ok, I repeated the step carefully
cd /usr/local/squid-3.0-PRE3
./configure --enable-auth="ntlm,basic" \
--enable-external-acl-helpers="winbind_group,wbinfo_group" \
--enable-basic-auth-helpers="winbind" \
--enable-ntlm-auth-helpers="winbind" \
--pr
Hello Adam and all,
I am muthukumar working in epoll development on Squid.I am working in IA64
platfrom.Then I have tested the squid with epoll for 300 req/sec.But after
that it is consuming more than 1.9 GB out of 2.0 GB.As Adam's advice, I
have changed the swap memory from 1945.634 to 256.000.
Hi,
I would like to prevent users from downloading very
large files from internet ONLY,but allow unlimited
download size from our local web server. I've
construct the ACL as bellow, but it seem it did not
working.
acl weblocal dst 192.168.1.0/255.255.255.0
acl subnetA src 192.168.2.0/255.255.255.
Hi all,
I haved blocked audio and vedio sites by having a file
with all sorts of extensions like (\.rm , \.ram) etc.
Now the problem is one my user has her yahoo login as xxx.rm
and because of this she is unable to login and stopped by proxy.
Now i tried giving yahoo.com in "No proxy for" setting
if you are using Linux then better to do it via ipchains or iptables.
--
Best Regs,
Masood Ahmad Shah
System Administrator
^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^
| * * * * * * * * * * * * * * * * * * * * * * * *
| Fibre Net (Pvt) Ltd. Lahore, Pakistan
| Tel: +92-42-6677024
|
Barbar,
Squid is only for http. I mean to say port 80 traffic. if you want ftp proxy
with transparent mode support. I will suggest use frox ftp transparent proxy
really very good.
--
Best Regs,
Masood Ahmad Shah
System Administrator
^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^ ^
| * * * *
You should check on privoxy to work with squid.. or get a browser which can
disable pop-ups(netscape 7.1)
-Original Message-
From: Alvaro Gordon-Escobar [mailto:[EMAIL PROTECTED]
Sent: Wednesday, September 03, 2003 1:28 PM
To: squid-users
Subject: [squid-users] Pop-ups window blocking with
Hi,
I'm trying to install the X-Forwarded-For patch described here:
http://devel.squid-cache.org/follow_xff/
I want to use the Squid-2.5 version, but can the actual
squid source that it applies to.. Can anyone provide me with
a link that this patch will work for?
The squid-2.4 works really well b
> It does. The only complications is how to find a good way of merging
> the access logs from two or more proxies to build the request graphs.
> It is not always trivial to identify which requests on a upstream
> proxy belongs to the downstream request, but by keeping the time in
> synch (i.e. NTP)
Hi, $NAME...
On Tue, Sep 02, 2003 at 11:27:41PM +0200, elPunishar wrote:
> can i do full surf controlling of the users who are behind the proxy?
> is there an easy way to specify which urls they can visit in which
> timeframes, which content, and so forth ?
Yes and no. You can control the URLs, t
On Wed, Sep 03, 2003 at 01:08:45AM -0700, Ahmad Khan wrote:
> i am expiriencing fake requests from many clients ,
> which is towards random ip addresses which dont host
> any web site or dont even listen on port 80 , do we
> have any solution in squid ??
IMHO this is not a Squid business. Run a f
I'm trying to set up squid to do proxy redirects for hosts that are
positioned behind the squid host. My current configuration is as
follows.
Squid Proxy: listens on port 80.
Accelerator Host 1.1.1.212 Port 8080
Accelerator Host 1.1.1.211 Port 3000
The FQDN on the outside of the proxy for the in
I'm trying to set up squid to do proxy redirects for hosts that are
positioned behind the squid host. My current configuration is as
follows.
Squid Proxy: listens on port 80.
Accelerator Host 1.1.1.212 Port 8080
Accelerator Host 1.1.1.211 Port 3000
The FQDN on the outside of the proxy for the in
On Wednesday 03 September 2003 22.54, cadu wrote:
> Hi, I'm migrating from Squid2.4 to Squid2.5.
>
> Will I be able to continue using my smb_auth?
Yes.
But you should make sure to use the smb_auth from Squid-2.5 and not an
older copy from Squid-2.4 as there has been subtle changes in the
commun
Hi, I'm migrating from Squid2.4 to Squid2.5.
Will I be able to continue using my smb_auth?
authenticate_program /usr/lib/squid/smb_auth -W DOMAIN -S /proxyauth
It's important do keep the auth prompt to users!
Thanx
On Wed, Sep 03, 2003 at 04:28:23PM -0400, Alvaro Gordon-Escobar wrote:
> Is it possible to block pop ups with squid?
Not very nicely at least. The window will open though but then only the
Squid error page will be displayed. I would recommend using a content
filter like privoxy in a chain with Squ
Hey, you mega-phreakin' $NAME...
On Wed, Sep 03, 2003 at 08:36:22PM +0300, [EMAIL PROTECTED] wrote:
> I thought all was ok from this line in ma acl
> acl all src 0.0.0.0/0.0.0.0
> http_access deny all
> netstart -n | more shows me parasite ips
> tcp0 969 xx.xx.xx.xx:38554 yy.yy.yy.yy:80
Jacques Beaudoin wrote:
I'm receiving this message from squid "(105) no buffer space available"
Any idea where to look
Thanks
Jacques,Montreal
That squid is running on RedHat 7.x, right? If so, I had the same
problem and the solution was to tweak three kernel parameters:
echo "256" >/proc/sys/n
On Wednesday 03 September 2003 21.59, Chuck Dutrow wrote:
> Do I have to install it differently then say on a Red Hat 9 install
> on a i386 server?
Same.
Regards
Henrik
Is it possible to block pop ups with squid?
I have a list of porn websites that I block, but when a user hits one of
them, the site gets blocked, but the website was able to send data to
squid to cause the client machine to open pop-ups. I don't understand
why I get pop ups from those places when s
I'm receiving this message from squid "(105) no buffer space available"
Any idea where to look
Thanks
Jacques,Montreal
On Wed, Sep 03, 2003 at 12:49:32PM -0300, Guillermo Ettlin wrote:
> I put this acl for external ldap group:
>
> acl users proxy_auth REQUIRED
> acl grupo external ldap_group weberos
> http_access allow grupo
>
> But MSN dont work?
What does MSN have to do with LDAP authentication? Please elabora
On Wednesday 03 September 2003 21.15, Chuck Dutrow wrote:
> Does anyone know if I can use squid on a Sun SparcStaion 10 with
> Red Hat for Sparc version 6.2?
Yes. Squid will run fine on such server, or as fine as the hardware
allows.
Note: Squid runs pretty much on anything, even including Windo
On Wednesday 03 September 2003 19.06, fdfhf gjgjj wrote:
> First, i have a simple question: It is possible with ldap_group to
> authentify users from differents UO who belong to the same group.
Yes, as long as the OUs are in the same directory, and there is
something unique identifying users (wh
any of them really just build it...
longer term I'd recomend switching distro's to something that still
supports the sparc architecture assuming you plan on continuing to use
that machine such as debian...
On Wed, 3 Sep 2003, Chuck Dutrow wrote:
> Does anyone know if I can use squid on a Sun S
On Wednesday 03 September 2003 19.36, [EMAIL PROTECTED] wrote:
> I thought all was ok from this line in ma acl
> acl all src 0.0.0.0/0.0.0.0
> http_access deny all
What http_access allow lines do you have?
Regards
Henrik
--
Donations welcome if you consider my Free Squid support helpful.
https:
Does anyone know if I can use squid on a Sun SparcStaion 10 with Red Hat for
Sparc version 6.2?
Which version?info?
Thanks
Chuck
Hello,
I would like to authentify squid internet users with Active Directory and
Ldap. I have a squid configured with ldap_auth and ldap_group.
First, i have a simple question: It is possible with ldap_group to
authentify users from differents UO who belong to the same group.
(i'm using squid
I thought all was ok from this line in ma acl
acl all src 0.0.0.0/0.0.0.0
http_access deny all
netstart -n | more shows me parasite ips
tcp0 969 xx.xx.xx.xx:38554 yy.yy.yy.yy:80 ESTABLISHED xx= my squid box
yy= parasite box do you think this line is the culprit
acl Safe_ports 80 21 443 5
Hi,
> I am not sure this is the User-Agent string used by RealAudio. Use
> log_mime_hdrs to find out.
I found out the user agent for Real Player is RealMedia. Now I have
acl realplay browser RealMedia
http_access allow realplay
I can now get RealAudio streaming. Thank you very much for your hel
On Wednesday 03 September 2003 17.51, Henrik Nordstrom wrote:
> On Wednesday 03 September 2003 17.13, Jeff Donovan wrote:
> > greetings
> > does anyone know a grep statement that i could use to tell the
> > differences between two Blacklists?
>
> comp of sorted lists gives a good view..
I meant cm
On Wednesday 03 September 2003 17.13, Jeff Donovan wrote:
> greetings
> does anyone know a grep statement that i could use to tell the
> differences between two Blacklists?
comp of sorted lists gives a good view..
> I want to update my lists but only append new data?
You also may need to care fo
I put this acl for external ldap group:
acl users proxy_auth REQUIRED
acl grupo external ldap_group weberos
http_access allow grupo
But MSN dont work?
Any idea?
> does anyone know a grep statement that i could use to tell
> the differences between two Blacklists?
You could try running the lists through sort, then use diff.
Adam
> -Original Message-
> From: Jeff Donovan [mailto:[EMAIL PROTECTED]
> does anyone know a grep statement that i could use to tell the
> differences between two Blacklists?
> I want to update my lists but only append new data?
Could you use 'diff'?
greetings
does anyone know a grep statement that i could use to tell the
differences between two Blacklists?
I want to update my lists but only append new data?
url 's, tips, hints , flames welcome
tnx
-j
Jeff Donovan
BASD Network Operations
AIM xT donovan
(610)807-5571 x4
On Wednesday 03 September 2003 15.47, [EMAIL PROTECTED] wrote:
> Robert, Henrik: Should I create an entry in bugzilla?
Please try to answer the questions asked by Robert first [see below].
configure.log shows a trace of all the tests configure performs, and
many of these tests are supposed to f
On Wednesday 03 September 2003 15.58, TSIOLAS KOSTAS wrote:
> On this box only serious things running are squid and frox (rarely
> used).
Have you positively verified that there is absolutely no cron jobs
such as slocate updatedb which may start and bog down the server?
> I use one 8Gb cache dir
On this box only serious things running are squid and frox (rarely used).
I use one 8Gb cache dir and i have about 450 users accessing this server.
>From cachemgr i see that average requests per minute are about 420
Should i split this cache dir to 2 or more will it make any difference.
At the old
Hi all,
I try to install Squid 3.0 PRE3 on a Compaq ALPHA XP1000 / TRU64 5.1B
Patchkit 5.
Configure shows errors below. Hence "make all" does not work: "Make: Don't
know how to make all. Stop."
Robert, Henrik: Should I create an entry in bugzilla?
--
On Wednesday 03 September 2003 15.31, babar haq wrote:
> i am running squid 2.5 stable 3.
> i want a specific url to be serviced by a local windows iis
> webserver??? ie i want to redirect the url to a specific machine on
> our lan?? is there any such option in squid??
Yes. The easiest way is to u
On Wednesday 03 September 2003 12.45, babar haq wrote:
> i was thinking of that as well
> but how come linux browsers can reach the ftp sites if they use
> proxy settings and windows M$IE cant thanx for all the help
That I do not know. Usually it is the other way around. Maybe there is
a networki
i am running squid 2.5 stable 3.
i want a specific url to be serviced by a local windows iis webserver??? ie i want to
redirect the url to a specific machine on our lan??
is there any such option in squid??
i hope my question is clear
Regards,
Babar
--
___
On Wed, 3 Sep 2003, Masood Ahmad Shah wrote:
> Babar,
>
> ftp data goes to port 21 and your gatway intercepting port 80 traffic so
> make sure that your ftp traffic will by pass proxy...
FTP's supervisory channel is port 21. FTP's data channel is port 20 unless
you are using passive mode.
Mert
tis 2003-09-02 klockan 15.17 skrev Beth Lancaster:
>
> This may explain why it is not working. The LDAP server I need to
> communicate is running LDAP version 3 with TLS. I have tried ldap:// and
> ldaps:// without success.
ldaps:// is LDAPv2 over SSL which works completely different than LD
ons 2003-09-03 klockan 09.33 skrev Robert Collins:
> One could use external ACL tags to tag requests that don't have ID's,
> and assign them an id specific to the first cache that recieves it.
How is the tag forwarded to the next cache?
--
Donations welcome if you consider my Free Squid support
Ahmad,
this traffic is coming from worm effected machine.. I will suggest better to
put firewall like cisco router and filter your traffic on url reg parse
basis if you can not do that..
then simple blcok these URLs via squid access list... :)
--
Best Regs,
Masood Ahmad Shah
System Administrato
i am expiriencing fake requests from many clients ,
which is towards random ip addresses which dont host
any web site or dont even listen on port 80 , do we
have any solution in squid ??
regards
eak
__
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web si
i am expiriencing fake requests from many clients ,
which is towards random ip addresses which dont host
any web site or dont even listen on port 80 , do we
have any solution in squid ??
regards
eak
__
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web si
On Wed, 2003-09-03 at 15:29, Henrik Nordstrom wrote:
> On Wednesday 03 September 2003 06.09, [EMAIL PROTECTED] wrote:
>
> > I hope my deductions make sense,
>
> It does. The only complications is how to find a good way of merging
> the access logs from two or more proxies to build the request gr
Works for me. I am asked for logon data. Squid 2.5 Stable 3.
Mit freundlichem Gruß / regards
Werner Rost
GM-FIR - Netzwerk
ZF Boge Elastmetall GmbH
Friesdorfer Str. 175
53175 Bonn
Tel. +49 228 38 25 - 420
Fax +49 228 38 25 - 398
mailto:[EMAIL PROTECTED]
www.zf.com/boge-elastmetall
> -
well i have tried on 2 more browsers
konguere and mozilla on rh 9
if i dont set the broser to use the proxy nothing comes up in access.log
and if i set the browser to use the proxy everything works fine (unlike MSIE)
any conclusions?
Regards
Babar
- Original Message -
From: Henri
52 matches
Mail list logo