Babar,
ftp data goes to port 21 and your gatway intercepting port 80 traffic so
make sure that your ftp traffic will by pass proxy...
--
Best Regs,
Masood Ahmad Shah
System Administrator
^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^
| * * * * * * * * * * * * * * * * * * * * * * * *
| F
well u r right ...while trying different scenarios (with and without proxy) i forgot
to remove the settings from the browser.
the interesting thing is if i remove the proxy from the browser i dont get any thing
in access.log and "cannot display page" is displayed in ie.
i will try using some othe
On Wednesday 03 September 2003 06.39, Brad Groshok wrote:
> Do all the pieces exist to run transparent squid on a solaris box.
> (Sparc or X86, guess it doesn't matter)
Yes, via ipfilter.
> Wondering if I can build up a Solaris system and handle transparent
> cacheing using wccp from a cisco (720
On Wednesday 03 September 2003 06.09, [EMAIL PROTECTED] wrote:
> I hope my deductions make sense,
It does. The only complications is how to find a good way of merging
the access logs from two or more proxies to build the request graphs.
It is not always trivial to identify which requests on a u
It didn't work for me. I have changed them to 94 and 95% and, yes, it seems
to work...
Thanks!
/Anders
> -Ursprungligt meddelande-
> Från: Fritz Mesedilla [mailto:[EMAIL PROTECTED]
> Skickat: den 3 september 2003 04:35
> Till: Ehsan Lesani; [EMAIL PROTECTED]
> Ämne: RE: [
On Wednesday 03 September 2003 01.16, Norman Zhang wrote:
> Sorry. Please excuse my ignorance. I added the following rules
> before my authorization rule, but I still can't get streaming work.
> Would you mind telling what I'm doing wrong?
>
> acl realplay browser RealAudio
I am not sure this is
On Wednesday 03 September 2003 00.37, Alvaro Figueroa wrote:
> There is a FAQ entry for this question which refers to a 'client'
> program but it I can't find it anywhere on my server. Can somebody
> tell me where can I get a copy of the program?
client has been renamed to squidclient.
it is shi
Do all the pieces exist to run transparent squid on a solaris box.
(Sparc or X86, guess it doesn't matter)
Wondering if I can build up a Solaris system and handle transparent
cacheing using wccp from a cisco (7206vxr in this case)
Would probably run solaris 9 on a sparc box. (if it can be done)
Hi to the Squid group,
First, thanks Henrik for your answers on cache log redundancies.
In regards to proxies storing relatively the same information in the access.log
files in HTTP request path, say:
forward request path:
alpha -> beta -> theta -> gamma (HIT)
return of HTTP object
alpha <- be
Squid does not support any WCCP v2 features, including multiple routers.
There is a mostly unsupported patch that works as a compatibility
layer between the v1 support in Squid and the slightly different
interface to v2. No one has wanted v2 support badly enough to sponsor
it or write it, so
I have set it to:
cache_swap_low 90
cache_swap_high 95
based on the default settings.
Will this do?
Thanks!
fritz
---
+ Basta Ikaw Lord
> -Original Message-
> From: Ehsan Lesani [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, September 03, 2003 7:21 AM
> To: Fritz Mesedilla; [EMAIL
- Original Message -
From: "Masood Ahmad Shah" <[EMAIL PROTECTED]>
To: "fooler" <[EMAIL PROTECTED]>; "RAHUL T. KARTHA" <[EMAIL PROTECTED]>;
<[EMAIL PROTECTED]>
Sent: Tuesday, September 02, 2003 7:29 PM
Subject: Re: [squid-users] tweeking squid for vsats
> I want to bring your notice that
Alvaro:
run the command 'find / -name squidclient -print'
With squid-2.5.STABLE3-20030602 on a Linux box it was in /usr/local/squid/bin
Note: the program name is squidclient not client (I'm not sure when it got changed).
Tim Bernhardson
Senior Technical Engineer
Certified Citrix Metaframe Admin
Thanks Tony for your prompt reply. I think I'll give your solution a
try. However, solution in the FAQ entry I referred to before is as
simple as 'client -m PURGE http://urltopurge' (FAQ 7.5 I think) I've
been unable to make it work though, despite I modified my squid.conf
file according to
Thanks Tony for your prompt reply. I think I'll give your solution a
try. However, solution in the FAQ entry I referred to before is as
simple as 'client -m PURGE http://urltopurge' (FAQ 7.5 I think) I've
been unable to make it work though, despite I modified my squid.conf
file according to
>> I have exhausted almost all google searches and tests. I still
>> can't get Real Audio to stream through squid with NTLM
>> authentication enable by default. Is there a way to force Squid to
>> pass Real Audio without authenticating against NTLM?
>
> Yes, by allowing requests from RealAudio befo
I did have a simple cgi script to do this, you will need to make a form to
pass it the URL as
http://localhost/cgi-bin/purger.cgi?url=http://website/url.htm
Change the ip/port no as required, also you may need to make changes to
squid.conf to give 'yourself' permissions to purge. This script was o
On Wednesday 03 September 2003 00.05, Norman Zhang wrote:
> Hi,
>
> I have exhausted almost all google searches and tests. I still
> can't get Real Audio to stream through squid with NTLM
> authentication enable by default. Is there a way to force Squid to
> pass Real Audio without authenticating a
On Tuesday 02 September 2003 23.27, elPunishar wrote:
> can i do full surf controlling of the users who are behind the
> proxy? is there an easy way to specify which urls they can visit in
> which timeframes, which content, and so forth ?
Yes. See the acl and http_access directives.
Regards
Henr
On Tuesday 02 September 2003 22.12, Andrew McKinney wrote:
> Anyone out there using squid as an alternative to Edgeserver,
> SunOne etc?
We build the eMARA reverse proxy server around Squid and some extras.
> I've configured squid to ntlm auth. It works great when
> proxing the intranet, switch
On Tuesday 02 September 2003 20.39, Guillermo Ettlin wrote:
> If i run ./squid_ldap_group in the command line?
>
> ./squid_ldap_group -b "dc=mydomain,dc=edu,dc=uy" -h ldapserver -D
> "cn=auth,cn=users,dc=mydomain,dc=edu,dc=uy" -w pass
> -f "(&(cn=%g)(member=%u))" -F (sAMAccountName=%s)
>
> What I w
There is a FAQ entry for this question which refers to a 'client'
program but it I can't find it anywhere on my server. Can somebody tell
me where can I get a copy of the program?
Thanks,
Alvaro
--
Alvaro Figueroa Cristiá
Administrador de Red
Corporación Santo Tomás
(562)
Hi,
I have exhausted almost all google searches and tests. I still can't get
Real Audio to stream through squid with NTLM authentication enable by
default. Is there a way to force Squid to pass Real Audio without
authenticating against NTLM?
Regards,
Norman
> I have done some googling on the lis
hello everybody,
i have a very general and simple question that i just need answered before i
dive into squid.
can i do full surf controlling of the users who are behind the proxy?
is there an easy way to specify which urls they can visit in which timeframes,
which content, and so forth ?
or is
On Wed, 2003-09-03 at 06:14, Norman Zhang wrote:
> I'm trying to connect to a webmin/usermin (1/2000) https website with
> IE. May I ask do I go around this?
Add a couple of rules before the ssl safe_ports deny:
acl webmin port 1 2
http_access allow CONNECT webmin
Cheers,
Rob
--
GPG
> > I'm trying to access an external web site through squid.
> > But the port is 1 and 2. However, Squid doesn't
> > seem to be able to pass that. I checked squid.conf do
> > have both these ports listed Safe_ports.
>
> > 1062531344.382 1 192.168.22.7 TCP_DENIED/403 1820
> > CONNECT si
Hey All,
Anyone out there using squid as an alternative to Edgeserver, SunOne
etc? I've configured squid to ntlm auth. It works great when proxing the
intranet, switch httpds etc. But whenever I point it at the inotes box,
the splash downloads, but I am prompted over and over for
authentication. T
Dear friend.
To prevent this problem you should use these tags :
cache_swap_low
cache_swap_hiegh
Best Regards.
Ehsan Lesani.
- Original Message -
From: "Fritz Mesedilla" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, September 02, 2003 11:01 AM
Subject: RE: [squid-users] squid
> I'm trying to access an external web site through squid.
> But the port is 1 and 2. However, Squid doesn't
> seem to be able to pass that. I checked squid.conf do
> have both these ports listed Safe_ports.
> 1062531344.382 1 192.168.22.7 TCP_DENIED/403 1820
> CONNECT site.com:1
Hi,
I'm trying to access an external web site through squid. But the port is
1 and 2. However, Squid doesn't seem to be able to pass that. I
checked squid.conf do have both these ports listed Safe_ports.
acl Safe_ports port 1025-65535 # unregistered ports
>From /var/log/access.log, I se
If i run ./squid_ldap_group in the command line?
./squid_ldap_group -b "dc=mydomain,dc=edu,dc=uy" -h ldapserver -D
"cn=auth,cn=users,dc=mydomain,dc=edu,dc=uy" -w pass
-f "(&(cn=%g)(member=%u))" -F (sAMAccountName=%s)
What I wating for?
Thanks for the reply!
Yeah you are right, I have some preliminary code written to make the
override check in the redirectStart subroutine of redirect.cc (squid-3).
Right now I am just at proof of concept code stage, but I check a
data/key pair database (author.db) to see if a particular client is
Adam,
It seems this is memory leak issue in Linux.
I do not have this issue with BSDI.
It is just happen on Linux box.
I will try your recommendation.
Does any one have the same issue on Redhat Linux 9.0?
Thanks,
Nooshin
-Original Message-
From: Adam Aube [mailto:[EMAIL PROTECTED]
Se
On Tuesday 02 September 2003 16.29, Richard Lyons wrote:
> On Tue, 2 Sep 2003, Liquid Crystal wrote:
> > Zero Sized Reply
> > Squid did not receive any data for this request.
> >
> > Any hints?
>
> http://www.squid-cache.org/Doc/FAQ/FAQ-11.html#ss11.51
>
> A patch was added to 2.5-STABLE3 around 11
On Tuesday 02 September 2003 13.36, babar haq wrote:
> browser:ftp://ftp.cybertrails.com/pub/redhat/redhat/ this is wat
> comes out in access.log
> 1062498026.415 240509 192.168.0.47 TCP_MISS/504 1477 GET
> ftp://ftp.cybertrails.com/pub/redhat/redhat/ - NONE/- text/html
Your Squid is not transpar
> The only active serives in use is squid.
> System has 1G RAM. 500MB of SWAP.
Squid seems to only be using about 398 MB of memory total. From the
output of free you provided, your operating system is using about 130
MB of RAM for buffers and 470 MB for caching.
That does not account for all the
> I have no other memory-eating processes in this machine,
> except the usual processes necessary for running squid...
> why its more important for kernel to keep the cache/buffer
> in-memory and swap squid out? can I alter this somehow?
I noticed this with my Squid box as well - the OS was using
> Try winbind for auth - it works also against an active directory,
> and no need to give username and password.
You mean "Try NTLM for auth"? Winbind is the name of a helper
program - there are winbind helpers for both basic and NTLM auth.
On Tue, 2 Sep 2003, Liquid Crystal wrote:
> Zero Sized Reply
> Squid did not receive any data for this request.
>
> Any hints?
http://www.squid-cache.org/Doc/FAQ/FAQ-11.html#ss11.51
A patch was added to 2.5-STABLE3 around 11th July that
fixed some instances of this error, if you have an older
v
I tried to access http://login.passport.net/uilogin.srf?id=2 and squid
said:
Zero Sized Reply
Squid did not receive any data for this request.
I tried to view the access.log but nothing suspicious!!.
Any hints?
On Thu, Aug 28, 2003 at 10:58:06PM +0200, Henrik Nordstrom wrote:
>
> > 2003/08/28 08:15:36| comm_accept: FD 11: (130) Software caused
> > connection abort 2003/08/28 08:15:36| httpAccept: FD 11: accept
> > failure: (130) Software caused connection abort 2003/08/28
> > 08:48:17| comm_accept: FD 11
At 09:17 AM 9/2/2003 +0200, you wrote:
On Monday 01 September 2003 22.10, Beth Lancaster wrote:
> I am trying to get squid_ldap_auth to work from the command line
> but am having no success.
>
> This works:
> ldapsearch -H ldap://directory.somewhere.edu -x -b
> ou=accounts,dc=vt,dc=edu -Z '(uupid=j
tis 2003-09-02 klockan 12.53 skrev Andrew McKinney:
> I've got quite confused with the authentication with accel mode.
> Do I need to edit the Makefile in src, to allow authentication in accel mode?
Edit the Makefile is one way. Editing src/acl.c is another. Search for
AUTH_ON_ACCELERATION in the
On Tue, Sep 02, 2003 at 07:33:30AM -0400, David Chaudhary wrote:
> Can anyone help. I am having problems accessing web pages with default.php
> at the end of the address, e.g. the news section on bbc.co.uk and
> firebox.com. The US connection works fine but the UK connection doesn't
> work. I ha
Hi list
I think I should be a bit more to the point I am using
squid-2.4.STABLE7-4 on Redhat 7.3 with ipchains
rgards
--- Begin Message ---
Title: Re: [squid-users] tweeking squid for vsats
If you are using VSAT service. then you will have to check your network
delay instead t
hmmm very strange you should make access.log and cache.log manully
..swap file squid will create automatically... simple is that..
--
Best Regs,
Masood Ahmad Shah
System Administrator
^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^
| * * * * * * * * * * * * * * * * * * * * * * * *
|
i have been trying to solve this problem for the past one month but i cant figure out
wats wrong
i am running squid in transpart mode on our gateway by intercepting port 80
some other required ports r masqueraded
the clients cannot visit ftp sites or dowload ftp files for example
if a client typ
Dear Friend.
You should not make access.log, cache.log & swap.log your self.
The squid will create them when it begins to work.
Best wishes.
Ehsan Lesani.
- Original Message -
From: "ads squid" <[EMAIL PROTECTED]>
To: "Ehsan Lesani" <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>
Sent: Monday, S
Hi
Can anyone help. I am having problems accessing web pages with default.php
at the end of the address, e.g. the news section on bbc.co.uk and
firebox.com. The US connection works fine but the UK connection doesn't
work. I have tried accessing these sites on a standalone machine (connected
to
I want to bring your notice that setting you are going to tell Mr Rahul are
by default set into Linux like show below..
1) be sure that the followings are enabled in your /etc/sysctl.conf:
net.ipv4.tcp_window_scaling=1
net.ipv4.tcp_timestamps=1
net.ipv4.tcp_sack=1
so no need to chang
If you are using VSAT service. then you will have to check your network
delay instead to do something with squid. I will suggest better to check
your packet delay on VSAT link like...
ping www.yahoo.com and check icmp packet delay.
--
Best Regs,
Masood Ahmad Shah
System Administrator
^ ^ ^ ^ ^
- Original Message -
From: "RAHUL T. KARTHA" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, September 02, 2003 6:00 PM
Subject: [squid-users] tweeking squid for vsats
> Hi list
>
> I hope some one might have done this before
>
> My setup is as bellow
>
> Internal net > sq
Hi list
I hope some one might have done this before
My setup is as bellow
Internal net > squid > vsat -> isp net --> isp vsat
> main backbone
I am using squid-2.4.STABLE7-4 on Redhat 7.3
The main problem is delay
Any suggestion is welcome
Regards
RAHU
That's great! I guess now I can limit its usage to only 100MB.
Thanks! That clarifies it!
fritz
---
+ Basta Ikaw Lord
> -Original Message-
> From: Masood Ahmad Shah [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, September 02, 2003 5:54 PM
> To: Fritz Mesedilla; [EMAIL PROTECTED]
> Subje
yes it means squid will use 100 MB for objects... not more
--
Best Regs,
Masood Ahmad Shah
System Administrator
^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^
| * * * * * * * * * * * * * * * * * * * * * * * *
| Fibre Net (Pvt) Ltd. Lahore, Pakistan
| Tel: +92-42-6677024
| Mobile: +92
This could sort of work for what i'm trying to do, but not quite.
See for each person who has access to use squid i have an acl with their
name and ip address e.g.
acl patrick src 10.3.2.4/32
acl kenny src 10.3.2.10/32
acl cate src 10.3.2.17/32
and then i grant each acl access using http_access
I don't have much on my test squid machine. I noticed it started to slow down after 3
days of usage and the drive was full. I was the only one using it as I was testing it.
Is there a way for me to lessen or limit the drive usage?
I saw this...
cache_dir ufs /var/squid/cache 100 16 256
Does t
> > 2003/09/01 14:56:54| /var/log/squid/swap.log.00: (13)
> > Permission denied
> > FATAL: storeUfsDirOpenSwapLog: Failed to open swap
> > log.
> > Aborted
Squid needs write permission to /var/log/squid/
You should not create any of the log files manually. Squid will do so
automatically given th
On Tuesday 02 September 2003 04.44, Chris Barnes wrote:
> This could sort of work for what i'm trying to do, but not quite.
>
> See for each person who has access to use squid i have an acl with
> their name and ip address e.g.
>
> acl patrick src 10.3.2.4/32
> acl kenny src 10.3.2.10/32
> acl cate
On Monday 01 September 2003 22.26, Fernando Maior wrote:
> I am using a number of files and other hacking in
> order to have those goals accomplished, because
> the Conectiva Linux 9 do not provide a Squid rpm
> with squid_ldap_group compiled into.
You could just compile squid_ldap_group separate
www.meteo.ft works for me (Squid 2.5 S3)
Mit freundlichem Gruß / regards
Werner Rost
GM-FIR - Netzwerk
ZF Boge Elastmetall GmbH
Friesdorfer Str. 175
53175 Bonn
Tel. +49 228 38 25 - 420
Fax +49 228 38 25 - 398
mailto:[EMAIL PROTECTED]
www.zf.com/boge-elastmetall
> -Ursprüngliche Nac
Hello everybody,
I have a problem with squid 2.5stable 3 (RH 8.0) , when i try to
access www.reseaux-telecoms.net, squid return ERR_ZERO_SIZE_OBJECT
?
It's the same think with www.meteo.fr
I remark that theses sites don't respond to icmp echo packet ??
Have you an idea ?
Thank.
On Monday 01 September 2003 22.12, Guillermo Ettlin wrote:
> My line say:
>
> -f "(&(cn=%g)(member=%u))" -F "(&(sAMAccountName=%s))"
Does squid_ldap_auth work? If so, please give the full options of both
squid_ldap_auth and squid_ldap_group.
Regards
Henrik
--
Donations welcome if you consider
On Monday 01 September 2003 22.10, Beth Lancaster wrote:
> I am trying to get squid_ldap_auth to work from the command line
> but am having no success.
>
> This works:
> ldapsearch -H ldap://directory.somewhere.edu -x -b
> ou=accounts,dc=vt,dc=edu -Z '(uupid=jdoe)'
As you are not using ldaps:// tr
On Monday 01 September 2003 22.19, Rafael Bossle wrote:
> Browser was not configured!
Then you are using a transparent proxy..
Don't have interception rules installed unless you wan to use them. If
you want that each user should have the proxy settings done then a
good tool instead of redirect
65 matches
Mail list logo
