Re: [squid-users] Squid Cache Server

On Saturday 20 October 2018 at 16:53:12, Mujtaba Hassan Madani wrote: > Hi, > > now it works through URL > > http://196.202.134.253:3128/squid-internal-mgr/info instead of > http://proxy.com:3128/squid-internal-mgr/info Yes, that is because proxy,com does not belong to you - it points to someon

Re: [squid-users] Caching Vimeo Videos

On Friday 30 November 2018 at 10:05:49, Raju M K wrote: > Need help on how to cache Vimeo videos under squid proxy. Need info on what you tried already and how you identified it didn't work. Antony. -- Ramdisk is not an installation procedure.

Re: [squid-users] Fwd: ERROR: http_port or ACL larger than 65536 (short type)

On Friday 30 November 2018 at 19:07:58, kalice caprice wrote: > Hello, > > Inside my squid.conf I'm setting up ACL like this: > > http_port 0.0.0.0:20740 name=20740 So, you're using the name to represent the port number... > acl ip10740 myportname 20740 > > and then > > tcp_outgoing_address

Re: [squid-users] Advice - Squid Proxy

On Wednesday 19 December 2018 at 13:22:57, Squid users wrote: > The attached configuration is currently in use on my computer. It isn't a network diagram; I'm not quite sure what to describe it as, but I don't even see where Squid is on there. > My aim is to use my laptop while I'm out and abou

Re: [squid-users] Advice - Squid Proxy

On Wednesday 19 December 2018 at 16:04:36, Squid users wrote: > Hi, > > Re network diagram - Mish Mash / blended / spaghetti I think :p > > Squid is installed on the Ubuntu virtual machine. Sorry forgot to draw that > on. So, Squid is installed on an Ubuntu VM, which runs on your laptop? > Th

Re: [squid-users] SSL / TLS

On Thursday 20 December 2018 at 11:06:58, Squid users wrote: > Slightly off topic but am I correct in thinking TLS supersedes SSL? Short answer: yes. Long answer: https://en.wikipedia.org/wiki/Transport_Layer_Security Antony. -- #define SIX 1+5 #define NINE 8+1 int main() { printf("%d\n

Re: [squid-users] Sslbump with multiple users and multiple ACLs for each

On Thursday 03 January 2019 at 16:45:05, Benjamin E. Nichols wrote: > Why are you asking support questions about a commercial product, on the > squid proxy email users list? Maybe because s/he's only just been introduced to ufdbguard by an asnwer from someone else on this list, and therefore doe

Re: [squid-users] can't access https://www.finanzamt.bayern.de/ with sslbump (other sites works well)

On Tuesday 08 January 2019 at 17:52:23, Dieter Bloms wrote: > Hello, > > I've compiled squid 4.5 with openssl1.1 as shipped with debian9. > Sslbump works fine for all sides, but I can't access only one site > https://www.finanzamt.bayern.de/ Given who that is, I would not be at all surprised if

Re: [squid-users] Squid - SSL-tunnel-error in Google Chrome

On Thursday 31 January 2019 at 18:13:38, Sébastien Genesta wrote: > Hi, > > We are encountering strange behaviour using squid proxy has a > non-transparent proxy. > > We're randomly encountering "ERR_TUNNEL_CONNECTION_FAILED". > > When this error occurs, just wait 1 minutes and the site we trie

Re: [squid-users] Proxing only special file types

On Wednesday 06 February 2019 at 10:48:19, alexmaystat wrote: > Hello. I have squid proxy server. Version? Operating system? > Configured SSL inspection How? Give us some details. > and add your JS code. What? > Is it possible to inspect and add JS code only to files of a specific file > t

Re: [squid-users] Proxing only special file types

On Wednesday 06 February 2019 at 11:21:57, alexmaystat wrote: > Squid version - 3.5 > Operation system - CentOS > SSL inspection - use SSL_Bump + ECAP for content modification. > I mean add my own JS code. > > I need user ECAP with modification to parse what file type and after that, > if javascr

Re: [squid-users] Squid 4.6 Transparent HTTP & HTTPS Proxy

On Thursday 07 March 2019 at 13:17:18, dkanejs wrote: > I'm trying to create a transparent (requires no client configuration) Squid > proxy for HTTP and HTTPS. > > In short, I want to whitelist specific domains on both HTTP and HTTPS. > Details > > - Building / Running in AWS > - Ubuntu 18.04 >

Re: [squid-users] How to extract decrypted traffic for further analysis using Snort?

On Monday 11 March 2019 at 20:53:13, Felipe Arturo Polanco wrote: > Hi, > > I'm trying to find a way to get the HTTP traffic analysed after being > decrypted, by using Snort. > > Does someone know how to do this? I can redirect IP traffic with regular > HTTP into Snort but I haven't found a way

Re: [squid-users] youtube restriction.

On Friday 05 April 2019 at 15:06:00, Wegner Michaël wrote: > Hi, > > I install squid + squidguard, and I can't play youtube video. > For example : https://m.youtube.com/watch?v=Hmj3LToi4W8 ; > https://m.youtube.com/watch?v=jbBUQ-uvlRU > > Error : video not available access to this video is limit

Re: [squid-users] youtube restriction.

Squid configuration which is causing the problem. > With a old version of squid (2.6) there are no problems There are a *lot* of differences between Squid 2.6 and 3.5, especially for HTTPS. You *have* made suitable adjustments to the configuration file, I hope? Antony. > Date: Fri, 5 Ap

Re: [squid-users] Squid proxy in Azure

On Monday 20 May 2019 at 09:43:56, Peter Spencer wrote: > Good morning > > Was hoping you could please advise.. we are looking to put a squid proxy in > Azure. Reason being, we have two sites with network resilience. At the > moment, we have one squid proxy on one of our local site DCs, and would

Re: [squid-users] Squid auth helpers aren't installing

On Thursday 23 May 2019 at 09:37:44, amlgp wrote: > Hi, I am using Centos 6 and for some reason the Squid helpers aren't > installing. I go to /usr/lib64 after installing squid and there is no auth > helpers in there at all. I am on a 64bit computer and I have checked > /usr/lib and they both don'

Re: [squid-users] Useragent request/reply headers with squid .

On Saturday 15 June 2019 at 10:57:44, --Ahmad-- wrote: > Hello Folks , > > im trying to disable user agent info to be leaked out of squid Just out of interest, why? > using : > > request_header_access User-Agent deny all > reply _header_access User-Agent deny all > > squid very 3.5.x I'm not

Re: [squid-users] Useragent request/reply headers with squid .

On Saturday 15 June 2019 at 11:37:29, --Ahmad-- wrote: > Guys im just trying to understand HTTP protocol and squid as GW for > internet . Hm, "understand" or "break" :) ? > i just want to know how can squid deal with headers . You *have* read the warning / advice at http://www.squid-cache.org/D

Re: [squid-users] Squid + OpenSSL w/FIPS

On Tuesday 02 July 2019 at 23:05:27, Cody Cushing wrote: > Hello, I would like to use Squid as a forward proxy to ensure traffic > leaving my VM is using a TLS connection negotiated through a client using > FIPS certified encryption. I have OpenSSL w/FIPS configured on my VM, and > Squid properly

Re: [squid-users] squid.config

On Tuesday 13 August 2019 at 21:18:51, Sérgio Vieira wrote: > Hello, > Regarding squid config file, on MacOS, I can’t add the following parameter: > strip_query_terms off > > I can access the file and edit it, but after restart the file removes the > added line... > > I have the config file at /

Re: [squid-users] SQUID proxy to access web application from another subnet

On Friday 23 August 2019 at 00:21:48, jagadeesh am wrote: > Hello, > > I have one query. Could you please suggest me what to do. Read the documentation :) > I have a requirement to access a web application running on Server 1 which > is connected to Private network 192.168.2.2 network , from Cl

Re: [squid-users] squid email using curl/smtp using squid

On Sunday 08 September 2019 at 17:35:24, --Ahmad-- wrote: > ? It might be that: a) we don't quite understand what you have done: "i enabled port port in squid for mailing in squid ssl ports 587" is not easy to understand or b) Squid is not designed to be an email proxy, so why are you try to

Re: [squid-users] Multiple LDAP authentication server for Squid

On Monday 16 September 2019 at 12:17:12, Antonino Sanacori wrote: > Thanks Amos but I have a 3.x version. Try http://www.squid-cache.org/Versions/v3/3.5/manuals/basic_ldap_auth.html then. Antony. > On 13/09/2019 11:17, Amos Jeffries wrote: > > On 12/09/19 10:41 pm, Antonino Sanacori wrote: > >

Re: [squid-users] Unsuccessful at using Squid v4 with intercept

On Wednesday 30 October 2019 at 17:11:29, FOUTREL Sébastien wrote: > Hello, I would like to use squid as a transparent proxy for my users. > "Clients" are behind a Debian "Router" which MASQUERADE them (as they use > RFC 1918 ips). > > I have a Squid 4.6 from Debian Buster packages installed on

Re: [squid-users] After enabling IPv6 squid no longer responds

On Thursday 14 November 2019 at 19:50:00, James Moe wrote: > On 13/11/2019 12.36 pm, James Moe wrote: > > After adding v6 addresses to the server and hosts, and enabling an RA, > > squid no longer delivers anything from its cache, or is exceedingly slow > > about it. > > Here is a typical

Re: [squid-users] debug headers between squid --> website

On Monday 02 December 2019 at 18:34:31, Ahmad Alzaeem wrote: > Hello Tem , > > How can i debug Headers that is between squid——> website request made Run a packet sniffer (tcpdump, wireshark, tshark...) on the Squid server, looking at the external interface (ie: the one pointing to the website/s

Re: [squid-users] debug headers between squid --> website

packet sniffer capture what happened. After it's all over, you then have a packet capture which you can analyse (eg: using wireshark) to find out what Squid sent to the server/s, and what came back again. Antony. > > On Dec 2, 2019, at 8:58 PM, Antony Stone > > wrote: >

Re: [squid-users] About intercept https

On Tuesday 25 February 2020 at 20:49:25, Yurii wrote: > Hi to all. I need help. > The task is to configure squid in intercept mode to proxy http/https > traffic. I cannot view any of the pastebin links you provide below. Please just cut and paste the information into an email reply, so we can re

Re: [squid-users] Allowing a port only to certain IP/host

On Monday 09 March 2020 at 15:43:14, Service MV wrote: > Hello everyone, I need to enable port 22 in squid but only to a certain > server (host.domain.com) in particular, so that the rest of the world > cannot be accessed via SSH. Squid does not support SSH. > I would like to know this is the ri

Re: [squid-users] Squid transparent not caching apt requests from deb.debian.org

On Friday 03 April 2020 at 22:26:13, zrm wrote: > Greetings! Today I bring you a Squid cache mystery. > In the first case we get TCP_MISS every time because it isn't caching > the data, in the second case it's only the first time and after that we > get TCP_REFRESH_UNMODIFIED. But how and why is

Re: [squid-users] Setting up proxy with private to public

On Monday 13 April 2020 at 21:19:04, Chris Bidwell - NOAA Federal wrote: > Hi all, > > Very new to squid and am looking to setup several internal subnets to > access external network (internet) through squid on a separate interface. What are you trying to achieve by using Squid? What is your ob

Re: [squid-users] Setting up proxy with private to public

On Monday 13 April 2020 at 23:46:46, Chris Bidwell - NOAA Federal wrote: > Sure. So we have a few internal networks that aren't meant to have direct > internet access without access through a proxy so that it can be better > regulated and monitored. Okay, that's a useful starting point. > We've

Re: [squid-users] Setting up proxy with private to public

On Tuesday 14 April 2020 at 16:03:19, Chris Bidwell - NOAA Federal wrote: > Okay, so I think I'm starting to get somewhere but the connection isn't > completing. I can see the connection come through my firewall, but the > handshake doesn't appear to be happening. Tell us more about your network

Re: [squid-users] Setting up proxy with private to public

Sorry, replying to the list this time - for some reason my previous reply went to your private address. On Wednesday 15 April 2020 at 15:08:36, Chris Bidwell - NOAA Federal wrote: > So after looking further. It looks like when I'm trying to wget from my > squid server, which has the two nics (

Re: [squid-users] Confirmation page not working

On Friday 17 April 2020 at 15:32:38, TarotApprentice wrote: > Trying to visit the confirmation page at > http://lists.squid-cache.org/confirm/squid-users/ but it doesn’t seem to > be responding. I’ve tried over a couple of days. When you say "not responding", do you mean you get no page content s

Re: [squid-users] [squid-announce] [ADVISORY] SQUID-2019:4 Multiple Issues in HTTP Request processing

On Sunday 19 April 2020 at 11:47:41, Dmitry Melekhov wrote: > 19.04.2020 12:37, Amos Jeffries пишет: > > On 19/04/20 8:22 pm, Dmitry Melekhov wrote: > > > > > 4.10 does not contain fix :-) > > > > Which fix are you talking about? > > > > The bug this advisory is talking about definitely is fixed

Re: [squid-users] setup FTP proxy and FTP content monitoring

On Tuesday 21 April 2020 at 17:26:05, Dawood Aijaz wrote: > Hi, > I am currently working on a task to monitor FTP traffic and analyze it. > So can somebody help me to set up FTP proxy for squid and to analyze FTP > data Squid supports FTP natively. You don't need to configure anything special p

Re: [squid-users] setup FTP proxy and FTP content monitoring (Antony Stone)

On Wednesday 22 April 2020 at 15:48:57, Dawood Aijaz wrote: > "a*ll I want from squid proxy is to intercept FTP and expose all the FTP > data "* I think you're looking at the wrong tool for a job like this. When you say "intercept" it sounds like you want something which will act in between an

Re: [squid-users] Configure A Native FTP proxy on Squid

On Saturday 25 April 2020 at 19:27:51, Dawood Aijaz wrote: > Hi, > > Currently, I am developing a Data Loss Prevention Tool. One of the > requirements is to monitor FTP traffic. So can someone help me set up an > FTP native proxy is squid and how will I be able to monitor FTP traffic Why do you

Re: [squid-users] Configure A Native FTP proxy on Squid

On Sunday 26 April 2020 at 08:42:11, Amos Jeffries wrote: > On 26/04/20 8:26 am, Antony Stone wrote: > > On Saturday 25 April 2020 at 19:27:51, Dawood Aijaz wrote: > >> > >> Currently, I am developing a Data Loss Prevention Tool. One of the > >> requiremen

Re: [squid-users] Squid - Can't visit (government site and Banking Site) - Please help

On Sunday 26 April 2020 at 15:14:40, russel0901 wrote: > Hi, upon checking I am using squid version 3.1 on CentOS 6.10 Wow, that's impressive (in a way). Squid 3.1 was released ten years ago (29 March 2010). On Wednesday 15 August 2012 at 13:29:07, Amos Jeffries wrote: > The Squid HTTP Proxy t

Re: [squid-users] Using a Baltimore root certificate in transparent ssl proxying

On Monday 27 April 2020 at 23:44:41, Lei Wen wrote: > The issue we are having right now is the certificate installed on the > container is a self signed cert, we were trying to migrate this cert to a > real trusted CA cert, or a Baltimore root cert. That will not work for an intercepting ("transp

Re: [squid-users] Let Squid use SSL certificate for a parent cache peer

On Tuesday 05 May 2020 at 11:48:12, mariolatif741 wrote: > Since you said "If the client is participating in the TLS handshake it > *always* requires the CA to be installed.", then I guess what I want to do > is not possible. > > Can I make Squid send the requests received from the client to the

Re: [squid-users] Let Squid use SSL certificate for a parent cache peer

On Tuesday 05 May 2020 at 12:21:19, mariolatif741 wrote: > The purpose of proxy A is that its the proxy that will be given to my > clients. The purpose of all what I am doing is to let my clients use proxy > B indirectly through proxy A (so they can use proxy B without installing > the CA certific

Re: [squid-users] SQUID PROBLEM WITH SITES THAT HAVE MORE THAN ONE IP ADDRESSES

On Monday 11 May 2020 at 11:53:15, leomessi...@yahoo.com wrote: > Hi againthank you for your reply. > sorry but I didn't yell only asked for help! Writing in all capital letters (see your Subject line, for example) in online communications is generally interpreted as shouting. Regards, Anton

Re: [squid-users] Switch cache peer Parent server for every 30 minutes

On Wednesday 10 June 2020 at 18:11:03, Prem Chand wrote: > Hi Alex, > > Thanks for responding to my issue . I didn't get how the math was done(why > it's multiplied by 2) to get 16 slots if possible could you please elaborate > with an example. I believe what Alex meant was: You want 30 minute

Re: [squid-users] Server monitoring

On Wednesday 10 June 2020 at 21:08:35, Ronan Lucio wrote: > Hi guys, > > How do you suggest to monitor service availability? > A know that some people use to monitor a few URLs through the proxy, > but, I'd like to know if there is any way to remotly monitor squid service. Do you mean "is it run

Re: [squid-users] try and reslove domain via local DNS and not squid

On Wednesday 24 June 2020 at 17:36:34, robert k Wild wrote: > hi all, > > i want squid not to try and resolve our domain name ie so it resolves > internally on our local DNS server and not go out squid to try and resolve What is in /etc/resolv.conf on your squid server? Antony. -- Never write

Re: [squid-users] Squid and multipart form decode

On Thursday 23 July 2020 at 15:22:56, Ryan Le wrote: > I have been trying to configure squid to decode and send multipart form > data to another service. What do you mean by "decode"? > Is there an acl or build parameter needed for multipart form data support? No; Squid sends on what it gets fr

Re: [squid-users] Squid and multipart form decode

On Thursday 23 July 2020 at 15:33:01, Ryan Le wrote: > sorry not decode, just parse to send headers to icap as well. Aha, icap - sorry, I can't help you there, but I'm pretty sure there are others here who have used it. > On Thu, Jul 23, 2020 at 9:27 AM Antony Stone wrote: &g

Re: [squid-users] Need squid latest version 4.12 RPM packaged files for centos7 and x86_64 architecture

On Thursday 20 August 2020 at 12:25:04, rahul.n...@orange.com wrote: > Hi Team, > > I am looking for a urgent support on squid latest version 4.12 RPM files > based on CentOS7 and x86_64 architecture. "Urgent" is all very well, but we can't help until you tell us what the problem is. > Also, I

Re: [squid-users] Can squid proxy pass the SMTP port 587

On Thursday 20 August 2020 at 21:41:20, santosh panchal wrote: > Hi Team > > How to configure squid to pass my smtp traffic on port 587 Install sendmail, exim, postfix or any other MTA of your choice and configure it to relay your outbound email. Squid is not an MTA. Antony. -- The truth

Re: [squid-users] Strange Squid SSL Interception Behavior

On Tuesday 25 August 2020 at 00:21:31, Mathew Brown wrote: > I set up the necessary iptables forwarding ports Please show us what those iptables rules are. Antony. -- "It wouldn't be a good idea to talk about him behind his back in front of him." - murble

Re: [squid-users] How to select parent proxy based on user password

On Tuesday 22 September 2020 at 22:35:36, Ajb B wrote: > how can you map the user password to a parent proxy? > > so that > > testuser1:qvmgPUJ5xW-121@18.234.74.214:3292 > testuser1:qvmgPUJ5xW-122@18.234.74.214:3292 > testuser1:qvmgPUJ5xW-123@18.234.74.214:3292 > map to a different parent proxy?

Re: [squid-users] Is there a worker option in the source build?

On Wednesday 14 October 2020 at 11:19:54, m k wrote: > hi all, > > I have installed squid 4.13. How? Package? Compiled from source? What O/S have you installed it on? > When I set workers, Give us a clue how you're doing that? > squid doesn't work. In what way? Doesn't start? Gives an e

Re: [squid-users] Is there a worker option in the source build?

On Wednesday 14 October 2020 at 11:29:58, m k wrote: > hi Antony, > > 4.13 is a compiler from source. Show us the command you use to compile it. > workers just write in squid.conf. I don't think you understood what I meant by "details" - show us exactly what you have put into the config file

Re: [squid-users] FTP proxy

On Sunday 06 December 2020 at 16:26:26, Andrea Venturoli wrote: > Hello. > > I'm trying to evaulate FTP proxying with squid and I have a couple of > questions. > To be clear, I'm not talking about FTP through HTTP, but about the > ftp_port option. > I've used frox (http://frox.sourceforge.net/) i

Re: [squid-users] FTP proxy

On Sunday 06 December 2020 at 16:56:10, Andrea Venturoli wrote: > On 12/6/20 4:44 PM, Antony Stone wrote: > > Where is the firewall, compared to your Squid proxy, in the network? > > Squid runs on the firewall itself. > > > I'm just wondering how you plan to u

Re: [squid-users] Sqlite3 with Squid

On Thursday 10 December 2020 at 12:49:48, Eliezer Croitor wrote: > Hey, > > I am wondering what can I use Sqlite3 with squid? > > I was thinking about holding some of the config dynamic parts inside sqlite > db (in a specific setup) Can you give some examples of such "config dynamic parts"? >

Re: [squid-users] Squid with more than 128 ports?

On Thursday 10 December 2020 at 13:02:19, roee klinger wrote: > Hello, > > We have a few Squid proxy servers with a total of around 400 ports What do you mean by that? What are you using 400 ports for? > We have decided that we want to add a cloud instance in the middle of the > connections, t

Re: [squid-users] authorized by pcname

On Saturday 12 December 2020 at 14:03:23, sampe...@tiscali.it wrote: > What Squid mechanism do you suggest me to identify the “computer name” ? > What solution/corretion can I make to my environment to apply my idea? A few suggestions: 1. Why not get your DHCP server to allocate IP addresses acc

Re: [squid-users] squid writes to /var/log/messages

On Thursday 24 December 2020 at 18:44:21, Song & Movie wrote: > Can any one help me to create http proxy ? 1. Please do not hijack an unrelated thread on the list. Please start a new thread by posting to squid-users@lists.squid-cache.org with an appropriate subject. 2. Please give us at least

Re: [squid-users] Setting up a transparent http and https proxy server using squid 4.6

On Thursday 31 December 2020 at 10:10:11, jean francois hasson wrote: > If I set up on a device connected to the access point a proxy manually > ie 10.3.141.1 on port 8080, I can access the internet. If I put the > following rules for iptables to use in files rules.v4 : > > *nat > -A PREROUTING -

Re: [squid-users] Protecting squid

On Thursday 11 March 2021 at 14:41:11, Ben Goz wrote: > I tried to open squid with some special port other than the default 3128 > port. Obscurity is not equivalent to security. > But after a while I saw that my squid was being abused by unknown IP > addresses I'm assuming this means your Squid

Re: [squid-users] How to automatically Restart Squid on Ubuntu?

On Monday 22 March 2021 at 15:59:37, Angelo Wang wrote: > Hi, > > I have a /22 subnet on a server and sometimes Squid crashes when there are > too many connections. Can someone help me create a script/command to > automatically restart squid if this happens? I would use http://manpages.ubuntu.co

Re: [squid-users] squid ftp list files problem

On Thursday 25 March 2021 at 12:53:09, maurizio wrote: > Hello > I have a squid 4.14 version installed recently. I have a problem when we use > that like ftp proxy(via port 21): when a client use that and try to use the > ftp command ls(list) in a directory with a lot files (in my test 250 files)

Re: [squid-users] squidcliente stopped working!

On Tuesday 20 December 2016 at 16:59:11, Eliezer Croitoru wrote: > The issue is with acls and probably squidguard. > You should add to the configuration something like: > http_access allow localhost manager Er, that line is already in his squid.conf > and also another line that will deny localho

Re: [squid-users] Bypassed Proxy

On Thursday 22 December 2016 at 22:50:33, Sameh Onaissi wrote: > The user has hotspot shield installed on his PC, which I believe is a > similar extension to the one you mentioned. > He is getting by squid with some sort of VPN, I thought squid can be > configured against such things? It sounds

Re: [squid-users] How to bypass Squid proxy in intercept mode using acl/always_direct

On Monday 26 December 2016 at 20:07:03, mabi wrote: > Hello, > > I am using Squid 3.5.20 in intercept mode for HTTP and HTTPS traffic with > my OpenBSD 6.0 firewall. For some internal servers located on two > different subdomains I would like to access these directly and as such > bypass the Squi

Re: [squid-users] ACL and outgoing IP

On Tuesday 27 December 2016 at 17:03:52, qdmetro wrote: > I have a squid connected behind a firewall. On the firewall, only the Ip of > the squid (192.168.1.1) is allowed to go on Internet. > > Usually, when a user authenticate itself on the proxy, all the requests use > the outgoing IP of the sq

Re: [squid-users] Intercept mode failing

On Tuesday 03 January 2017 at 10:17:54, Hoggins! wrote: > Hello list, > > I'm trying to do a simple intercept with Squid. Here is my setup : > > I have a LAN with machines on 192.168.22.0/24. Their gateway is > 192.168.22.10. On this machine, I have set the following iptables rule : > > ipt

Re: [squid-users] Intercept mode failing

On Tuesday 03 January 2017 at 11:13:33, Hoggins! wrote: > Okay, I get that. > > Le 03/01/2017 à 10:33, Antony Stone a écrit : > > No - you must do the NAT (or REDIRECT) rule *on the Squid server*. > > Well, my Squid server is not on the same network as my clients, so I

Re: [squid-users] keep source ip when user connect over squid using ip:port

On Saturday 07 January 2017 at 19:23:47, --Ahmad-- wrote: > hey mate i total understand Tporxy with CISCO /wccp > > but I’m asking here other way like connecting ip:port and keep squid using > my original ip as source So, where do you expect the reply packets from the remote web server to end

Re: [squid-users] squid http speed/ ms

On Tuesday 10 January 2017 at 10:20:04, --Ahmad-- wrote: > hi folks > i want to ask . > when i do ping imp from my squid server itself to website like aaa.com > lets say i have ping over 10ms but when i configured my > server as squid and visit aaa.com from sq

Re: [squid-users] Customize squid to make it understand malformed requests

On Monday 16 January 2017 at 09:03:52, Oğuz İsmail Uysal wrote: > For a private reason, I want to customize squid version 3.5.12 the way I > stated above. For example I have customized it already to make it > understand \r\n /\r\n instead of \r\n\r\n as request's end > now I want it to remove the

Re: [squid-users] SSL Bump

On Friday 20 January 2017 at 17:12:04, Mustafa Mohammad wrote: > What are the steps to setup SSL Bump? Don't. Use peek and splice instead. See http://wiki.squid-cache.org/Features/SslBump for info, then http://wiki.squid-cache.org/Features/SslPeekAndSplice for guidance. Antony. -- If at fi

Re: [squid-users] Native FTP relay: connection closes (?) after 'cannot assign requested address' error

On Thursday 26 January 2017 at 17:41:21, Alexander wrote: > It seems that I have solved the issue by using nf_conntrack_ftp and > redirecting "NEW,RELATED" traffic to squid: Excellent news. > ftp_port 2121 intercept > > modprobe nf_conntrack_ftp ports=2121 > > iptables -t nat -A PREROUTING -p

Re: [squid-users] squid on it's own server

On Friday 27 January 2017 at 05:17:28, John Pearson wrote: > hi all, my current setup: laptop(10.0.1.10) and squid-box(10.0.1.11) and > debian router(10.0.1.1). > > I am doing wget on laptop > > wget squid-cache.org > > I am redirecting packets on the router to squid-box by changing the > desti

Re: [squid-users] Not all html objects are being cached

On Friday 27 January 2017 at 12:58:52, Yuri wrote: > Again. What is the difference? I open it from different workstations, > from different browsers - I see the same thing. The code is identical. I > can is to cache? Yes or no? You're entitled to do whatever you want to, following standards and

Re: [squid-users] Not all html objects are being cached

On Friday 27 January 2017 at 13:15:21, Yuri wrote: > 27.01.2017 18:05, Antony Stone пишет: > > > You're entitled to do whatever you want to, following standards and > > recommendations or not - just don't complain when choosing not to follow > > those standa

Re: [squid-users] Strange behavior - reload service failed, but not start....

On Friday 27 January 2017 at 14:13:55, erdosain9 wrote: > Ok, thanks. > But something more its wrong look up this: > > [root@squid ips]# squid -k restart > squid: ERROR: Could not send signal 21 to process 8083: (3) No such process > > [root@squid ips]# squid -k shutdown > squid: ERROR: Coul

Re: [squid-users] Strange behavior - reload service failed, but not start.... (solved)

On Friday 27 January 2017 at 14:36:01, erdosain9 wrote: > Hi, again. > Now, i do this > > [root@squid ips]# ps aux | grep squid > root 2228 0.0 0.0 130900 344 ?Ss ene24 0:00 > /usr/sbin/squid -sYC ... snip ... > [root@squid ips]# systemctl stop squid > [root@squid ips]# pki

Re: [squid-users] Is it possible to modify cached object?

On Tuesday 31 January 2017 at 10:35:30, boruc wrote: > I ran command "sudo apt-get remove --purge squid3" Okay, that will remove the distribution (Debian or Debian-based) package. > then I downloaded squid-3.5.24 in browser What exactly did you download from where? > unpacked it So, presumabl

Re: [squid-users] Is it possible to modify cached object?

On Tuesday 31 January 2017 at 17:28:15, boruc wrote: > 1. Ubuntu 12.04.5 LTS > 2. Squid downloaded from > http://www.squid-cache.org/Versions/v3/3.5/squid-3.5.24.tar.gz Okay, so that's an official source tarball, good. > 3. About "sudo auto-apt run ./configure && sudo make && sudo checkinstall",

Re: [squid-users] Is it possible to modify cached object?

On Tuesday 31 January 2017 at 18:19:14, boruc wrote: > Antony Stone wrote > > > What do you get from the following: > > /etc/init.d/squid status > > /etc/init.d/squid restart > > literally nothing. I just noticed that there isn't anything with &q

Re: [squid-users] Two dns record fqdn pointing to different squid servers

On Wednesday 01 February 2017 at 20:06:22, erdosain9 wrote: > Hi. > I have running two squid servers. > One with ip access and another with users. Sorry, what do you mean by "IP access"? I assume both Squid servers have IP addresses. Do you mean that only one of them has connectivity to the Int

Re: [squid-users] Logs to confirm packets dropped/not forwarded by squid

On Monday 06 Feb 2017 at 17:26, Anonymous cross wrote: > Is there any way to find the connections dropped/not forwarded by Squid? I > could see HTTP GET is forwarded to squid but it's not initiating a > connection with webserver Have you looked in access.log for that connection? Antony. -- B

Re: [squid-users] Logs to confirm packets dropped/not forwarded by squid

On Monday 06 Feb 2017 at 17:34, Anonymous cross wrote: > I don't find any entry in access.log for that connection. Okay, maybe you should explain a little more about what you mean by "I could see HTTP GET is forwarded to Squid" - does "forwarded" mean you're using intercept mode, and if it does

Re: [squid-users] Proxyfy spice protocol behind nat

On Sunday 19 February 2017 at 19:05:57, Oscar Segarra wrote: > Hi, > > In my environment I have deployed two KVM hypervisors. I'd like to deploy > in my DMZ a squid proxy host in order to hide hypervisor IPs and Ports from > the clients. Why? What's the problem with the clients knowing the true

Re: [squid-users] Data usage reported in log files

On Friday 10 March 2017 at 20:14:36, Yosi Greenfield wrote: > Hello all, > > I'm analyzing my squid logs with sarg, and I see that the number of > bytes reported as used by any particular user are often nowhere > near the bytes reported by netflow and tcpdump. Which is larger? > I'm trying to t

Re: [squid-users] Data usage reported in log files

the opposite result, so that's not what > >> I'm seeing. > >> > >> Any other ideas? > > > > Is there any traffic that is not directed to Squid? > > > > Do you use ssl-bump in bump mode ? > > If not, Squid has no idea how many bytes

Re: [squid-users] Data usage reported in log files

ke with like? My "not more than 1%" was for the additional traffic to/from the Squid server, other than HTTP/S. Antony. > 11.03.2017 3:19, Yuri Voinov пишет: > > 11.03.2017 2:57, Antony Stone пишет: > >> On Friday 10 March 2017 at 21:50:19, Yuri Voinov wrote: > &

Re: [squid-users] Data usage reported in log files

On Friday 10 March 2017 at 22:33:44, Yuri Voinov wrote: > We have not seen the network topology and the full configuration of > network devices - what are we arguing about and guessing about? Nobody is arguing, and we are guessing so that we might be helpful to Yosi who asked the question. Inci

Re: [squid-users] Squid Transparent/intercept Issues

On Monday 20 March 2017 at 16:26:40, christian brendan wrote: > Hello Everyone, > > Squid Cache: Version 3.5.20 > OS: CentOS 7 > > I have used squid for quite some times non transparently and it works, > problem kicks in when: http_port 3128 transparent is enabled. > Access denied error page sho

Re: [squid-users] Squid Transparent/intercept Issues

On Tuesday 21 March 2017 at 12:00:05, christian brendan wrote: > > Today's Topics: > >1. Re: Squid Transparent/intercept Issues (Antony Stone) > >2. Re: SMP and AUFS (Matus UHLAR - fantomas) > >3. Re: SMP and AUFS (Alex Rousskov) > >4. Re: sq

Re: [squid-users] squid-users Digest, Vol 31, Issue 61

On Tuesday 21 March 2017 at 17:29:36, christian brendan wrote: > Thanks a lot for the information. > I will try this and give feedback. > Best Regards Please note both of the following for when you post your feedback: 1. The request inserted into the email you replied to by the mailing list sys

Re: [squid-users] Squid Transparent/intercept Issues

On Wednesday 22 March 2017 at 11:59:14, christian brendan wrote: > One more thing, > Does this implies using two NICs (Network Interface Cards)? No, this is not necessary. > And the squid server has to be in-between clients and the internet? That is the simpler way of doing it (in which case yo

Re: [squid-users] Squid stopped working after cache.log and access.log rotation

On Wednesday 22 March 2017 at 16:17:32, Chee M Gui wrote: > Hi All > > We recently installed Squid 3.5.12-1ubuntu7.3 on Ubuntu 16.04.2 LTS. It > ran fine at first but stopped working after a while. telnet server 3128 > still works, i.e., opens a blank window, but Squid is just not accepting >

Re: [squid-users] Squid stopped working after cache.log and access.log rotation

On Thursday 23 March 2017 at 17:36:01, Chee M Gui wrote: > Thank you Jason. > > lsof /var/log | grep -i delete does not show anything > Likewise for lsof /var/log/squid | grep -i delete > > Thank you Antony > No, we have a lot of disk space. What does your squid logfile rotation script contai

<    1   2   3   4   5   6   >