[squid-users] Frequent messages from helperHandleRead
Hi all, I can find several messages on 'cache.log" file with this message: 2015/10/19 16:16:27 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' 2015/10/19 16:17:01 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' 2015/10/19 16:18:06 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' 2015/10/19 16:18:06 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' 2015/10/19 16:18:06 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' 2015/10/19 16:18:06 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' 2015/10/19 16:18:06 kid1| helperHandleRead: unexpected reply on channel 0 from redirector #Hlpr1 '' .. .. 2015/10/19 16:42:54 kid1| helperHandleRead: unexpected read from redirector #Hlpr2, 1 bytes ' I search somenthing on the web, but I can't understand if this a problem or is only a warnig. What I have to do? CentOS release 6.4 (Final) - x86_64 Squid Cache: Version 3.5.2 SquidGuard: 1.4 Thank you ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
[squid-users] Restore Job on secondary site
Hi all, how can I restore production server on quiescent machine on a DR site? I need to have a DR site that is a copy of the production one, how can I restore Incremental BCK on those servers (that must be offline)? Thank you ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
Re: [squid-users] Squid and Hangout (google) problem
Thank you Amos.. I have Squid Cache: Version 3.1.19 So it work only with HTTP/1.0?? If Yes I have to upgrade it. 2013/5/28 Amos Jeffries squ...@treenet.co.nz: On 28/05/2013 7:03 p.m., Carlo Filippetto wrote: 2013/5/28 Amos Jeffries: On 28/05/2013 2:38 a.m., Carlo Filippetto wrote: I have a squid server with NTLM_auth. Now we want to use the google-hangout to made video conference, but squid stops the video session with a 407 (TCP_DENIED). Someone can help me to solve this problem? 407 Proxy Authentication Requried gets sent to the client when no auth credentials are delivered by it to the proxy. NTLM is a nasty protocol which requires several request-reply sequences involving 407 status code and various tokens to be sent to-and-fro. This may be what you are spotting in the logs. This might also help ... http://answers.awesomium.com/questions/1343/using-ntlm-to-authenticate.html Amos Dear Amos, my problem is not NTLM, I use NTLM from more the 5 years.. The problem is Hangout software, if you tried to do a con (not video) it works, but if you tried to make a video-conference it doesn't work. May be the encoding? Yes, as you say the problem is not NTLM itself. And since you have been using it successfully for so long probably not Squid either. You should herefore take this up with the Hangout software help channels, not the Squid ones. And no, encoding does not matter to Squid unless you have an old Squid which is still version 3.1 or older (HTTP/1.0 features) and Hangout requiring HTTP/1.1 features for the stream. The solution there should be obvious. Amos
Re: [squid-users] Squid and Hangout (google) problem
2013/5/28 Amos Jeffries squ...@treenet.co.nz: On 28/05/2013 2:38 a.m., Carlo Filippetto wrote: I have a squid server with NTLM_auth. Now we want to use the google-hangout to made video conference, but squid stops the video session with a 407 (TCP_DENIED). Someone can help me to solve this problem? 407 Proxy Authentication Requried gets sent to the client when no auth credentials are delivered by it to the proxy. NTLM is a nasty protocol which requires several request-reply sequences involving 407 status code and various tokens to be sent to-and-fro. This may be what you are spotting in the logs. This might also help ... http://answers.awesomium.com/questions/1343/using-ntlm-to-authenticate.html Amos Dear Amos, my problem is not NTLM, I use NTLM from more the 5 years.. The problem is Hangout software, if you tried to do a con (not video) it works, but if you tried to make a video-conference it doesn't work. May be the encoding? Thank you
[squid-users] Squid and Hangout (google) problem
I have a squid server with NTLM_auth. Now we want to use the google-hangout to made video conference, but squid stops the video session with a 407 (TCP_DENIED). Someone can help me to solve this problem?
[squid-users] Loop on refresh
Hi all,I have a squid-3.0.STABLE1, configured with authentication ntlm and same acl. The problem is that I have a site http://selezione.monster.it that give me some noise. The first time I open te page it runs correctly, I can browse the site and soon.. but if I came back on a previous page, or I write in the url the site, that I wrote before, and the page goes in loop and after several minute I receive time out page. I tried to catch something with tcpdump, but I haven#39;t find nothing wrong, also the second time I open the url I can see some traffic to and from the destination site..If I close the browser always the first time it work, never the second. I tried with Firefox and Chrome.Any ideas?Thank you ---Carlo
[squid-users] Rules problem
Hi all, I need to create a rules where some users, logged in with ntlm, must be restrictet only in few sites. I tried something as: acl RESTRICTED_USER proxy_auth /etc/squid/restricted_user.allow acl RESTRICTED_WEB dstdomain /etc/squid/restricted_web.limited http_reply_access allow RESTRICTED_WEB RESTRICTED_USER http_reply_access deny all RESTRICTED_USER It work, but other user seems are affected with continuos authentication request. Any suggestion? Thanks --- Carlo
Re: [squid-users] Rules problem
2012/7/10 Amos Jeffries squ...@treenet.co.nz: On 10/07/2012 8:22 p.m., Carlo Filippetto wrote: Hi all, I need to create a rules where some users, logged in with ntlm, must be restrictet only in few sites. I tried something as: acl RESTRICTED_USER proxy_auth /etc/squid/restricted_user.allow acl RESTRICTED_WEB dstdomain /etc/squid/restricted_web.limited http_reply_access allow RESTRICTED_WEB RESTRICTED_USER http_reply_access deny all RESTRICTED_USER The magic ACL all only means something when its on the end (right hand side) of the line. By placing all on the end of a line containing authentication ACLs you prevent login challenge from being done by *that* line. Also note that by doing these restructions on *reply* access, it means the user/clients details have already been sent to the remote website for processing. Only the remote websites reponse is blocked from delivery to the client. NTLM could be doing some very strange thinsg with its multiple requests. There is no reason why these rules cannot be done in http_access where it is safer and NTLM cannot have such dangerous side effects. I suggest moving them and seeing what improves. I tried to use http_access but in this case on every page I tried to access out of the restriscted ones I receive an authentication request, and it isn't a good thing Now I remove the 'all' from the second http_reply_access line and seems works fine. Thank's for the explanation on the use of http_reply_access, but I don't know another command that block the sites and don't asks for authentication It work, but other user seems are affected with continuos authentication request. By user what do you mean other already logged in *users*? or non-login *clients*? Amos First of all I authenticate all the users, only a list of these users can't serf on the web but is limited as above. Thanks --- Carlo