[squid-users] (111) Connection refused
salam, my squid.conf is http_port 8080 # icp_port 3130 # OPTIONS WHICH AFFECT THE NEIGHBOR SELECTION ALGORITHM # - cache_peer 10.1.1.1 parent 8181 3128 no-query cache_peer 193.251.135.100 parent 8080 0 no-query # icp_query_timeout 0 # maximum_icp_query_timeout 2000 # mcast_icp_query_timeout 2000 #dead_peer_timeout 1 seconds #hierarchy_stoplist cgi-bin ? #acl QUERY urlpath_regex cgi-bin \? #no_cache deny QUERY #acl google dstdomain .google.com #always_direct allow google # OPTIONS WHICH AFFECT THE CACHE SIZE # - # cache_mem 8 MB # cache_swap_low 90 # cache_swap_high 95 # maximum_object_size 4096 KB # minimum_object_size 0 KB # maximum_object_size_in_memory 8 KB # ipcache_size 1024 # ipcache_low 90 # ipcache_high 95 # fqdncache_size 1024 # cache_replacement_policy lru # memory_replacement_policy lru # LOGFILE PATHNAMES AND CACHE DIRECTORIES # - cache_dir ufs /usr/local/squid/var/cache 100 16 256 cache_access_log /usr/local/squid/var/logs/access.log cache_log /usr/local/squid/var/logs/cache.log cache_store_log /usr/local/squid/var/logs/store.log mime_table /usr/local/squid/etc/mime.conf pid_filename /usr/local/squid/var/logs/squid.pid client_netmask 255.255.255.0 # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS # - # ftp_user Squid@ # ftp_list_width 32 # ftp_passive on # ftp_sanitycheck on # ftp_telnet_protocol on # redirect_rewrites_host_header on #Recommended minimum configuration: #auth_param digest program #auth_param digest children 5 #auth_param digest realm Squid proxy-caching web server #auth_param digest nonce_garbage_interval 5 minutes #auth_param digest nonce_max_duration 30 minutes #auth_param digest nonce_max_count 50 #auth_param ntlm program #auth_param ntlm children 5 #auth_param ntlm max_challenge_reuses 0 #auth_param ntlm max_challenge_lifetime 2 minutes #auth_param ntlm use_ntlm_negotiate off #auth_param basic program auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours # authenticate_cache_garbage_interval 1 hour # authenticate_ttl 1 hour # authenticate_ip_ttl 0 seconds # OPTIONS FOR TUNING THE CACHE # - # wais_relay_port 0 # request_header_max_size 10 KB # request_body_max_size 0 KB refresh_pattern ^http://.*\.cnn\.com 360 50% 4320 override-lastmod refresh_pattern ^http://news\.bbc\.co\.uk 360 50% 4320 override-lastmod refresh_pattern microsoft 1080 150% 10080 override-expire override-lastmod refresh_pattern msn\.com 4320 150% 10080 override-expire override-lastmod refresh_pattern ^http://.*\.doubleclick\.net 10080 300% 40320 refresh_pattern ^http://.*FIDO 360 1000% 480 refresh_pattern \.r[0-9][0-0]$ 10080 150% 40320 refresh_pattern ^http://.*\.gif$ 1440 50% 20160 refresh_pattern ^http://.*\.asis$ 1440 50% 20160 refresh_pattern \.pdf$ 10080 90% 43200 refresh_pattern \.art$ 10080 150% 43200 refresh_pattern \.swf$ 10080 150% 43200 refresh_pattern \.phtml$ 240 200% 10080 refresh_pattern \.avi$ 10080 150% 40320 refresh_pattern \.mov$ 10080 150% 40320 refresh_pattern \.wav$ 10080 150% 40320 refresh_pattern \.mp3$ 10080 150% 40320 refresh_pattern \.qtm$ 10080 150% 40320 refresh_pattern \.mid$ 10080 150% 40320 refresh_pattern \.viv$ 10080 150% 40320 refresh_pattern \.mpg$ 10080 150% 40320 refresh_pattern \.jpg$ 10080 150% 40320 refresh_pattern \.rar$ 10080 150% 40320 refresh_pattern \.ram$ 10080 150% 40320 refresh_pattern \.gif$ 10080 300% 40320 refresh_pattern \.txt$ 1440 100% 20160 override-lastmod refresh_pattern \.zip$ 2880 200% 40320 refresh_pattern \.arj$ 2880 200% 40320 refresh_pattern \.exe$ 2880 200% 40320 refresh_pattern \.tgz$ 10080 200% 40320 refresh_pattern \.gz$ 10080 200% 40320 refresh_pattern \.tgz$ 10080 200% 40320 refresh_pattern \.tar$ 10080 200% 40320 refresh_pattern \.Z$ 10080 200% 40320 refresh_pattern ^ftp: 144020% 10080 refresh_pattern ^gopher:14400% 1440 refresh_pattern . 0 20% 4320 # quick_abort_min 16 KB # quick_abort_max 16 KB # quick_abort_pct 95 # negative_ttl 5 minutes # positive_dns_ttl 6 hours # negative_dns_ttl 1 minute # range_offset_limit 0 KB # TIMEOUTS # - # forward_timeout 4 minutes connect_timeout 10 seconds peer_connect_timeout 30 seconds # read_timeout 15 minutes # request_timeout 5 minutes # persistent_request_timeout 1 minute # client_lifetime 1 day # half_closed_clients on # pconn_timeout 120 seconds # ident_timeout 10 seconds # shutdown_lifetime 30 seconds # ACCESS CONTROLS # -
[squid-users] (111) Connection refused
Hi I wanted to access http://tinyurl.com/2upvk6 but get the following error: The following error was encountered: * Connection to 127.0.0.1 Failed The system returned: (111) Connection refused How can I allow squid to access just this site Lev This email and any files transmitted with it are confidential. If you are not the intended recipient, any reading, printing, storage, disclosure, copying or any other action taken in respect of this email is prohibited and may be unlawful. If you are not the intended recipient, please notify the sender immediately by using the reply function and then permanently delete what you have received.Incoming and outgoing email messages are routinely monitored for compliance with the Department of Healths policy on the use of electronic communications. For more information on the Department of Healths email policy, click http://www.dh.gov.uk/DHTermsAndConditions/fs/en?CONTENT_ID=4110945&chk=x1C3Zw The original of this email was scanned for viruses by the Government Secure Intranet Anti-Virus service supplied by Cable&Wireless in partnership with MessageLabs. (CCTM Certificate Number 2006/04/0007.) On leaving the GSi this email was certified virus free. Communications via the GSi may be automatically logged, monitored and/or recorded for legal purposes.
[squid-users] 111 Connection Refused
List, Done a google and man'd squid and everything already - so no shouting!! Using RH8&Squid as a proxy router for one windows machine (a feasibility test to convince superiors that its a viable option...). The WinBox opens most sites fine, but as soon as any sorta user input is required, squid gives an error page "111 Connection Refused". An example would be www.google.com - The page loads fine, but as soon as u enter some text and hit search, 111 connection refused... Opening sites such as www.hotmail.com/www.msn.com come up with the same error without loading the page at all.. Any ideas?? Much appreciated, Chris Mawer _ Stay in touch with absent friends - get MSN Messenger http://www.msn.co.uk/messenger
Re: [squid-users] (111) Connection refused
On Fri, Aug 22, 2008 at 10:07:53AM +0700, ? z??up?? ??z?? ? wrote: > ## Forward port 80 ke mail server > /sbin/iptables -t nat -A PREROUTING -p tcp -i eth0 -d 202.169.51.119 >--dport 80 -j DNAT --to-destination 172.16.0.2 This looks like you're redirecting from your external interface's port 80 to another server. Presumably there's nothing listening on port 80 on your DMZ server? > problem : > i cant browse to my-sub.domain.ext from network > but i can browse my-sub.domain.ext from external ( other place ) > > The following error was encountered: > >* Connection to 202.169.51.119 Failed > > The system returned: > >(111) Connection refused Your proxy is connecting from a different interface (eth2 I think) and therefore the connection to port 80 is not being redirected to the mail server. You *may* be able to solve this by also redirecting the connection from your proxy server, but you'll also need to use source NAT so your mail server's www service sends its replies to your DMZ server. Without the SNAT, the mail server will reply directly to the proxy server, and that will confuse the proxy because it thinks it's talking to your external IP. The other common solution to this problem is to use so-called "split horizon DNS", whereby you have internal DNS servers which return the internal address (i.e. my-sub.domain.ext will resolve to 172.16.0.1, rather than your external IP) but your external DNS servers will return your external address. That way your clients inside the network get the correct address. Depending on how your squid is doing DNS lookups, you may be able to add an entry to the /etc/hosts file on your proxy server and then explicitly configure the proxy for your clients. If that works this might provide an acceptable short-term solution.
Re: [squid-users] (111) Connection refused
can you give the the iptables rule ? :( On Fri, Aug 22, 2008 at 10:50 AM, Michael Alger <[EMAIL PROTECTED]> wrote: > On Fri, Aug 22, 2008 at 10:07:53AM +0700, ? z??up?? ??z?? > ? wrote: >> ## Forward port 80 ke mail server >> /sbin/iptables -t nat -A PREROUTING -p tcp -i eth0 -d 202.169.51.119 >>--dport 80 -j DNAT --to-destination 172.16.0.2 > > This looks like you're redirecting from your external interface's > port 80 to another server. Presumably there's nothing listening on > port 80 on your DMZ server? > >> problem : >> i cant browse to my-sub.domain.ext from network >> but i can browse my-sub.domain.ext from external ( other place ) >> >> The following error was encountered: >> >>* Connection to 202.169.51.119 Failed >> >> The system returned: >> >>(111) Connection refused > > Your proxy is connecting from a different interface (eth2 I think) > and therefore the connection to port 80 is not being redirected to > the mail server. You *may* be able to solve this by also redirecting > the connection from your proxy server, but you'll also need to use > source NAT so your mail server's www service sends its replies to > your DMZ server. Without the SNAT, the mail server will reply > directly to the proxy server, and that will confuse the proxy > because it thinks it's talking to your external IP. > > The other common solution to this problem is to use so-called "split > horizon DNS", whereby you have internal DNS servers which return the > internal address (i.e. my-sub.domain.ext will resolve to 172.16.0.1, > rather than your external IP) but your external DNS servers will > return your external address. That way your clients inside the > network get the correct address. > > Depending on how your squid is doing DNS lookups, you may be able to > add an entry to the /etc/hosts file on your proxy server and then > explicitly configure the proxy for your clients. If that works this > might provide an acceptable short-term solution. > -- -=-=-=-=
Re: [squid-users] (111) Connection refused
that happened to me too my solution at that time is i clean up my cache, squid -z, and then turn back on my squid. i still dont know why that happened -- http://www.kaori.or.id > salam, > my squid.conf is > > > http_port 8080 > # icp_port 3130 > > # OPTIONS WHICH AFFECT THE NEIGHBOR SELECTION ALGORITHM > # > - > cache_peer 10.1.1.1 parent 8181 3128 no-query > cache_peer 193.251.135.100 parent 8080 0 no-query > # icp_query_timeout 0 > # maximum_icp_query_timeout 2000 > # mcast_icp_query_timeout 2000 > #dead_peer_timeout 1 seconds > #hierarchy_stoplist cgi-bin ? > #acl QUERY urlpath_regex cgi-bin \? > #no_cache deny QUERY > #acl google dstdomain .google.com > #always_direct allow google > > # OPTIONS WHICH AFFECT THE CACHE SIZE > # > - > > # cache_mem 8 MB > # cache_swap_low 90 > # cache_swap_high 95 > # maximum_object_size 4096 KB > # minimum_object_size 0 KB > # maximum_object_size_in_memory 8 KB > # ipcache_size 1024 > # ipcache_low 90 > # ipcache_high 95 > # fqdncache_size 1024 > # cache_replacement_policy lru > # memory_replacement_policy lru > > # LOGFILE PATHNAMES AND CACHE DIRECTORIES > # > - > cache_dir ufs /usr/local/squid/var/cache 100 16 256 > cache_access_log /usr/local/squid/var/logs/access.log > cache_log /usr/local/squid/var/logs/cache.log > cache_store_log /usr/local/squid/var/logs/store.log > mime_table /usr/local/squid/etc/mime.conf > pid_filename /usr/local/squid/var/logs/squid.pid > client_netmask 255.255.255.0 > > # OPTIONS FOR EXTERNAL SUPPORT PROGRAMS > # > - > # ftp_user Squid@ > # ftp_list_width 32 > # ftp_passive on > # ftp_sanitycheck on > # ftp_telnet_protocol on > # redirect_rewrites_host_header on > #Recommended minimum configuration: > #auth_param digest program > #auth_param digest children 5 > #auth_param digest realm Squid proxy-caching web server > #auth_param digest nonce_garbage_interval 5 minutes > #auth_param digest nonce_max_duration 30 minutes > #auth_param digest nonce_max_count 50 > #auth_param ntlm program > #auth_param ntlm children 5 > #auth_param ntlm max_challenge_reuses 0 > #auth_param ntlm max_challenge_lifetime 2 minutes > #auth_param ntlm use_ntlm_negotiate off > #auth_param basic program > auth_param basic children 5 > auth_param basic realm Squid proxy-caching web server > auth_param basic credentialsttl 2 hours > # authenticate_cache_garbage_interval 1 hour > # authenticate_ttl 1 hour > # authenticate_ip_ttl 0 seconds > > # OPTIONS FOR TUNING THE CACHE > # > - > # wais_relay_port 0 > # request_header_max_size 10 KB > # request_body_max_size 0 KB > refresh_pattern ^http://.*\.cnn\.com 360 50% 4320 override-lastmod > refresh_pattern ^http://news\.bbc\.co\.uk 360 50% 4320 override-lastmod > refresh_pattern microsoft 1080 150% 10080 override-expire > override-lastmod > refresh_pattern msn\.com 4320 150% 10080 override-expire > override-lastmod > refresh_pattern ^http://.*\.doubleclick\.net 10080 300% 40320 > refresh_pattern ^http://.*FIDO 360 1000% 480 > refresh_pattern \.r[0-9][0-0]$ 10080 150% 40320 > refresh_pattern ^http://.*\.gif$ 1440 50% 20160 > refresh_pattern ^http://.*\.asis$ 1440 50% 20160 > refresh_pattern \.pdf$ 10080 90% 43200 > refresh_pattern \.art$ 10080 150% 43200 > refresh_pattern \.swf$ 10080 150% 43200 > refresh_pattern \.phtml$ 240 200% 10080 > refresh_pattern \.avi$ 10080 150% 40320 > refresh_pattern \.mov$ 10080 150% 40320 > refresh_pattern \.wav$ 10080 150% 40320 > refresh_pattern \.mp3$ 10080 150% 40320 > refresh_pattern \.qtm$ 10080 150% 40320 > refresh_pattern \.mid$ 10080 150% 40320 > refresh_pattern \.viv$ 10080 150% 40320 > refresh_pattern \.mpg$ 10080 150% 40320 > refresh_pattern \.jpg$ 10080 150% 40320 > refresh_pattern \.rar$ 10080 150% 40320 > refresh_pattern \.ram$ 10080 150% 40320 > refresh_pattern \.gif$ 10080 300% 40320 > refresh_pattern \.txt$ 1440 100% 20160 override-lastmod > refresh_pattern \.zip$ 2880 200% 40320 > refresh_pattern \.arj$ 2880 200% 40320 > refresh_pattern \.exe$ 2880 200% 40320 > refresh_pattern \.tgz$ 10080 200% 40320 > refresh_pattern \.gz$ 10080 200% 40320 > refresh_pattern \.tgz$ 10080 200% 40320 > refresh_pattern \.tar$ 10080 200% 40320 > refresh_pattern \.Z$ 10080 200% 40320 > refresh_pattern ^ftp: 144020% 10080 > refresh_pattern ^gopher: 14400% 1440 > refresh_pattern . 0 20% 4320 > # quick_abort_min 16 KB > # quick_abort_max 16 KB > # quick_abort_pct 95 > # negative_ttl 5 minutes > # positive_dns_ttl 6 hours > # negative_dns_ttl 1 minute > # range_offset_limit 0 KB > > # TIMEOU
Re: [squid-users] 111 connection refused
On Wed, 2006-11-22 at 00:20 +0100, Henrik Nordstrom wrote: > tis 2006-11-21 klockan 16:28 -0500 skrev [EMAIL PROTECTED]: > > > I think this is the answer, I have seen this page: > > http://www.squid-cache.org/Doc/FAQ/FAQ-14.html#ss14.5 > > > I hope that someone could explain me in detail about it, because I > > don't understand it at all. > > ECN is an standard extension to TCP/IP, making TCP/IP behave better in > overload conditions where the available bandwidth is all used up (i.e. > the default condition for any WAN link). [...] I've added Henrik's explanation to the Wikified FAQ http://wiki.squid-cache.org/SquidFaq Kinkie
Re: [squid-users] 111 connection refused
On 13.12.06 17:31, Kinkie wrote: > On Wed, 2006-11-22 at 00:20 +0100, Henrik Nordstrom wrote: > > tis 2006-11-21 klockan 16:28 -0500 skrev [EMAIL PROTECTED]: > > > > > I think this is the answer, I have seen this page: > > > http://www.squid-cache.org/Doc/FAQ/FAQ-14.html#ss14.5 > > > > > I hope that someone could explain me in detail about it, because I > > > don't understand it at all. > > > > ECN is an standard extension to TCP/IP, making TCP/IP behave better in > > overload conditions where the available bandwidth is all used up (i.e. > > the default condition for any WAN link). > [...] > > I've added Henrik's explanation to the Wikified FAQ > http://wiki.squid-cache.org/SquidFaq Where exactly? And what about http://en.wikipedia.org/wiki/Explicit_Congestion_Notification ? -- Matus UHLAR - fantomas, [EMAIL PROTECTED] ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. Microsoft dick is soft to do no harm
Re: [squid-users] 111 connection refused
ons 2006-12-13 klockan 17:43 +0100 skrev Matus UHLAR - fantomas: > > I've added Henrik's explanation to the Wikified FAQ > > http://wiki.squid-cache.org/SquidFaq > > Where exactly? And what about > http://en.wikipedia.org/wiki/Explicit_Congestion_Notification > ? http://wiki.squid-cache.org/SquidFaq/SystemWeirdnesses#head-699d810035c099c8b4bff21e12bb365438a21027 And I added the Wikipedia link, or actually replaced the first Floyd link with the Wikipedia one.. Regards Henrik signature.asc Description: Detta är en digitalt signerad meddelandedel
Re: [squid-users] 111 connection refused
are you using cache_peer in squid.conf ? if yes then see if the sites is rediracting to an https when you hit the login page if yes then user never_diract option in squid On 11/22/06, [EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote: Hello: I have a firewall/proxy server that gives me problems when I access a web page of a site, Squid shows me the next message: "111 connection refused". I access http://www.aduanet.gob.pe/aduanas/informao/HRMCManifM.htm then I write "2006" and "2637" in the textboxes, and then Squid shows me the error message. Why does it happen? I hope you could help me. Thanks. -- Paul -- Syed Kashif Ali Bukhari +92-300-4295604 http://www.sysadminsline.com
Re: [squid-users] (111) Connection refused
On Fri, Jun 08, 2007 at 05:58:40PM +0100, Mehmet, Levent (Accenture) wrote: > I wanted to access http://tinyurl.com/2upvk6 but get the following > error: > > The following error was encountered: > * Connection to 127.0.0.1 Failed > The system returned: > (111) Connection refused > > How can I allow squid to access just this site Your squid is trying to connect to "localhost" for some reason. Check your cache_peer entries. If the request is meant to go through an additional proxy, check that it's actually running. Also check your DNS, in case squid's actually getting "127.0.0.1" back as the address of tinyurl.com. Without more information about your setup & squid configuration, we can't provide more than very general hints.
RE: [squid-users] (111) Connection refused
Hi Yes when I do a NSLOOKUP I get the following back: squid:~ # nslookup tinyurl.com Server: 127.0.0.1 Address:127.0.0.1#53 Name: tinyurl.com Address: 127.0.0.1 What does this mean. What other information can I provide you ? Thanks Lev -Original Message- From: Michael Alger [mailto:[EMAIL PROTECTED] Sent: 09 June 2007 07:55 To: squid-users@squid-cache.org Subject: Re: [squid-users] (111) Connection refused On Fri, Jun 08, 2007 at 05:58:40PM +0100, Mehmet, Levent (Accenture) wrote: > I wanted to access http://tinyurl.com/2upvk6 but get the following > error: > > The following error was encountered: > * Connection to 127.0.0.1 Failed > The system returned: > (111) Connection refused > > How can I allow squid to access just this site Your squid is trying to connect to "localhost" for some reason. Check your cache_peer entries. If the request is meant to go through an additional proxy, check that it's actually running. Also check your DNS, in case squid's actually getting "127.0.0.1" back as the address of tinyurl.com. Without more information about your setup & squid configuration, we can't provide more than very general hints. This email was received from the INTERNET and scanned by the Government Secure Intranet Anti-Virus service supplied by Cable&Wireless in partnership with MessageLabs. (CCTM Certificate Number 2006/04/0007.) In case of problems, please call your organisation's IT Helpdesk. Communications via the GSi may be automatically logged, monitored and/or recorded for legal purposes. This email and any files transmitted with it are confidential. If you are not the intended recipient, any reading, printing, storage, disclosure, copying or any other action taken in respect of this email is prohibited and may be unlawful. If you are not the intended recipient, please notify the sender immediately by using the reply function and then permanently delete what you have received.Incoming and outgoing email messages are routinely monitored for compliance with the Department of Healths policy on the use of electronic communications. For more information on the Department of Healths email policy, click http://www.dh.gov.uk/DHTermsAndConditions/fs/en?CONTENT_ID=4110945&chk=x1C3Zw The original of this email was scanned for viruses by the Government Secure Intranet Anti-Virus service supplied by Cable&Wireless in partnership with MessageLabs. (CCTM Certificate Number 2006/04/0007.) On leaving the GSi this email was certified virus free. Communications via the GSi may be automatically logged, monitored and/or recorded for legal purposes.
Re: [squid-users] (111) Connection refused
On 6/11/07, Mehmet, Levent (Accenture) <[EMAIL PROTECTED]> wrote: squid:~ # nslookup tinyurl.com Server: 127.0.0.1 Address:127.0.0.1#53 Name: tinyurl.com Address: 127.0.0.1 What does this mean. What other information can I provide you ? It means that something DNS related is really broken. Your servers thing that tinyurl.com is located on your local machines. Instead of trying to connect to the actual tinyurl.com servers they are trying to connect to 127.0.0.1 (i.e. themselves), which is clearly incorrect. Check your DNS setup. -- Evan Klitzke <[EMAIL PROTECTED]>
Re: [squid-users] 111 Connection Refused
On Thu, 16 Oct 2003, Chris Mawer wrote: > The WinBox opens most sites fine, but as soon as any sorta user input is > required, squid gives an error page "111 Connection Refused". Are your Squid inside a proxy based firewall, requiring you to use cache_peer to reach the Internet? If so then see the Squid FAQ on how to set up Squid inside a firewall. Regards Henrik
Re: [squid-users] 111 Connection Refused
Henrik, Yes, the system is behind an additional proxy. The parent cache has been setup, hence several pages are accessible. It seems to only occur when user text is entered, for example hotmail.com retains the last logged in username. Chris Mawer _ Find a cheaper internet access deal - choose one to suit you. http://www.msn.co.uk/internetaccess
Re: [squid-users] 111 Connection Refused
On Thu, 16 Oct 2003, Chris Mawer wrote: > Yes, the system is behind an additional proxy. The parent cache has been > setup, hence several pages are accessible. And have you told Squid that it is inside a firewall, not just behind a parent proxy? (see the Squid FAQ) Regards Henrik
[squid-users] (111) connection refused error
Hi all, I've configured the ncsa_auth and it works fine. i've also added in the chpasswd function but when i tried to access the chpasswd, this error occurs. While trying to retrieve the URL: http://14.5.1.100/cgi-bin/chpasswd.cgi The following error was encountered: Connection Failed The system returned: (111) Connection refused The remote host or network may be down. Please try the request again. I've checked the FAQs but they did not gave me any information on how to solve this. Any ideas? Thanks in advance Melvin _ Get 10mb of inbox space with MSN Hotmail Extra Storage http://join.msn.com/?pgmarket=en-sg
Re: [squid-users] (111) connection refused error
melvin melvin wrote: > > Hi all, > > I've configured the ncsa_auth and it works fine. i've also added in the > chpasswd function but when i tried to access the chpasswd, this error > occurs. > > While trying to retrieve the URL: http://14.5.1.100/cgi-bin/chpasswd.cgi > > The following error was encountered: > > Connection Failed > The system returned: > > (111) Connection refused > The remote host or network may be down. Please try the request again. > > I've checked the FAQs but they did not gave me any information on how to > solve this. > Any ideas? > > Is the webserver holding this cgi bin up and running ? Check it's status and logs. M.
Re: [squid-users] (111) connection refused error
On Wed, 5 Nov 2003, melvin melvin wrote: > While trying to retrieve the URL: http://14.5.1.100/cgi-bin/chpasswd.cgi > > The following error was encountered: > (111) Connection refused Then there is no web server running on 14.5.1.100 or there is firewalling preventing Squid from reaching this web server. Regards Henrik
[squid-users] (111) connection refused ERROR FOR SITES REQUIRING LOGIN
Hello, Hope someone could help me. I am using a squid proxy (squid-2.5.STABLE13-1.FC4) behind another squid proxy and firewall. The my squid.conf is below. ## cache_dir ufs /var/spool/squid 100 16 256 cache_log /var/log/squid/cache.log cache_access_log/var/log/squid/access.log cache_store_log /var/log/squid/store.log cache_swap_log /var/log/squid/swap.log logfile_rotate 10 cache_replacement_policy GDSF acl all src 0.0.0.0/0.0.0.0 #http_access deny all acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregisterd ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # fultiling http acl CONNECT method CONNECT http_access allow manager localhost http_access allow manager http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow localhost http_reply_access allow all ipc_access allow all acl cdelan src 192.168.0.1-192.168.0.254/255.255.255.0 http_access allow cdelan cache_peer proxy.duix.org parent 3128 0 no-query prefer_direct off Systems which use this particular syststem as proxy can browse every website except which uses port 443. Eg: www.google.com, www.hotmail.com, www.yahoo.com. Following is the error message i get when i try to access www.gmail.com = ERROR The requested URL Could not be retrieved While trying to retrieve the URL : www.google.com:443 The following error was encountered * Connection to 66.102.7.104 Failed System returned (111) connection refused The remote host or the network may be down. Please try again ==
Re: [squid-users] (111) connection refused ERROR FOR SITES REQUIRING LOGIN
tor 2006-07-27 klockan 13:45 +0530 skrev vinayan K P: > Hello, > > Hope someone could help me. > > I am using a squid proxy (squid-2.5.STABLE13-1.FC4) behind another > squid proxy and firewall. Perhaps http://wiki.squid-cache.org/SquidFaq/ConfiguringSquid#head-f7c4c667d4154ec5a9619044ef7d8ab94dfda39b Regards Henrik signature.asc Description: Detta är en digitalt signerad meddelandedel
Re: [squid-users] (111) connection refused ERROR FOR SITES REQUIRING LOGIN
Dear Mr. Henrik, Thanks a lot for your mail and finally I could manage it. The never_direct allow all did it. Thanks once again. Vinayan On 7/27/06, Henrik Nordstrom <[EMAIL PROTECTED]> wrote: tor 2006-07-27 klockan 13:45 +0530 skrev vinayan K P: > Hello, > > Hope someone could help me. > > I am using a squid proxy (squid-2.5.STABLE13-1.FC4) behind another > squid proxy and firewall. Perhaps http://wiki.squid-cache.org/SquidFaq/ConfiguringSquid#head-f7c4c667d4154ec5a9619044ef7d8ab94dfda39b Regards Henrik -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQBEyIHpB5pTNio2V7IRAqucAKDH4eh+Kx7+eTI+hNiWA189ClEwwwCfWRh+ uIm3ZU9OWI2YuTyRZgJjiPw= =1i7M -END PGP SIGNATURE-
Re: [squid-users] (111) connection refused ERROR FOR SITES REQUIRING LOGIN
vinayan K P wrote: Hello, Hope someone could help me. I am using a squid proxy (squid-2.5.STABLE13-1.FC4) behind another squid proxy and firewall. Hello Vinayan, If you are behind a firewall then you can't make direct connections to the outside world, so you *must* use a parent cache. Squid doesn't use ICP queries for a request if it's behind a firewall or if there is only one parent. You can use the /never_direct/ access list in /squid.conf/ to specify which requests must be forwarded to your parent cache outside the firewall, and the /always_direct/ access list to specify which requests must not be forwarded. For example, if Squid must connect directly to all servers that end with /mydomain.com/, but must use the parent for all others, you would write: acl INSIDE dstdomain .mydomain.com always_direct allow INSIDE never_direct allow all For more Details visit: http://wiki.squid-cache.org/SquidFaq/ConfiguringSquid#head-f7c4c667d4154ec5a9619044ef7d8ab94dfda39b -- Thanks, Visolve Squid Team, http://squid.visolve.com
