TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript Is there any patch to solve such issue in squid3 and if there any configuration option to speed up the response time without affecting badly Mshehata IT NS Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net
RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear Macus, Actually I don't think so as It being get on squid2 as below TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 /javascript Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net -Original Message- From: Marcus Kool [mailto:marcus.k...@urlfilterdb.com] Sent: Tuesday, December 11, 2012 1:09 PM To: Muhammad Shehata Cc: Eliezer Croitoru; squ...@treenet.co.nz; squid-users@squid-cache.org Subject: Re: [squid-users] Squid3 extremely slow for some website cnn.com I have problems with optimizely.com for a long time. When I use a proxy in the USA, retrieving websites is OK but when I stop using the proxy in the USA it fails to load. I live in Brazil and you have a problem being in Egypt so my guess is that optimizely.com hangs when you are in a country for which it has no configuration. You can safely block optimizely.com and the websites that use it, have no problems. Marcus On 12/11/2012 07:58 AM, Muhammad Shehata wrote: Dears, sorry but I've an urgent case, is there any Ideas about the JS issues in squid3 From: Muhammad Shehata Sent: Tuesday, December 11, 2012 9:32 AM To: Eliezer Croitoru; squ...@treenet.co.nz Cc: squid-users@squid-cache.org Subject: RE: [squid-users] Squid3 extremely slow for some website cnn.com Dear Amos,Eliezer Could you help me in that, I found squid3 failed to get some Java script pages in some websites squid3 logs : TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js squid3 logs :TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript Is there any patch to solve such issue in squid3 and if there any configuration option to speed up the response time without affecting badly Mshehata IT NS Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net
RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear Eliezer, Thanks for your replay But actually it is the same user behavior (me only trying request cnn.com and waiting to get it on my browser ) using the same browser through the same squid proxy with the same configuration and same network devices before and after them the only difference is th squid version one is squid2.6stable20 and other is squid3.2.4 which result the aborted of some urls contains java script M Shehata IT NS From: Eliezer Croitoru [elie...@ngtech.co.il] Sent: Tuesday, December 11, 2012 7:24 PM To: squid-users@squid-cache.org Subject: Re: [squid-users] Squid3 extremely slow for some website cnn.com Hey Muhammad, I do understand your problem but the issue you are having is most likely not due to any squid preferences. In most cases squid handles the request in the basic level of headers and then pipe the request to the client directly(maybe using a buffer). The only case which squid will inspect the content in a deeper level is when using ESI. Since you are using it as a forward proxy I suppose it's disabled in your setup. All the above takes you back to the lower level of networking troubleshooting. The TCP_MISS_ABORTED is basically the client aborted the request. Try to be more informative on the tests you have done and what tweaks have you tried to apply? More about the setup etc.. If by any way other systems on the way between your squid to the source are doing nasty things to the traffic you will have troubles. If you want to look for the source of the problem use curl wget or other tools. You will might want to tweak your refresh_pattern to match this specific site. If you need more assistance then just plain mailing list I assume this can also be done. Regards, Eliezer On 12/11/2012 9:32 AM, Muhammad Shehata wrote: Dear Amos,Eliezer Could you help me in that, I found squid3 failed to get some Java script pages in some websites squid3 logs : TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js squid3 logs :TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript Is there any patch to solve such issue in squid3 and if there any configuration option to speed up the response time without affecting badly Mshehata IT NS Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net -- Eliezer Croitoru https://www1.ngtech.co.il sip:ngt...@sip2sip.info IT consulting for Nonprofit organizations eliezer at ngtech.co.il
RE: [squid-users] Squid3 extremely slow for some website cnn.com
Dear Amos,Eliezer Could you help me in that, I found squid3 failed to get some Java script pages in some websites squid3 logs : TCP_MISS_ABORTED/000 0 GET http://cdn.optimizely.com/js/128727546.js squid3 logs :TCP_MISS/200 17298 GET http://cdn.optimizely.com/js/128727546.js - DIRECT/23.50.196.211 text/javascript Is there any patch to solve such issue in squid3 and if there any configuration option to speed up the response time without affecting badly Mshehata IT NS Best regards, Muhammed Shehata IT Network Security Engineer TE Data Building A11- B90, 2nd floor Smart Village, Cairo, Alex Desert Road, 28 Km 6th of October 12577, Egypt T: +20 (2) 33 32 0700 | Ext: 1532 F: +20 (2) 33 32 0800 | M: E: m.sheh...@tedata.net www.tedata.net
RE: [squid-users] RE: SSLBUMP Issue with SSL websites
Dears, Is my question need any clarifications to be included as your response is very apperciated Best Regards, Muhammad Shehata Dears, Is there anyone can help me in the mentioned error From: Muhammad Shehata Sent: Tuesday, July 10, 2012 8:55 AM To: squid-users@squid-cache.orgmailto:squid-users@squid-cache.org Cc: squ...@treenet.co.nzmailto:squ...@treenet.co.nz Subject: SSLBUMP Issue with SSL websites Dears, hope you all are doing well actually I was following the replies on squid users-mail-list about sslbump issues with showing up some websites inline without images or css style sheet like https://gmail.com and https://facebook.com as I have same issue in version squid 3.1.19, I know that when sslbump is enabled it intercept the CONNECT method and modify it to be GET method that when I used broken sites acl to exclude them however I see that the method is CONNECT for those excluded website not Get as all other bumped sites but it still the same result 1341837646.893 45801 x.x.x.x TCP_MISS/200 62017 CONNECT twitter.com:443 - DIRECT/199.59.150.7 acl broken_sites dstdomain .twitter.com acl broken_sites dstdomain .facebook.com ssl_bump deny broken_sites ssl_bump allow all http_port 192.168.0.1:3128 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB cert=/etc/pki/tls/certs/sslintercept.crt key=/etc/pki/tls/certs/sslintercept.key
[squid-users] RE: SSLBUMP Issue with SSL websites
Dears, Is there anyone can help me in the mentioned error From: Muhammad Shehata Sent: Tuesday, July 10, 2012 8:55 AM To: squid-users@squid-cache.org Cc: squ...@treenet.co.nz Subject: SSLBUMP Issue with SSL websites Dears, hope you all are doing well actually I was following the replies on squid users-mail-list about sslbump issues with showing up some websites inline without images or css style sheet like https://gmail.com and https://facebook.com as I have same issue in version squid 3.1.19, I know that when sslbump is enabled it intercept the CONNECT method and modify it to be GET method that when I used broken sites acl to exclude them however I see that the method is CONNECT for those excluded website not Get as all other bumped sites but it still the same result 1341837646.893 45801 x.x.x.x TCP_MISS/200 62017 CONNECT twitter.com:443 - DIRECT/199.59.150.7 acl broken_sites dstdomain .twitter.com acl broken_sites dstdomain .facebook.com ssl_bump deny broken_sites ssl_bump allow all http_port 192.168.0.1:3128 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB cert=/etc/pki/tls/certs/sslintercept.crt key=/etc/pki/tls/certs/sslintercept.key
[squid-users] SSLBUMP Issue with SSL websites
Dears, hope you all are doing well actually I was following the replies on squid users-mail-list about sslbump issues with showing up some websites inline without images or css style sheet like https://gmail.com and https://facebook.com as I have same issue in version squid 3.1.19, I know that when sslbump is enabled it intercept the CONNECT method and modify it to be GET method that when I used broken sites acl to exclude them however I see that the method is CONNECT for those excluded website not Get as all other bumped sites but it still the same result 1341837646.893 45801 x.x.x.x TCP_MISS/200 62017 CONNECT twitter.com:443 - DIRECT/199.59.150.7 acl broken_sites dstdomain .twitter.com acl broken_sites dstdomain .facebook.com ssl_bump deny broken_sites ssl_bump allow all http_port 192.168.0.1:3128 ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=40MB cert=/etc/pki/tls/certs/sslintercept.crt key=/etc/pki/tls/certs/sslintercept.key