[squid-users] logformat %tl and %tg are same.

Hello. I use Squid Cache: Version 3.1.20 In order to view the log in a readable format I use this: logformat squid %{%Y/%m/%d %H:%M:%S}tl %ts.%03tu %6tr %>a %Ss/%03>Hs % The problem is that the time in log is in GMT despite of %tl option. Server is configured to local time. Squid for both,

Re: [squid-users] squid-users Digest, Vol 29, Issue 26

Hello Alex, Please confirm the proxy is configured for parent/sibling proxy ?, if not please remove following lines from the squid conf. "never_direct allow all" "icp_access deny all" If the issue raises again, kindly share your updated/current squid conf files in mailing list. Thanks,

Re: [squid-users] TCP 403 Denied on new squid build out

On 12/01/2017 10:09 a.m., roadrage27 wrote: > I removed the entry as i do not use those other proxies, parsed the config > file, then restarted squid, still the same error. > Are there any entries in cache.log explaining a problem? What does the text of that 403 page say is wrong? Amos

Re: [squid-users] TCP 403 Denied on new squid build out

On 12/01/2017 5:32 a.m., roadrage27 wrote: > Built out Squid 3.5 on ubuntu 14.04 logs showing 403 denied when accessing > any resources, any help is appreciated > > here is my conf file for reference. > > > acl localhost src 127.0.0.1/32 > > acl to_localhost dst 127.0.0.0/8 > Remove the

Re: [squid-users] TCP 403 Denied on new squid build out

Try the next: Remove: never_direct allow all And add at the first line of the file http_access allow all And see if it let you surf. If so then something is twisted in the config file order. Eliezer Eliezer Croitoru Linux System Administrator Mobile: +972-5-28704261 Email:

Re: [squid-users] TCP 403 Denied on new squid build out

I removed the entry as i do not use those other proxies, parsed the config file, then restarted squid, still the same error. On Wed, Jan 11, 2017 at 2:55 PM Matus UHLAR - fantomas [via Squid Web Proxy Cache] wrote: > On 11.01.17 08:32, roadrage27

Re: [squid-users] TCP 403 Denied on new squid build out

On 11.01.17 08:32, roadrage27 wrote: never_direct allow all I have missed this one. what are you parent proxies and do you use any? Because by "never_direct allow all" you have configured your squid to always use parent proxy and never go direct. You should avoid always_direct and

Re: [squid-users] TCP 403 Denied on new squid build out

1484147626.926 3 10.145.68.148 TCP_DENIED/403 3780 GET http://google.com/ - HIER_NONE/- text/html 1484147626.943 0 10.145.68.148 TCP_DENIED/403 3828 GET http://www.squid-cache.org/Artwork/SN.png - HIER_NONE/- text/html -- View this message in context:

Re: [squid-users] TCP 403 Denied on new squid build out

On 11.01.17 08:32, roadrage27 wrote: Built out Squid 3.5 on ubuntu 14.04 logs showing 403 denied when accessing any resources, any help is appreciated please show us at least one line from logs... here is my conf file for reference. no need to put empty line between all lines ... -- Matus

Re: [squid-users] squid-users Digest, Vol 29, Issue 21

Thank s a lot , Amos I will try these things On 11-Jan-2017 9:22 PM, "Amos Jeffries" wrote: > On 12/01/2017 3:55 a.m., Vidyadhish Joshi wrote: > > Amos, thank you for the details. > > Need pointers for caching the dynamic contents. My app has static n > dynamic > > cache

[squid-users] TCP 403 Denied on new squid build out

Built out Squid 3.5 on ubuntu 14.04 logs showing 403 denied when accessing any resources, any help is appreciated here is my conf file for reference. acl localhost src 127.0.0.1/32 acl to_localhost dst 127.0.0.0/8 acl localnet src 0.0.0.0/8 10.145.68.0/24 acl myip src 10.145.68.148/32 acl

Re: [squid-users] ERR_CANNOT_FORWARD with Squid + Privoxy

Thank you very much for the reply! On Wed, Jan 11, 2017 at 6:23 AM, Amos Jeffries wrote: > On 11/01/2017 2:26 p.m., Stepan Bujnak wrote: >> Hi, >> >> I've been trying to configure intercepting proxy with privoxy as a >> cache_peer. This is my Squid configuration: >> >> acl

Re: [squid-users] squid-users Digest, Vol 29, Issue 21

On 12/01/2017 3:55 a.m., Vidyadhish Joshi wrote: > Amos, thank you for the details. > Need pointers for caching the dynamic contents. My app has static n dynamic > cache n static am able to cache it . For dynamic the URL is getting > appended with query string. Is there a way to cache dynamic

Re: [squid-users] squid-users Digest, Vol 29, Issue 21

Thanks Anand, I will go through it. On 11-Jan-2017 5:14 PM, "anand" wrote: > Hello Vinay, > > Please verify the web content is "Static/Dynamic", if the content is > Static, user requests will be logged TCP_HIT/TCP_REFRESH. > > If the web content is "Dynamic", user requests

Re: [squid-users] SSL_bump and source IP

On 12/01/2017 1:04 a.m., FredB wrote: > >> but not all requests from a specific source > >> what do you mean here? > > I mean no ssl-bump at all for a specific user, no matter the destinations > I tried some acl without success At the time of bumping Squid has no idea what a "user" is and

Re: [squid-users] ERR_CANNOT_FORWARD with Squid + Privoxy

On 11/01/2017 2:26 p.m., Stepan Bujnak wrote: > Hi, > > I've been trying to configure intercepting proxy with privoxy as a > cache_peer. This is my Squid configuration: > > acl all src all > > acl SSL_ports port 443 > acl Safe_ports port 80 # http > acl Safe_ports port 21 #

Re: [squid-users] Squid Memory Problems

On 11.01.17 18:20, Rahat Ali Khan wrote: We are using Squid 3.5.14 on Ubuntu 14.04 LTS. The squid is using 4 worker process and is used as an explicit and intercept proxy. We have been facing a problem of squid processes consuming the memory gradually and eventually it comes to a minimum

Re: [squid-users] Squid Memory Problems

There was a report about an issue and the claim was Ubuntu Kernel issue. I believe that the first step would be to find out if a kernel downgrade or upgrade (to xenial one) helps with the issue. Eliezer http://ngtech.co.il/lmgtfy/ Linux System Administrator Mobile: +972-5-28704261 Email:

[squid-users] Squid Memory Problems

Hi there, We are using Squid 3.5.14 on Ubuntu 14.04 LTS. The squid is using 4 worker process and is used as an explicit and intercept proxy. We have been facing a problem of squid processes consuming the memory gradually and eventually it comes to a minimum threshold. The end user browsing

Re: [squid-users] SSL_bump and source IP

> but not all requests from a specific source > what do you mean here? I mean no ssl-bump at all for a specific user, no matter the destinations I tried some acl without success >>, maybe because I'm using x-forwarded ? > x-forwarded-for has nothing to do with this There is a known bug with

Re: [squid-users] SSL_bump and source IP

On 11.01.17 11:37, FredB wrote: I'm searching a way to exclude an user (account) or an IP from my lan I can exclude a destination domain to decryption with SSL_bump simply define an ACL and deny bumping it. but not all requests from a specific source what do you mean here? , maybe

Re: [squid-users] squid-users Digest, Vol 29, Issue 21

Hello Vinay, Please verify the web content is "Static/Dynamic", if the content is Static, user requests will be logged TCP_HIT/TCP_REFRESH. If the web content is "Dynamic", user requests will be refreshed from web server. Thanks, Anand P On 1/11/2017 4:07 PM,

[squid-users] SSL_bump and source IP

Hello, I'm searching a way to exclude an user (account) or an IP from my lan I can exclude a destination domain to decryption with SSL_bump but not all requests from a specific source, maybe because I'm using x-forwarded ? Thanks Fred ___