Hi Mr.Amos,
Thank you for helping in my previous post. I have a question. I’ve tried the
same squid.conf setup to a new topology, and it works only for all internal
users. But, external users that want to access my public web server, will
get an access denied error (’The requested URL could not be
Hello everyone,
I would like to get your opinions on the subject.
Problem: admin needs to manage squid acls (and icap web filter settings) using
security groups from Active Directory. For non-technical reasons, setup of
explicit proxy settings and thus enforcing proxy authentication on Squid is
Hi, we want to use
https://wiki.squid-cache.org/Features/FtpRelay functions. I try to setup
this feature but I have some troubles with it.
When I connect to ftp with filezilla over proxy, squid says me about 407
error. Need authenticate. How I can authenticate with my proxy user/pass
over ftp rela
On 17/10/17 22:39, Rafael Akchurin wrote:
Hello everyone,
I would like to get your opinions on the subject.
*Problem*: admin needs to manage squid acls (and icap web filter
settings) using security groups from Active Directory. For non-technical
reasons, setup of explicit proxy settings and t
Hello Amos,
Thanks for your responses.
What I do not understand completely - if we have intercept style of deployment,
when browsers know nothing about the proxy - how basic (or any other type of
authenticator) will work? I always thought browsers will discard proxy-auth
responses just because
On 10/16/2017 10:30 PM, duanyao wrote:
> When I test squid with rock storage, I have never got a TCP_MEM_HIT
> (just TCP_HIT) in access.log.
>
> Is this normal, or something is mis-configured?
Neither :-). You are testing with a Vary-controlled response. The shared
memory cache does not support
Ok thanks again Amos.
The plan is then:
- external acl helper gets the SRC and connects to REST server running on AD DC
with IP <-> user mapping database
- replies with OK user=
- this name get's delivered to access log and ICAP/eCAP
- (optional) we are able to match the user to security group
What version of squid should be installed?
Also what base Linux distribution should we use?
Since it's Docker container it won't be simple to use it as a gateway router
and will only be usable as a simple forward proxy with or without ssl-bump.
Since I already package squid for many OS I believe y
I don't know exactly how I got a hold of this repository but it looks nice
and up-to-date:
https://github.com/StevenBlack/hosts/
The hosts file can be converted to a SquidGuard\ufdbguard\other domains
blocklists.
I have not verified all of their lists but since these are meant to be used
for hosts
Are you validating your config files before committing them??
If you have about 100 clients this is the first thing to do...
Either run a asciii validation script for the whole file(I can write it if you
really need it) or maintain two configuration testing node (CentOS 6+7).
You don't even need t
在 2017/10/18 上午12:23, Alex Rousskov 写道:
On 10/16/2017 10:30 PM, duanyao wrote:
When I test squid with rock storage, I have never got a TCP_MEM_HIT
(just TCP_HIT) in access.log.
Is this normal, or something is mis-configured?
Neither :-). You are testing with a Vary-controlled response. The sh
在 2017/10/16 下午10:59, Alex Rousskov 写道:
On 10/16/2017 06:26 AM, duanyao wrote:
Is it safe to resize a rock storage file as follow (while squid is not
running)?
1) Increase a rock storage file by increasing the size specified in the
configuration file;
I would recommend running truncate after
在 2017/10/18 上午12:23, Alex Rousskov 写道:
On 10/16/2017 10:30 PM, duanyao wrote:
When I test squid with rock storage, I have never got a TCP_MEM_HIT
(just TCP_HIT) in access.log.
Is this normal, or something is mis-configured?
Neither :-). You are testing with a Vary-controlled response. The sh
13 matches
Mail list logo
