On Sun, 22 Feb 2004, Eric Kahklen wrote:
> Thanks. Do you know when Squid 3.0 will be release as a stable version?
When we are happy with it. Hopefully before the summer but no promise.
The original plan was to have it released long ago, but as always there is
delays.
> I guess I'd be more w
On Mon, 23 Feb 2004, Bobby Gochuico wrote:
> I just upgrade it to 512 RAM ( 512 / 2 for cache_mem = 200 ) right ?
>
> Setting now is at cache_mem 200 MB
> cache_dir ufs var/log/spool/squid 8500 16 256
This will require 200 (cache_mem) + 85 (cache_dir) + 20 (other) = 300 MB
for Squid. With the r
On Mon, 23 Feb 2004 [EMAIL PROTECTED] wrote:
> HTTP 401.3 - Access denied by ACL on resource
> Internet Information Services
This is your IIS server rejecting the request, not Squid.
> This looks like it's something on the IIS server that is restricting me
> from accessing it, but like I said ab
>
> I'm able to get the squid-graph program to run and I have an apache web server
> running but I'm not sure howto enable squid-graph to run and monitor my proxy
> traffic continuously and report this to an apache web page. I want to get upto the
> minute statistics on the status of my prox
Hi!
Thank you for reply. I see only what you said. CONNECT servername.domain.d:443
At the weekend i was going in me :-) and now its clear why squid can't block
https connections.
Thanks to all who answered me.
mfg
SP
On Mon, 23 Feb 2004, Bobby Gochuico wrote:
> Right now after an hour its now 264MB down to 171 MB.
No, it is not.
> Processes: 32 sleeping, 1 running, 0 zombie, 0 stopped
> CPU states: 1.9% user, 1.7% system, 0.0% nice, 96.2% idle
> Mem: 517220K av, 345956K used, 171264K free, 26932K s
On Mon, 23 Feb 2004, Deepa D wrote:
> read(0,
> "h\312)\10\334\261\22Bs.f411.mail.yahoo.com/li"...,
> 4096) = 87
>
>From the above, I notice that squid is writing a
> malformed url which is in turn being read by the
> redirector thread.
Indeed.
Please file a bug report on this http://www.sq
On Mon, 23 Feb 2004 [EMAIL PROTECTED] wrote:
> Thank you for reply. I see only what you said. CONNECT servername.domain.d:443
> At the weekend i was going in me :-) and now its clear why squid can't block
> https connections.
It can block https connections on the destination domain/server level,
On Mon, 23 Feb 2004, Tommy wrote:
> I wannt squid to change remote proxys in every 60 sek.
You could use the round-robin option to have it change proxies on each
request.
Regards
Henrik
> connect to 4 remote proxy servers.
>
> I have enter this:
> ---[squid.conf]---
> cache_peer w3cache.tpnet.pl parent 8080 8082 no-query default
> cache_peer w3cache.icm.edu.pl parent 8080 8082 no-query default
> ---[Cut]---
> but this is not working.
...
cache_peer w3cache.icm.edu.pl parent 8080
Hi all,
I'm using squid 2.4.STABLE7
In my squid.conf i have
acl academie dstdom_regex ac-*.fr
always_direct allow academie
.
if i put "acl academie dstdom_regex ac-" it's works, but it is'nt restrictive enough.
i just want this acl match with ac-rouen.fr ac-sddssdf.fr ac-wxcxxwfd.fr .
>
> Ok. This will cause problems with MTU discovery in both directions, but
> mainly in Squid->client direction.
>
> If you are today using conntrack on this Linux router then I would
> strongly recommend the use of CONNMARK to route HTTP sessions rather than
> packets.. doing so will allow M
On Mon, 23 Feb 2004, Andriy Korud wrote:
> Squid is behind the gateway, from the upstream provider path.
Let my put the question differently:
Is Squid on the same side of the gateway as your clients, or on another
interface from the gateway?
Regards
Henrik
On Mon, 23 Feb 2004, Franck Gille' wrote:
> if i put "acl academie dstdom_regex ac-" it's works, but it is'nt restrictive
> enough.
> i just want this acl match with ac-rouen.fr ac-sddssdf.fr ac-wxcxxwfd.fr .
The regex for this becomes (^|\.)ac-[^.]*\.fr$
this will match all domains ac
Hello all!
Is there any way to use SSH by passing through squid proxy?
Can squid in some way handle such kind of connections (don't know if
it's called "tunneling" or whatever).
Thank you
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informat
> Hello all!
>
> Is there any way to use SSH by passing through squid proxy?
> Can squid in some way handle such kind of connections (don't know if
> it's called "tunneling" or whatever).
>
> Thank you
Yes, I use such a setup for offering ssh to end users on UNIX.
It's a perl script that
Damm Why this bounced.
I'm forwarding again
- Original Message -
From: Milind
To: [EMAIL PROTECTED]
Sent: Thursday, February 19, 2004 16:13
Subject: Please help
I had squid running on default port(3128), If I configure the browser for
3128 port then it works fine but Whenever
Yes, I use such a setup for offering ssh to end users on UNIX.
It's a perl script that make use of squid's CONNECT
capabilities (method).
You have to add port 22 then to your allowed SSL port's acl.
I think it only works for OpenSSH versions , which allow
specifying the tunneling perl
>
> > Yes, I use such a setup for offering ssh to end users on UNIX.
> > It's a perl script that make use of squid's CONNECT
> > capabilities (method).
> > You have to add port 22 then to your allowed SSL port's acl.
> > I think it only works for OpenSSH versions , which allow
> >
On Sun, 22 Feb 2004, Toan NQ wrote:
> I'm using squid for users-authentication by
> username/password. Can I using certificate for
> users-authentication, does squid have support this?
This is supported in Squid-3.0 for accelerator type setups using the
https_port directive and the certificate
>
> > I'm using squid for users-authentication by
> > username/password. Can I using certificate for
> > users-authentication, does squid have support this?
>
> This is supported in Squid-3.0 for accelerator type setups using the
> https_port directive and the certificate related acls.
>
> Ac
On Mon, 23 Feb 2004, Muthukumar wrote:
> Henrick,
>
> SSL connections proxy is supported at Netscape 7.1 browser.
Please note that I am talking about SSL encrypted connections to the
proxy, not proxying of SSL connections. The two are quite different
things.
Proxying of SSL connections is
Hi All,
Can any you tell me how I can get accessed date & time by log file...
a part of access.log is pasted here...
1077566391.786670 192.168.1.195 TCP_MISS/304 391 GET http://c.msn.com/c.gif? -
DIRECT/65.54.140.158 -
1077566393.589 10754 192.168.1.76 TCP_MISS/200 867 GET
http://us.i1.yi
>
> Can any you tell me how I can get accessed date & time by log file...
>
#! /usr/bin/perl -p
s/^\d+\.\d+/localtime $&/e;
> a part of access.log is pasted here...
>
>
> 1077566391.786670 192.168.1.195 TCP_MISS/304 391 GET http://c.msn.com/c.gif? -
> DIRECT/65.54.140.158 -
> 107756639
I get the NTLM login box. I split the patch file up into three parts,
one for each of the files that get patched. The problem is with the last
file that get's patched, external_acl.c. Everything works fine until
this file gets patched. I do use the wbinfo_group.pl external acl helper:
external_
Thanks for your very quick reply.and the explanation, it's nice
I'm feel lucky to be a squid-user.
Franck
Franck Gille' a écrit :
Hi all,
I'm using squid 2.4.STABLE7
In my squid.conf i have
acl academie dstdom_regex ac-*.fr
always_direct allow academie
.
if i put "acl academie dstdom_r
Many thanks for this detailed analysis.
Please file a bug report for this issue to make sure it gets fixed.
Regards
Henrik
On Mon, 23 Feb 2004, Jim Richey wrote:
> I get the NTLM login box. I split the patch file up into three parts,
> one for each of the files that get patched. The problem is
On Mon, 23 Feb 2004, Milind wrote:
> I had squid running on default port(3128), If I configure the browser for
> 3128 port then it works fine but Whenever I configure the iptables for
> transporant proxying, for all the address it gives the error as...
You must also configure squid.conf for inte
On Mon, 23 Feb 2004, Awie wrote:
> Thank you Henrik. I will try it.
>
> Currently, I did not need the "unsuccessful" applied patch. So, I can wait
> the next version of Squid.
>
> Anyway, will the version 2.5.x be continued to develop or it will jump to
> version 3.x?
Squid-2.5 is only being bu
On Mon, 23 Feb 2004, Henrik Nordstrom wrote:
> Many thanks for this detailed analysis.
>
> Please file a bug report for this issue to make sure it gets fixed.
But before doing so, make sure the problem is not already fixed by later
(or ealier) patches, and that the patch you are using is up to
hi,
As far as I understand the access log of squid log the bytes that was
sent from the web server to the browser.
Is there any logs of the amount of data that is sent *from* the browser
(like file upload via http)
this could help us to understand the B/W needs.
thanks
--Yedidia
On Monday 23 February 2004 18:51, Boniforti Flavio wrote:
> Hello all!
>
> Is there any way to use SSH by passing through squid proxy?
> Can squid in some way handle such kind of connections (don't know if
> it's called "tunneling" or whatever).
>
> Thank you
Not exactly sure about what you are as
> From: Yedidia Klein [mailto:[EMAIL PROTECTED]
>
> As far as I understand the access log of squid log the bytes that was
> sent from the web server to the browser.
> Is there any logs of the amount of data that is sent *from*
> the browser
> (like file upload via http)
access.log logs all request
> -Original Message-
> From: jose b. chua [mailto:[EMAIL PROTECTED]
>
> access.log logs all requests made through squid. You would be
> interested in
> looking at HTTP GET and HTTP PUT for file uploads. The
> request type is in
> the 6th column of the log.
Oops. You'd be interested in POST
Hello,
Maybe somebody could help me. This topic may have been already discused here,
but I can't find all the informations I need.
I would like to use squid to do some authentication with my Novell server.
I have NDS installed on my Novell.
I know this is possible using the ldap_auth module.
I w
I can't get Squid to authenticate to Windows NT users.
I have a system with Linux Fedora 1.0 (samba 3.0.0, squid 2.5 STABLE3).
I've read Squid FAQ and Samba FAQ and I've done:
1. Configure Samba to join to my NT Domain with "net rpc join", then:
# wbinfo -t
checking the trust secret via RPC ca
so are you saying that I should setup a cron job to update this each second? What are
you saying, I didn't quite understand you? Are you running squid-graph, and if so are
you doing it this way?
thanks
marshall
The best thing to
Hi,
I am trying plain simple authentication for squid 2.5 Stable 3.
I am not too sure how acls works in this case. I have,
acl new_test proxy_auth REQUIRE
http_access allow new_test
But where do I exactly define IP range for acl new_test?
I tried putting,
acl new_test src 192.168.10.2
But I am g
Hy.
> Is the clock set correctly?
Why is that so important? the clocks' of the pcs are not atomic-synchronised,
but far or less good...
> What is said in access.log?
there are FIRST_PARENT_MISSes in it. The child proxy should not save the data
getting through? I don't belive that. Or I should mak
> On Mon, 23 Feb 2004, Awie wrote:
>
> > Thank you Henrik. I will try it.
> >
> > Currently, I did not need the "unsuccessful" applied patch. So, I can
wait
> > the next version of Squid.
> >
> > Anyway, will the version 2.5.x be continued to develop or it will jump
to
> > version 3.x?
>
> Squid-2.
Hi,
At 18.13 23/02/2004, Chavez Gutierrez, Freddy wrote:
I can't get Squid to authenticate to Windows NT users.
I have a system with Linux Fedora 1.0 (samba 3.0.0, squid 2.5 STABLE3).
I've read Squid FAQ and Samba FAQ and I've done:
1. Configure Samba to join to my NT Domain with "net rpc join",
Is there an easy way to view what options you have confgured in your
squid.conf file? I'd like to see what excact is configured without the
comments.
Thanks,
Eric
On Mon, 23 Feb 2004, Eric Kahklen wrote:
> Is there an easy way to view what options you have confgured in your
> squid.conf file? I'd like to see what excact is configured without the
> comments.
You can get Squid to dump its configuration:
% squidclient mgr:config
For that to work you
Thanks alot!! I need to learn more about grep :) I like that option better!
Eric
Duane Wessels wrote:
On Mon, 23 Feb 2004, Eric Kahklen wrote:
Is there an easy way to view what options you have confgured in your
squid.conf file? I'd like to see what excact is configured without the
comments.
I have two squid servers running in a load-balanced transparent proxy
setup. The two servers are siblings. One server is running on Fedora
Core 1 with all the relevant security updates. The other is a RedHat 9
server, also with all the available updates. Both servers are
i386-based systems.
On
In the access log I have seen that after it says the IP of the client user
it says something like TCP_MISS , TCP_NEGATIVE_HIT, TCP_HIT or TCP_MEM_HIT
, what does those means ? And is there a guide that could explain me each
column of the log ?
Would Appreciate Any Help
Has anyone used the cache manager with Windows NT ? Any Web Server to
recommend using it ?
> so are you saying that I should setup a cron job to update this each second?
Yes.Use the crontab to get the results
> What are you saying, I didn't quite understand you? Are you running squid-graph, and
> if so are you doing it this way?
>
crontab -e
*/5 * * * *
(squid-graph exceution <=
please see the squid faq.
http://www.squid-cache.org/Doc/FAQ/FAQ-6.html#ss6.7
Gerard Fremaint wrote:
In the access log I have seen that after it says the IP of the client
user it says something like TCP_MISS , TCP_NEGATIVE_HIT, TCP_HIT or
TCP_MEM_HIT , what does those means ? And is there a
Henrik Nordstrom wrote:
On Mon, 23 Feb 2004, Milind wrote:
I had squid running on default port(3128), If I configure the browser for
3128 port then it works fine but Whenever I configure the iptables for
transporant proxying, for all the address it gives the error as...
You must also co
Hello everyone I have squid-2.5 stabel is installed
I successfully blocked yahoo and msn messengers about
2 months ago. But about I came to know that users are
still
using msn and yahoo messengers I have searched a lot
but I could not figure out the problem.and also i am
unable to access the inte
> using msn and yahoo messengers I have searched a lot
> but I could not figure out the problem.and also i am
> unable to access the internet from my proxy server.
> this is my squid.conf
>
cat > /usr/local/squid/etc/yahoourl.txt
#
.messenger.yahoo.com
.msg.yahoo.
On Mon, Feb 23, 2004 at 09:47:39PM -0800, Kashif Awan said:
> Hello everyone I have squid-2.5 stabel is installed
> I successfully blocked yahoo and msn messengers about
> 2 months ago. But about I came to know that users are
> still
> using msn and yahoo messengers I have searched a lot
> but I
On Mon, 23 Feb 2004, [iso-8859-2] Éliás [iso-8859-2] Tamás wrote:
> there are FIRST_PARENT_MISSes in it. The child proxy should not save the data
> getting through? I don't belive that. Or I should make not a parent-chil
> relationship between them, only two ordianry, standalone proxies?
Normal
I met same problem several weeks a go and it solved by block them using
iptables ..
- Original Message -
From: "Adam Smith" <[EMAIL PROTECTED]>
To: "Kashif Awan" <[EMAIL PROTECTED]>
Cc: <[EMAIL PROTECTED]>
Sent: Tuesday, February 24, 2004 2:30 PM
Subject: Re: [squid-users] msn messenger i
55 matches
Mail list logo
