Hello.
I use Squid Cache: Version 3.1.20
In order to view the log in a readable format I use this:
logformat squid %{%Y/%m/%d %H:%M:%S}tl %ts.%03tu %6tr %>a %Ss/%03>Hs
%
The problem is that the time in log is in GMT despite of %tl option.
Server is configured to local time. Squid for both,
Hello Alex,
Please confirm the proxy is configured for parent/sibling proxy ?, if
not please remove following lines from the squid conf.
"never_direct allow all"
"icp_access deny all"
If the issue raises again, kindly share your updated/current squid conf files
in mailing list.
Thanks,
On 12/01/2017 10:09 a.m., roadrage27 wrote:
> I removed the entry as i do not use those other proxies, parsed the config
> file, then restarted squid, still the same error.
>
Are there any entries in cache.log explaining a problem?
What does the text of that 403 page say is wrong?
Amos
On 12/01/2017 5:32 a.m., roadrage27 wrote:
> Built out Squid 3.5 on ubuntu 14.04 logs showing 403 denied when accessing
> any resources, any help is appreciated
>
> here is my conf file for reference.
>
>
> acl localhost src 127.0.0.1/32
>
> acl to_localhost dst 127.0.0.0/8
>
Remove the
Try the next:
Remove:
never_direct allow all
And add at the first line of the file
http_access allow all
And see if it let you surf.
If so then something is twisted in the config file order.
Eliezer
Eliezer Croitoru
Linux System Administrator
Mobile: +972-5-28704261
Email:
I removed the entry as i do not use those other proxies, parsed the config
file, then restarted squid, still the same error.
On Wed, Jan 11, 2017 at 2:55 PM Matus UHLAR - fantomas [via Squid Web Proxy
Cache] wrote:
> On 11.01.17 08:32, roadrage27
On 11.01.17 08:32, roadrage27 wrote:
never_direct allow all
I have missed this one.
what are you parent proxies and do you use any?
Because by "never_direct allow all" you have configured your squid to always
use parent proxy and never go direct.
You should avoid always_direct and
1484147626.926 3 10.145.68.148 TCP_DENIED/403 3780 GET
http://google.com/ - HIER_NONE/- text/html
1484147626.943 0 10.145.68.148 TCP_DENIED/403 3828 GET
http://www.squid-cache.org/Artwork/SN.png - HIER_NONE/- text/html
--
View this message in context:
On 11.01.17 08:32, roadrage27 wrote:
Built out Squid 3.5 on ubuntu 14.04 logs showing 403 denied when accessing
any resources, any help is appreciated
please show us at least one line from logs...
here is my conf file for reference.
no need to put empty line between all lines ...
--
Matus
Thank s a lot , Amos
I will try these things
On 11-Jan-2017 9:22 PM, "Amos Jeffries" wrote:
> On 12/01/2017 3:55 a.m., Vidyadhish Joshi wrote:
> > Amos, thank you for the details.
> > Need pointers for caching the dynamic contents. My app has static n
> dynamic
> > cache
Built out Squid 3.5 on ubuntu 14.04 logs showing 403 denied when accessing
any resources, any help is appreciated
here is my conf file for reference.
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 0.0.0.0/8 10.145.68.0/24
acl myip src 10.145.68.148/32
acl
Thank you very much for the reply!
On Wed, Jan 11, 2017 at 6:23 AM, Amos Jeffries wrote:
> On 11/01/2017 2:26 p.m., Stepan Bujnak wrote:
>> Hi,
>>
>> I've been trying to configure intercepting proxy with privoxy as a
>> cache_peer. This is my Squid configuration:
>>
>> acl
On 12/01/2017 3:55 a.m., Vidyadhish Joshi wrote:
> Amos, thank you for the details.
> Need pointers for caching the dynamic contents. My app has static n dynamic
> cache n static am able to cache it . For dynamic the URL is getting
> appended with query string. Is there a way to cache dynamic
Thanks Anand, I will go through it.
On 11-Jan-2017 5:14 PM, "anand" wrote:
> Hello Vinay,
>
> Please verify the web content is "Static/Dynamic", if the content is
> Static, user requests will be logged TCP_HIT/TCP_REFRESH.
>
> If the web content is "Dynamic", user requests
On 12/01/2017 1:04 a.m., FredB wrote:
>
>> but not all requests from a specific source
>
>> what do you mean here?
>
> I mean no ssl-bump at all for a specific user, no matter the destinations
> I tried some acl without success
At the time of bumping Squid has no idea what a "user" is and
On 11/01/2017 2:26 p.m., Stepan Bujnak wrote:
> Hi,
>
> I've been trying to configure intercepting proxy with privoxy as a
> cache_peer. This is my Squid configuration:
>
> acl all src all
>
> acl SSL_ports port 443
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 #
On 11.01.17 18:20, Rahat Ali Khan wrote:
We are using Squid 3.5.14 on Ubuntu 14.04 LTS. The squid is using 4
worker process and is used as an explicit and intercept proxy.
We have been facing a problem of squid processes consuming the memory
gradually and eventually it comes to a minimum
There was a report about an issue and the claim was Ubuntu Kernel issue.
I believe that the first step would be to find out if a kernel downgrade or
upgrade (to xenial one) helps with the issue.
Eliezer
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email:
Hi there,
We are using Squid 3.5.14 on Ubuntu 14.04 LTS. The squid is using 4
worker process and is used as an explicit and intercept proxy.
We have been facing a problem of squid processes consuming the memory
gradually and eventually it comes to a minimum threshold. The end user
browsing
> but not all requests from a specific source
> what do you mean here?
I mean no ssl-bump at all for a specific user, no matter the destinations
I tried some acl without success
>>, maybe because I'm using x-forwarded ?
> x-forwarded-for has nothing to do with this
There is a known bug with
On 11.01.17 11:37, FredB wrote:
I'm searching a way to exclude an user (account) or an IP from my lan
I can exclude a destination domain to decryption with SSL_bump
simply define an ACL and deny bumping it.
but not all requests from a specific source
what do you mean here?
, maybe
Hello Vinay,
Please verify the web content is "Static/Dynamic", if the content is
Static, user requests will be logged TCP_HIT/TCP_REFRESH.
If the web content is "Dynamic", user requests will be refreshed from
web server.
Thanks,
Anand P
On 1/11/2017 4:07 PM,
Hello,
I'm searching a way to exclude an user (account) or an IP from my lan
I can exclude a destination domain to decryption with SSL_bump but not all
requests from a specific source, maybe because I'm using x-forwarded ?
Thanks
Fred
___
23 matches
Mail list logo