Hello everyone,
I currently have a server which stores many terabytes of rather static
files, each one having tenths of gigabytes. Right now, these files are
only accessed through a local connection, but in some time this is
going to change. One option to make the access acceptable is to deploy
* Amos Jeffries squ...@treenet.co.nz:
On 15/08/11 23:52, Ralf Hildebrandt wrote:
With today's BZR checkout (3.2-HEAD) I'm getting a lot of SECURITY
ALERT: Host: header forgery detected with everyday requests:
2011/08/15 13:50:59.016| SECURITY ALERT: Host: header forgery detected from
Hello,
Is it possible to set up squid 3.1.6 so that it wouldn't use IP6
addresses when proxies requests.
Specifically I can't access http://packages.debian.org because squid
tries to do so with an IP6 address an I have only IP4 connection to the
Internet:
The following error was
On 16/08/11 20:37, Ralf Hildebrandt wrote:
* Amos Jeffries:
On 15/08/11 23:52, Ralf Hildebrandt wrote:
With today's BZR checkout (3.2-HEAD) I'm getting a lot of SECURITY
ALERT: Host: header forgery detected with everyday requests:
2011/08/15 13:50:59.016| SECURITY ALERT: Host: header forgery
On 16/08/11 22:56, Alexei Ustyuzhaninov wrote:
Hello,
Is it possible to set up squid 3.1.6 so that it wouldn't use IP6
addresses when proxies requests.
Please try the 3.1 package from the Debian Wheezy/Testing repository. It
has fixes for several bugs with this symptom.
Or if you have a
On 16.08.2011 17:09, Amos Jeffries wrote:
On 16/08/11 22:56, Alexei Ustyuzhaninov wrote:
Hello,
Is it possible to set up squid 3.1.6 so that it wouldn't use IP6
addresses when proxies requests.
Please try the 3.1 package from the Debian Wheezy/Testing repository. It
has fixes for several
Hello Amos,
thank you for your answer.
I did add the follow_x_forwarded_for allow localhost and it did what I
wanted to.
With regards to the security warnings, I am ok with it as all users
have the same acl.
Regards,
Hugo
On 12 August 2011 15:23, Amos Jeffries squ...@treenet.co.nz wrote:
On
is there a way to have this
acl bk src XX.XXX.XX.XX/32
acl bk src XXX.XX.XXX.XX/32
in a external file and have squid.conf reference to it?
--
http://alexus.org/
Hi João Carlos ,
I tested this with windows media player 11 and I do not have a problem to
authenticate against squid using Negotiate/Kerberos. See my exchaange
between wmp 11 and squid.
Markus
GET http://www.jhepple.com/SampleMovies/niceday.wmv HTTP/1.1
Accept: */*
User-Agent:
of course !!!
acl bk src /path/to/your/file.txt
file.txt would be
192.168.1.2
192.168.2.38/32
192.168.20.0/24
10.8.0.0/16
(note the /32 is not needed. if / is not specified, its automatically /32)
and after modifying the .txt file, you'll have to
I want to make Common Address Redundancy Protocol or CARP with two
squid 3.0 STABLE10 that I have, but here I found this question:
If the main Squid with 40 GB of cache shutdown for any reason, then
the 2nd squid will start up but without any cache.
There is any way to synchronize the both
tried that but but made a syntax error so it didn't work
tried it again using right syntax and it works like a charm!
thanks!
On Tue, Aug 16, 2011 at 4:20 PM, Leonardo Rodrigues
leolis...@solutti.com.br wrote:
of course !!!
acl bk src /path/to/your/file.txt
file.txt would be
tis 2011-08-16 klockan 16:54 -0400 skrev Carlos Manuel Trepeu Pupo:
I want to make Common Address Redundancy Protocol or CARP with two
squid 3.0 STABLE10 that I have, but here I found this question:
If the main Squid with 40 GB of cache shutdown for any reason, then
the 2nd squid will start
On Tue, 16 Aug 2011 17:51:54 +0600, Alexei Ustyuzhaninov wrote:
I've upgraded the squid3 package to version 3.1.14-1, but that didn't
help. BTW do you think that is a debian bug? If yes I will report it
there.
Since its not the common bugs we fixed already it may be this one:
On Tue, 16 Aug 2011 13:18:49 -0400, alexus wrote:
is there a way to have this
acl bk src XX.XXX.XX.XX/32
acl bk src XXX.XX.XXX.XX/32
in a external file and have squid.conf reference to it?
in squid.conf:
acl bk src /etc/squid/acls-file
then in /etc/squid/acls-file one ACL value per line:
On Wed, 17 Aug 2011 09:14:44 +0930, Brett Lymn wrote:
On Wed, Aug 17, 2011 at 11:30:39AM +1200, Amos Jeffries wrote:
If you need something more dynamic or real-time, use
external_acl_type
to run a script.
Out of interest, what are the performance implications of doing this?
Are the
On Wed, 3 Aug 2011, Amos Jeffries wrote:
On Tue, 2 Aug 2011 13:39:51 -0700 (PDT), John Hardin wrote:
The analysis of the APT techniques used by Kissmetrics (at
http://www.wired.com/epicenter/2011/07/undeletable-cookie/) is
interesting if thin, and suggests one way that Squid might be
On Tue, 16 Aug 2011 18:16:38 -0700 (PDT), John Hardin wrote:
On Wed, 3 Aug 2011, Amos Jeffries wrote:
On Tue, 2 Aug 2011 13:39:51 -0700 (PDT), John Hardin wrote:
The analysis of the APT techniques used by Kissmetrics (at
http://www.wired.com/epicenter/2011/07/undeletable-cookie/) is
Hi ALL,
Currently i have a requirement to configure squid for tproxy feature
with microtik router os.If i will configure policy routing in microtik
router for port 80 traffic pass to squid box, in that case , do i use
tproxy feature or ?
Thanks,
Benjo
it is easy to forward port 80 traffic to Squid using Mikrotik , it can
be done by going to ip-firewall-nat and adding new dst-nat.
Or you can just use your cache server as a gateway for the Mikrotik router.
On Wed, Aug 17, 2011 at 8:16 AM, Benjamin benjo11...@gmail.com wrote:
Hi ALL,
20 matches
Mail list logo
