http://cr.yp.to/djbdns/run-cache-bind-2.html
Indicates bind and a cache won't get along. I don't quite get
it. Can you
Could you please specify what you believe to make that indication on the
page you mention? A short glance revealed nothing to do with WWW caches. I
should think all
I set :
log_fqdn on
after
squid -k reconfigure
but it doesn't work :o
-Messaggio originale-
Da: Henrik Nordstrom [mailto:[EMAIL PROTECTED]]
Inviato:venerdi 14 febbraio 2003 1.43
A: FRANCO Battista (Baky)
Cc: [EMAIL PROTECTED]
Oggetto:Re: [squid-users]
It would seem that option A would be the best one. Just set the parent
proxy to only accept requests from the child proxies. This would also
spread the load a bit as well. If logging is an issue NFS is a possible
solution.
I am not very familiar with NFS, but is it possible for multiple proxies
And is the name of your client stations registered on their IP addresses
in your DNS servers?
(if not, how do you expect Squid to be able to know the computer name..)
Regards
Henrik
FRANCO Battista (Baky) wrote:
I set :
log_fqdn on
after
squid -k reconfigure
but it doesn't work :o
You need an OUTPUT DNAT rule as well (and NAT of local connections
enabled in your kernel config), or to use a redirector helper rewriting
the IP address to the real destination..
Regards
Henrik
Siew Wing Loon wrote:
Hi,
I have my squid running fine but having problem
assessing to IP
Yes it's because from my Server Linux i can ping clientcomputername
-Messaggio originale-
Da: Henrik Nordstrom [mailto:[EMAIL PROTECTED]]
Inviato:venerdi 14 febbraio 2003 11.06
A: FRANCO Battista (Baky)
Cc: [EMAIL PROTECTED]
Oggetto:Re: [squid-users] R:
Dear ALL,
I have plan to build new proxy using squid2.5 with Redhat 7.2 (kernel
2.4.7-10). There are 3,000 user to access the new box. I ‘am not sure about file
descriptor setting on squid2.5.
(1) If I use squid 2.5 I still setting file descriptor or not ?
(2) If
Niti Lohwithee wrote:
Dear ALL,
I have plan to build new proxy using squid2.5 with Redhat 7.2
(kernel 2.4.7-10). There are 3,000 user to access the new box. I ‘am not sure about
file descriptor setting on squid2.5.
(1) If I use squid 2.5 I still setting file descriptor
Henrik Nordstrom wrote:
Emilio Casbas wrote:
i can use the https_port directive successfully, i.e. i use squid as a
ssl gateway:
client -- (https) --- Squid -- (http) -- origin server
Accelerator
is it possible to use encrypted
Once squid is configure by default for default logging options,
webalizer can access squid logs normally.
Just read the webalizer conf for more config options.
Thank you very much.
Best regards
Edward Millington
BSc, Network+, I-Net+, CIW Associate
Systems Administrator, Sr
Cariaccess
Hi
How can I configure squid to allow webalizer to
analyse the access.log file? Does they both work
together?
Rgds,
Siew
Yes. You just have to configure squid generate
its logs in NCSA style.
--
[]'s
Lucas Brasilino
[EMAIL PROTECTED]
http://www.recife.pe.gov.br
Emprel - Empresa
Hi Users
My local network ip address is as follows(however fictitious)
156.160.1.1 to 156.160.45.255 . I have configured user authentication
too. Now What I am planning is to allow a user to browse the
internet from a particular range of computers only. Can I achieve this
arrangement
hi,
i am not sure if squid is required to not cache sites without suitable
headers (lastmod, expires,...).
does anybody know?
it seems as if for such objects the refresh-patterns are NOT used in
squid.conf.
is this right?
thx in advance,
alp
- Original Message -
From: SSCR Internet Admin
For Squid-2.5 and later, running ulimit -HSn both before you run
configure AND before you start Squid should be sufficient.
See also http://devel.squid-cache.org/hno/linux-lfd.html
Regards
Henrik
Niti Lohwithee wrote:
Dear ALL,
I have plan to build new proxy using
Ampugnani, Fernando wrote:
Marc:
I fix it adding port 21 to SSL port. Isn´t recommended, but is the
only option that I take.
What do you think about this?
Could be dangerous, in security terms.
Remember the threads on port 25 open's for CONNECT and SPAM
relaying abuse of
You may be able to do this, but this really has nothing to do with squid
finding the name. You need REVERSE DNS. This is set up totally independent
of normal DNS. Reverse DNS allows you to map IP addresses back to names.
If your computers are on a private network, you can set this up for
Yes. See the Squid FAQ entry on configuring Squid to use winbind for
authentication.
If using the ntlm authentication sheme then passwords are somewhat
encrypted on the wire.
Regards
Henrik
Cildemac Marques wrote:
Hi Henrik!
I was browsing Squid-list when I saw you msg about
Jason M. Kusar wrote:
You may be able to do this, but this really has nothing to do with squid
finding the name. You need REVERSE DNS. This is set up totally independent
of normal DNS. Reverse DNS allows you to map IP addresses back to names.
If your computers are on a private network,
thx henrik,
is it possible to change squid's behaviour to use a refresh-pattern for such
sites, too? (without changing the source code) I mean sites without any
validation headers.
I know this may cause a lot problems, but it may also be useful sometimes.
- Original Message -
From:
As I said in the previous message: refresh_pattern IS USED for replies
with no validation headers.
Only if the content is EXPLICITLY MARKED AS NOT CACHEABLE (or NOT
CACHEABLE) by the server is refresh_pattern not used by Squid.
Regards
Henrik
alp wrote:
thx henrik,
is it possible to
Hello list,
I have successfully configured my squid and samba to use wbinfo_group.pl to
let only members of the AD group WWW_Benutzer access the Internet.
Therefore i used samba 2.2.7 rpms from gd.tuwien.ac.at and the tarball of
squid-2.5.-STABLE1 from squid-cache.org.
Now: Does anyone know, if
Am Freitag, 14. Februar 2003 16:16 schrieb Markus Feilner:
Hello list,
I have successfully configured my squid and samba to use wbinfo_group.pl to
let only members of the AD group WWW_Benutzer access the Internet.
Therefore i used samba 2.2.7 rpms from gd.tuwien.ac.at and the tarball of
Which is default
-Original Message-
From: Lucas Brasilino [EMAIL PROTECTED]
To: Siew Wing Loon [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Date: Fri, 14 Feb 2003 09:02:59 -0300
Subject: Re: [squid-users] squid and webalizer
Hi
How can I configure squid to allow webalizer to
analyse
Hugo Monteiro wrote:
2) Another thing i notice, it's that in some sites trough HTTPS with authentication
(Authentication with HTML Forms) the session immediatly expires once i've login.
I suppose this is because of the round-robin parent caches, because different
objects are fetch by
Not in any Squid I have seen... default is Squid native log format which
is inherently different from the NCSA style (or common) log format.
Regards
Henrik
Edward D. Millington wrote:
Which is default
-Original Message-
From: Lucas Brasilino [EMAIL PROTECTED]
To: Siew Wing Loon
Two questions:
1. What is your refresh_pattern settings?
2. What is the full headers returend by your server?
Just tested this with Squid-2.5 and a reply with only a Date header and
some content is cached if your refresh_pattern says it should be.
Note: The default refresh_pattern settings
How can you get squid to ignore sites that have the 'Cache-Control: no-cache'
option set in the initial HTTP packets so that they'll cache anyway??
--
Regards,
Richard Saint Clair,
Co-Founder Technical Manager
Internet Users Society Niue
Chairman, Pacific Island Chapter ISOC
Just as I said.
Leave sauid option
#Default:
# emulate_httpd_log off
and configure webalizer to use squid type format.
Set #LogType apache to:
LogType squid
Read the webalizer config for help.
- Original Message -
From: Jason M. Kusar [EMAIL PROTECTED]
To: Edward D. Millington
Hello,
I'm looking for a way to have a squid http proxy completely cache a web
page like cnn.com and other major pages and be able to serve that cached
page to clients even when the proxy's internet connection is no longer
available (interface down, default gateway down, or some other
You can create an acl for it... Like
acl privilege_ip src /etc/squid/ip_add
contents of ip_add will be
156.160.1.1/32
156.160.45.5/32
and
so
on
then
http_access allow privilege_ip
http_access deny all
Nats
-Original Message-
From: Mr. Singh [mailto:[EMAIL PROTECTED]]
Sent: Friday,
You can't without modifying the source.
Regards
Henrik
Richard StClair wrote:
How can you get squid to ignore sites that have the 'Cache-Control: no-cache'
option set in the initial HTTP packets so that they'll cache anyway??
--
Regards,
Richard Saint Clair,
Co-Founder Technical
Hmm thats sounds interesting, Henrik can you provide us a step by step code
on this? This is for non-programmer like me...
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of
Henrik Nordstrom
Sent: Friday, February 14, 2003 5:27 PM
To: [EMAIL PROTECTED]
Cc:
Hi,
I am trying to use jesred as redirection program with squid. I have
installed jesred and given appropriate entries in squid.conf. But, for
some reason jesred doesn't seem to work. It looks like requests are not
getting redirected to jesred at all. Even logs are not getting generated
which
Hie
i tried the suggestions
my config is
authenticate_ip_ttl 1 hour
authenticate_ip_ttl_is_strict on
Howvere i have observed that the user name and password can be reused on some
other client machine within the authenticate_ip_ttl time period ??
have i missed something here?
pls do get
Rick you are my hero!
is there any way to find out what variables in the expressionslist is
the culprit?
thanks for the tips. The dual log is awesome.
--jeff
On Thursday, February 13, 2003, at 05:11 PM, Rick Matthews wrote:
Jeff Donovan wrote:
i have a transparent proxy running squid 2.5
greetings
I'm looking for a good expressions list. Something that only targets
porn sites. I had been using the default exp list that comes with the
blacklists, but it seems to block out many sites that are not adult
related.
I'm pretty much REGEX illiterate.
--jeff
Building a good regex list which blocks only porn is a almost impossible
task, if you also want it to block porn..
In almost all cases you will need a whitelist when using regex patterns
for blocking to exclude things which are not wanted to be blocked but
which resembles too closely a name which
hi henrik,
1) refresh_pattern . 0 20% 4320
if i understand your note correctly, this is not correct for php-sites???
but it should, since the dot finds any object, doesn't it?
nevertheless, i also tried
refresh_pattern \.php 0 20% 4320
with the same effect (see 2)
2)
if i do the request for
38 matches
Mail list logo