> # grep 192.168.128.55 /var/log/squid/access.log
> 1066363709.463 341036 192.168.128.55 TCP_MISS/206 8464871 GET
http://ftp.mozilla.org/pub/mozilla.org/mozilla/releases/mozilla1.5/src/mozilla-source-1.5.tar.bz2
- DIRECT/130.207.108.134 application/x-bzip2
By the way, it is not a problem of too
Then use DNS.
So I do. But the problem is that I receive ips in log sometimes instead
of hostnames. Maybe it's a squid's bug - just tell and I will not bother
you any longer but will try to build the way around it.
--
Vladimir Dyakov
JSC "INTERSYST"
+7 (3422) 909116
[EMAIL PROTECTED]
On Fri, 17 Oct 2003, Vladimir Dyakov wrote:
> I've got dhcp server with dynamic zone which registers clients in
> domain, so /etc/hosts is inappropriate
Then use DNS.
Regards
Henrik
On Fri, 17 Oct 2003, Christian Purnomo wrote:
> BUT...Otherhost.mydomain.com contains static pages, with a few images.
> I am seeing in the squid access log file that those images do not get
> cached, I'm getting all TCP_MISS/304...
Clear your browser cache and things will look much better.
Th
acl lookup_client_domain src_domain .nowhere
http_access deny lookup_client_domain
Now I rewritten squid.conf to use domain names and it still writes ips
to log
---
# grep -v ^# /etc/squid/squid.conf | grep -v ^$
http_port 213.24.8.66:3128
icp_port 0
hierarchy_stoplist cgi-bin ?
acl QUERY
On Thu, 16 Oct 2003, Christopher Arnold wrote:
> to peer in such a way that if a request comes in to Accelerator-A it can
> ask Accelerator-B if it has it cached and if Accelerator-B doesn't have
> it cached then Accelerator-A will contact the origin servers directly
> and likewise if a request co
On Thu, 16 Oct 2003, Adam Aube wrote:
> I think that when you build Samba 3 it compiles its own winbind
> helpers. You then refer to those in your squid.conf instead of the
> helpers Squid builds.
Correct.
When using Samba-3 Squid should not be configured to compile any winbind
helpers (and thus
Christoph Haas wrote:
On Wed, Oct 15, 2003 at 09:19:35PM +0200, deny wrote:
when i configure my proxy with the server squid (127.0.0.1 port 3128 )
i have in my navigator
While trying to retrieve the URL: http://www.google.fr/
The following error was encountered:
* * Access Denied.*
in my
Hi ,
I think you are using cttproxy for Transparent Spoofing of Cache Server. To
pass client IP, right?
Doing this is done via setsockopt & it is priviledged operation requiring
CAP_NET_ADMIN capabilities to be present in process executing sesockopt.
U need kernel 2.4+ as it provides support for c
Place them in /etc/hosts
I've got dhcp server with dynamic zone which registers clients in
domain, so /etc/hosts is inappropriate
--
Vladimir Dyakov
JSC "INTERSYST"
+7 (3422) 909116
[EMAIL PROTECTED]
Hi,
Does anyone come up with the good read and write latency for squid
On Redhat 9.
I have 20G cache and 1G RAM and 250 SWAP.
Regards,
nooshin
Hi again!
Another thing, as we use Squid as a httpd-accelerator, we have a lot of
very small images, around 1 K in size, that we want Squid to store in
memory.
But as Squid split up the memory cache in 4 K-blocks, there is a LOT of
RAM that will be wasted...
Can you lower this setting somewhe
Hi all!
Have seen in the FAQ and also in the mailarchives that running out of
filedescriptors is not very uncommon. But I haven't seen anyone writing
about this issue in Mac OSX Server.
We run Squid as a http-accelerator and when our webserver is very busy,
Squid keeps saying:
WARNING! Your c
Hi All
I am having problems with running squid in httpd_accellerate mode.
I have the following settings in my squid.conf:
httpd_accel_port 80
httpd_accel_host otherhost.mydomain.com
squid server ip is 192.168.0.1
otherhost.mydomain.com ip is 192.168.0.2
my workstation ip is
wb_group, user names are always logged.
ed.
Henk-Jan (squid) wrote:
I want the following:
My users are all memeber of an nt enviroment.
Some users are allowed unlimited internet access.
First I want to make those users member of an NT group.
It would be nice though to be able to somehow log the
I want the following:
My users are all memeber of an nt enviroment.
Some users are allowed unlimited internet access.
First I want to make those users member of an NT group.
It would be nice though to be able to somehow log the user names somehow in
the log files.
Should I use LDAP or SMB authe
OS = (linux RH 8.0 on IBM hardware)
The company I work for is currently using squid as an accelerator for a
large cluster of
servers that do image processing. We have one squid server sitting in
front of the
imageserver cluster which caches the image urls and reduces the load on
the servers
enorm
I bet you also have some other "http_access" lines there. And those are
causing that error message. Look through them. You probably need
something like "acl lan src 10.0.0.0/8" and "http_access allow lan".
Christoph
i have this too
# Only allow cachemgr access from localhost
http_access allow m
On Thursday 16 October 2003 16:29, Adam Aube wrote:
> >>> Also, what's the state of play with Samba 3 & Squid 2.5 etc.?
> >>
> >> They play just fine - just make sure you use the Samba
> >> winbind helpers and not the Squid winbind helpers.
> >
> > Thanks. Is that done by replacing the winbindd_ns
>>> Also, what's the state of play with Samba 3 & Squid 2.5 etc.?
>> They play just fine - just make sure you use the Samba
>> winbind helpers and not the Squid winbind helpers.
> Thanks. Is that done by replacing the winbindd_nss.h files
> in various places in the squid source with one from the
On Thursday 16 October 2003 15:52, Adam Aube wrote:
> > Also, what's the state of play with Samba 3 & Squid 2.5 etc.?
>
> They play just fine - just make sure you use the Samba winbind helpers
> and not the Squid winbind helpers.
Thanks. Is that done by replacing the winbindd_nss.h files in vario
> Also, what's the state of play with Samba 3 & Squid 2.5 etc.?
They play just fine - just make sure you use the Samba winbind helpers
and not the Squid winbind helpers.
Adam
On Thursday 16 October 2003 15:28, Marc Elsen wrote:
> David wrote:
> > Hello all,
> >
> > Squid 2.4.6 on Debian 3.0
> > & from squid.conf...
> > authenticate_program /usr/lib/squid/smb_auth -W our_domain -U w.x.y.z
> >
> > Each time a user opens a browser they are challenged for their username
> >
On Thu, 16 Oct 2003, Jan Heyelmann wrote:
> it writes acces.log. But to even puzzle me more in the example posted
> below the character ö is written as %99 in access.log, the charts I
> found so far on the net assume that ö should be converted to %f6. Am I
> using a wrong chart here?
Maybe.. or
On Thu, 16 Oct 2003, Vladimir Dyakov wrote:
> Thanks, I'll try. I've got one more question. Is there any way to make
> squid store and then read fqdns of clients in/from its own fqdn cache?
Place them in /etc/hosts
Regards
Henrik
On Thu, 16 Oct 2003, Chris Mawer wrote:
> Yes, the system is behind an additional proxy. The parent cache has been
> setup, hence several pages are accessible.
And have you told Squid that it is inside a firewall, not just behind a
parent proxy? (see the Squid FAQ)
Regards
Henrik
David wrote:
>
> Hello all,
>
> Squid 2.4.6 on Debian 3.0
> & from squid.conf...
> authenticate_program /usr/lib/squid/smb_auth -W our_domain -U w.x.y.z
>
> Each time a user opens a browser they are challenged for their username and
> password as normal but then once the authentication has tak
Hello all,
Squid 2.4.6 on Debian 3.0
& from squid.conf...
authenticate_program /usr/lib/squid/smb_auth -W our_domain -U w.x.y.z
Each time a user opens a browser they are challenged for their username and
password as normal but then once the authentication has taken place they
receive a "This p
Hi all,
got what is probably a simple question:-
99% of the time I use an auto proxy config script to select whether to go
direct to a site or via my caches
The othe 1% of the time I configure an explicit web cache ( for testing
purposes) in IE6 and then specify an exclusion list for *.hull.ac.
Henrik,
Yes, the system is behind an additional proxy. The parent cache has been
setup, hence several pages are accessible.
It seems to only occur when user text is entered, for example hotmail.com
retains the last logged in username.
Chris Mawer
__
Hi,
I am reposting this because I am still stuck and did not find a
workaround so far. The basic question is how does squid handle
non-english characters in usernames it gets using ntlm when it passes
them on to external helpers and redirectors. From previous posts on this
list I already know that
Thanks!!!That worked well enough.
Regards
edmund
---
Edmund Turner
IT Executive
Information Technology Services
Monash University Malaysia
No. 2 Jalan Kolej, Bandar Sunway
There is no timeout. If the lookup has not finished before the request is
finished no domain will be logged.
You can make Squid wait for the lookup via http_access as done below.
Now I caught.
The meaning of srcdomain can be found in the squid.conf documentation in
squid.conf.default, the S
On Thu, 16 Oct 2003, Edmund Turner wrote:
> Hey!, Is it possible to combine acls?
Yes.
> I want all to limit downloads to 20MB for all users from the ADMIN group
> from 9am -5pm. After the specified WORKHOUR, I do not need to impose a
> limit on downloads. How do I accomplish this?
> This is the
On Thu, 16 Oct 2003, oleg-s wrote:
> hello,
> sometimes for some users i see in the cache.log following line:
> ---
> aclMatchProxyAuth: unauthorized ip address 'addr' for user 'user_name'
> ---
On Thu, 16 Oct 2003, Vladimir Dyakov wrote:
> Is there any way to increase timeout of dns lookups? There's nothing in
> faq and docs about that. Or maybe to decrease the timeout but set some
> requerying?
There is no timeout. If the lookup has not finished before the request is
finished no dom
It may still be too slow...
Is there any way to increase timeout of dns lookups? There's nothing in
faq and docs about that. Or maybe to decrease the timeout but set some
requerying?
What you can do to give the DNS some more slack is to use a dummy
src_domain acl in http_access.
Just befor
Hey!, Is it possible to combine acls?
I want all to limit downloads to 20MB for all users from the ADMIN group
from 9am -5pm. After the specified WORKHOUR, I do not need to impose a
limit on downloads. How do I accomplish this?
This is the current config :
acl WORKHOUR time 09:00-17:00
acl ADMIN
hello,
sometimes for some users i see in the cache.log following line:
---
aclMatchProxyAuth: unauthorized ip address 'addr' for user 'user_name'
-
On Thu, 16 Oct 2003, Chris Mawer wrote:
> The WinBox opens most sites fine, but as soon as any sorta user input is
> required, squid gives an error page "111 Connection Refused".
Are your Squid inside a proxy based firewall, requiring you to use
cache_peer to reach the Internet? If so then see
On Thu, 16 Oct 2003, Vladimir Dyakov wrote:
> I have set log_fqdn option to "on" and have now problem which I cannot
> solve. My log seems to work fine but sometimes records with unresolved
> ip's appear instead of domain names. I have bind server functioning on
> the localhost, so there should
On Thu, 16 Oct 2003, Robert Collins wrote:
> On Wed, 2003-10-08 at 22:57, Stefan Vogel wrote:
> > O.k, I've found the tool "purge" on
> > http://www.squid-cache.org/related-software.html
> >
> > And bingo. This also works for squid 3. Very nice
> > tool. Can someone tell me, why the original link
On Thu, 16 Oct 2003, Daniel Camacho wrote:
> I'm using Squid Cache: Version 2.5.STABLE1 and so far it's been doing
> great. However, I've had several complaints about file downloads being
> corrupted or incomplete while others say that the file gets fully
> downloaded but when they try to open
On Wed, 15 Oct 2003, Joe Gainey wrote:
> Can anyone tell me what the maximum cache size in a 64 bit addressable
> system like Sun UltraSparc III? If I have a Solaris system with 16Gb
> of addressable memory will squid utilize it?
In theory yes if Squid is compiled as a 64-bit application. How
On Wed, 15 Oct 2003, J.D. Bronson wrote:
> Is there a way to get squid to pass weatherbug requests straight out w/o
> trying to cache data in RAM or on DISK?
See the no_cache directive and/or the Squid FAQ on the same question.
Regards
Henrik
I have set log_fqdn option to "on" and have now problem which I cannot
solve. My log seems to work fine but sometimes records with unresolved
ip's appear instead of domain names. I have bind server functioning on
the localhost, so there should be minimum delay. I have even updated
squid to vers
46 matches
Mail list logo