Cache Manager menu for 146.141.15.234:
* &auth=MTQ2LjE0MS4xNS4yMzR8MTA4NzgyODc5MHxtYW5hZ2VyfCU3RTRhZG1pbjJj">
If you can see this, it means that the installation of the Apache
web server software on this system was successful. You may now add
content to this directory and replace this p
Hello,
I don't have User or pass to continue the process, but I'm sure that with
squid 2.4, I'm prompt for a user/pass and not with my proxy 2.5
L.G.
-Ursprüngliche Nachricht-
Von: Serassio Guido [mailto:[EMAIL PROTECTED]
Gesendet: Dienstag, 22. Juni 2004 00:12
An: Gix, Lilian (BR/PII3)
On 21.06 20:03, Hendrik Voigtländer wrote:
> Yes, our proxy did use swap until I disabled it :-)
> 2GB RAM, squid process is stable at roughly 1GB process size,
> nevertheless the machine started swapping.
> I never figured out why, but the proxy is running fine without any
> swapspace. This is d
>
> Cache Manager menu for 146.141.15.234:
>
> *
> &auth=MTQ2LjE0MS4xNS4yMzR8MTA4NzgyODc5MHxtYW5hZ2VyfCU3RTRhZG1pbjJj">
>
>If you can see this, it means that the installation of
> the Apache
>...
Did you already install a valid apache conf (httpd.conf) file,
for your webse
hi all
i want to create ACL rules that point to files containing the
expressions i want to ban.
for example i want to point my ACL rules to three text files :-
one containing banned ips outside my network
one containing banned URLS outside my network
and one containing ips of clients within my ne
hi
yes, httpd.conf has been configured and points to correct path.
i assume if this was not the case, i would not be seeing the loging
page
correct?
cheers
hement
Elsen Marc wrote:
Cache Manager menu for 146.141.15.234:
*
&auth=MTQ2LjE0MS4xNS4yMzR8MTA4NzgyODc5MHxtYW5hZ2VyfCU3RTRhZ
Hi,
At 09.17 22/06/2004, [EMAIL PROTECTED] wrote:
Hello,
I don't have User or pass to continue the process, but I'm sure that with
squid 2.4, I'm prompt for a user/pass and not with my proxy 2.5
I'm not sure to understand correctly:
With 2.4 you get the authentication pop-up, but you don't have a
Hi,
At 00.18 22/06/2004, Bhat, Satish wrote:
Hi,
I compiled and built Squid 2.5 now (after knowing that Squid 3.0 is
unstable)!
I tried running squid from command prompt !
But got the error "FATAL: setrlimit: RLIMIT_NOFILE: (24) Too many open
files".
This seems to be a known squid problem o
Hi folks,
I want to pass all o the requests to my server to another Proxy Server.
Is there any option for parent proxy?
Mohammad
Hi Mohammad,
Look at cache_peer option, I use the following on the child server:
cache_peer parent 8080 0 no-query default
Regards,
Tan
-Original Message-
From: Mohammad Fattahian [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 22, 2004 3:55 PM
To: [EMAIL PROTECTED]
Subject: [squid-use
>
> hi
>
> yes, httpd.conf has been configured and points to correct path.
> i assume if this was not the case, i would not be seeing the loging
> page
>
Presumably, I also advise to check apache's log (httpd.log) ;examine
any entries related to usage of cachemgr.cgi and watch whe
Dear all
i want to patch Fedora 2 kernel with wccp v 1 support
i download the module at
http://www.squid-cache.org/WCCP-support/Linux/ip_wccp.c
but i dont know correct GCC lines to compile as in
kerenl 2.6.5 lines has been location changed .
anyone patched FC 2 successfully
Regards
UW
hi all
ok, i've managed to sort this out myself.
looks like it was the syntax of the text files i had created
heres's the solution
i created the two ACL's pointing to different txt files
acl files url_regex -i "/usr/local/squid/etc/banned-files.txt"
acl files url_regex -i "/usr/local/squid/etc/bann
Hi I am running squid on freebsd with ipfw. I cannot access ftp sites
through squid however I can do this using ftp program on the machine. I
have tried to set ftp passive on and off but it doesn't work. I am using
using delay pools to manage banwidth for my sites I wonder whether there
are ftp iss
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Mon, 21 Jun 2004, Muthukumar wrote:
> One more change is needed in the patch as,
> make that acl to be available on squid.conf with your detailed comments for that.
> If you wish make that change on patch and send it to list with CC to henrick.
>
> Hi I am running squid on freebsd with ipfw. I cannot access ftp sites
> through squid however I can do this using ftp program on the
> machine. I
> have tried to set ftp passive on and off but it doesn't work.
> I am using
> using delay pools to manage banwidth for my sites I wonder
> w
Hi,
With squid-2.5Stable5 and ssl-2.5.patch in
an accel mode configuration, we have
some requests redirected with https,
but the trouble is that this requests are seen
int the web-client as the destination server.
Ej.
In the redirector
http://www.mysite.com/program --> https://host.secure.program
B
Dear listmember,
the following situation is giving me some headache:
I have a squid sitting in front of a tomcat and want to cache
all cacheable contents by squid.
I tried to configure squid to acceleration mode and had partitially
success. When I call the ip configured in httpd_accel_host and t
Hi Marc,
Thanks.
> www---isp_proxy---proxy_1---proxy_2---clientx
On proxy_1, as you suggested we already have...
acl Safe_ports port 8383
I am not an admin of proxy_2, so I can't check but I gave this value in the
specimen configuration. - I will get an answer to this.
I assume it is set as u
> Hi Marc,
>
> Thanks.
>
> > www---isp_proxy---proxy_1---proxy_2---clientx
>
>
> On proxy_1, as you suggested we already have...
>
> acl Safe_ports port 8383
>
> I am not an admin of proxy_2, so I can't check but I gave
> this value in the
> specimen configuration. - I will get an answer t
hi all
platform :-
squid 2.5 stable 5
redhat 9
My squid.conf has been tightened to only allow connections to a small
range of Safe ports (http, https, and a few others).
I have users in my network that need to connect to a single and unique
external host on a range of ports (2048 to 3048).
I'd l
Hello,
I currently have squid running as a reverse proxy. I have a number of squid
instances running to handle a number of different websites. Each squid
instance listens on it's own ip address and handles the SSL cert for the
incoming web request. My goal is to have squid listen on one address
As far as I know SSL standart it's unfortunatelly impossible.
Apache is suffering of the same limitation.
Regards
Francois Liot
On Tue, 2004-06-22 at 14:42, Dan DeLong wrote:
> Hello,
>
> I currently have squid running as a reverse proxy. I have a number of squid
> instances running to handle
Hello,
I wish to only allow our internal network specific SSL sites (443). In the
squid.conf file I am allowing the CONNECT proto for only port 443, now to allow
access to a specific site only. I would have to use
dstdom_regex or dstdomain right ?? Because the url is not yet known ...
--
-Original Message-
From: Dan DeLong [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 22, 2004 8:42 AM
To: [EMAIL PROTECTED]
Subject: [squid-users] reverse proxy / virtual hosting
Hello,
I currently have squid running as a reverse proxy. I have a number of squid
instances running to hand
Further thought...on how we are setting it up.
One ssl cert for www.mycompany.com, resides on the proxy.
Internet-end-user -->ssl-->rp-->non-ssl ldap-authenticated traffic --> back
end webserver
With the redirect for each of the back end webservers, you can have a single
cert. You can not have a
I am setup in a similar way,
Internet-end-user> SSL (serviced by squid) > RP ---> backend
webserver. But I am hosting sites where each have their own SSL cert. So I
think what I'm hearing is that I will not be able to start one Squid
instance that can handle multiple different SSL certs ?
I will try to be a bit clearer.
Here is the picture :
--TCP-SSL--Encapsulated protocol
(could be HTTP...)
--IP:Port--Certificate used for handshakedecyphered protocol
in case of HTTP, once decyphered you could indeed
Hello,
I am trying to get customer error pages to work for my acl ..
but the acl works like:
http_access deny !goodsites goodhttps_ports
Can you use customer error pages if it needs to match two acl's.
--
Michael Gale
Network Administrator
Utilitran Corporation
As someone else just wrote, if you try and use a cert for web1.com on
web3.com you get an error message saying the cert isn't for web3.com.
To answer your question though, the squid.conf file mentions the following,
stating that you can run multiple addresses each with their own ssl cert:
(this is
Hi,
Sorry! It wasn't a build problem, it's a runtime error on Windows.
I used Cygwin to build it and used "--prefix=C:/squid
--enable-win32-service --enable-default-host" option.
I ran the squid - $ squid.exe -d 9
I looked into the discussion thread for the "RLIMIT_NOFILE" problem,
but
Hello,
With both squid 2.4S7 or 2.5S5, I have IE which stalled sometimes on urls. The earth
logo is running for more than 5 minutes without retreiving the page and time out.
With debug_options 48,9 each time squid stalled the navigator, I have in the cache.log
:
2004/03/18 10:54:44| pconnRead:
If you are using winbindd with ntlm it should not ask
you for the passowrd, have you define any ACL, if yes
what is that.
--- Tanzer GENC <[EMAIL PROTECTED]> wrote:
> Hello,
> Please check squid's cache.log.It will give an idea
> to us.
> Could you try to authenticate with another a
> browser. It
Hi,
At 18.53 22/06/2004, Bhat, Satish wrote:
Hi,
Sorry! It wasn't a build problem, it's a runtime error on Windows.
I used Cygwin to build it and used "--prefix=C:/squid
--enable-win32-service --enable-default-host" option.
So, the win32 binaries on http://www.acmeconsulting.it/SquidNT.htm a
Hi,
The reason I want to build my own squid on Win32 is that I have to do
some customization to it.
So I cannot use the binaries.
Cheers,
Satish
-Original Message-
From: Serassio Guido [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 22, 2004 11:40 AM
To: Bhat, Satish; [EMAIL PROTECTE
Hi,
At 20.49 22/06/2004, Bhat, Satish wrote:
Hi,
The reason I want to build my own squid on Win32 is that I have to do
some customization to it.
So I cannot use the binaries.
OK.
So, try using MinGW and download again latest Squid 2.5 sources from
http://www.acmeconsulting.it/SquidNT.htm, I h
Matus UHLAR - fantomas wrote:
>On 21.06 20:03, Hendrik Voigtländer wrote:
>
>>Yes, our proxy did use swap until I disabled it :-)
>>2GB RAM, squid process is stable at roughly 1GB process size,
>>nevertheless the machine started swapping.
>>I never figured out why, but the proxy is running fine wit
Hi,
Is there any way to pass the user/password supplied by the user at his/her browser as
the "-D binddn -w password" required by our directory for the following search:
external_acl_type ldapgroup %LOGIN /usr/lib/squid/squid_ldap_group -D
"uid=,ou=People,dc=ourdomain,dc=com" -w "" -b "
Hi Mohammad,
Specifying a cache_peer doesnt force _all_ requests over the parent and
I think that you probably want to do that.
Have a look at always_direct / never_direct / hierarchy_stoplist
additionaly to specifying the cache_peer as explained by Tan.
Regards, Hendrik Voigtländer
Tan, Kian Ti
I know you can use the %s but I don't know if you can use it there. Doing a
lookup might not need a userid/password to perform the query. Try running
the command with a -f uid=%s
If that doesn't work then you might have to create a user that can only read
the container where the uid's are kept.
C
I had run several backend servers (wth different hostnames under the
same domain) to do :
(client)https -> RP(squid 2.5) -> http(servers)
some time back. And ofcourse ran into the technical non-possibility of
running all domain names on same IP/port with separate certificates.
Work aroun
I had run several backend servers (wth different hostnames under the
same domain) to do :
(client)https -> RP(squid 2.5) -> http(servers)
some time back. And ofcourse ran into the technical non-possibility of
running all domain names on same IP/port with separate certificates.
Work aroun
On Tue, 22 Jun 2004, Rafael Tonin wrote:
> Is there any way to pass the user/password supplied by the user as the "-D binddn -w
> password" required by our directory for the following search:
Both yes and no. Not without a bit of coding, but technically this is
possible to solve when using the B
Congratulations to all our kind users who have provided valuable feedback
via our bugzilla tool.
The database reached it's 1000'th report some days ago after nearly four
years of use.
Some statistics from today:
Total number of reports: 1002
total open reports: 186
open bugs
Here is the log :
[2004/06/22 13:00:01, 1] utils/ntlm_auth.c:manage_squid_request(1592)
fgets() failed! dying. errno=0 (Success)
[2004/06/22 13:00:01, 1] utils/ntlm_auth.c:manage_squid_request(1592)
fgets() failed! dying. errno=0 (Success)
[2004/06/22 13:00:01, 1] utils/ntlm_auth.c:man
I am having trouble starting squid as a non-root user. When I attempt to do
it
I get the following.
commBind: Cannot bind socket FD11 to 192.168.0.197:443 (13) Permission denied
Does anyone know the permission that I need to set for a non-root user to be
able
to start squid or do I just always h
> acl banned-clients src -i "/usr/local/squid/etc/banned-clients.txt"
> banned-clients.txt
> ::
> 146.141.59.230
> 146.141.59.231
> 146.141.59.232
> 146.141.59.233
> 146.141.59.234
> 146.141.59.235
> 146.141.59.236
If you use the src acl type,you have use the subnetmask with that ip-ad
[acl SSL_Ports 443
acl host_allowed src "/squid/etc/host_allowed.txt"
acl passwd proxy_auth REQUIRED
acl special_domain dstdomain "/squid/etc/special_domain.txt"
[http access section]
http_access allow SSL_Ports special_domain
http_access allow host_allow passwd
File [special_domain.txt]
tac.co.
Hi Muthukumar,
Actually the message in the log is after I restart squid.
When the squid is running, and I got denied for ages ... I could not
find additional messages regarding the failed authentication in
cache.log.
Here is the detailed :
[2004/06/22 13:00:01, 1] utils/ntlm_auth.c:manage_squid
Hi Herman,
[2004/06/22 13:00:02, 1] utils/ntlm_auth.c:manage_squid_request(1592)
fgets() failed! dying. errno=0 (Success)
2004/06/22 13:00:06| Starting Squid Cache version 2.5.STABLE5 for
i586-pc-linux-gnu...
[snip]
2004/06/22 13:00:06| chdir: /usr/local/squid-2.5.STABLE5//var/cache: (2)
No s
Dear Squid group,
I try to use according configuration below. It still
require authentication.
Please advice
Regards and Thank you in advance
Niti :)
-Original Message-
From: Muthukumar [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 22, 2004 10:31 AM
To: Niti Lohwith
> My squid.conf has been tightened to only allow connections to a small
> range of Safe ports (http, https, and a few others).
> I have users in my network that need to connect to a single and unique
> external host on a range of ports (2048 to 3048).
> I'd like to open this range for all my client
> I wish to only allow our internal network specific SSL sites (443). In the
> squid.conf file I am allowing the CONNECT proto for only port 443, now to allow
> access to a specific site only. I would have to use
> dstdom_regex or dstdomain right ?? Because the url is not yet known ...
You can use
Carl Barton wrote:
> I am having trouble starting squid as a non-root user. When I attempt to do
> it
> I get the following.
>
> commBind: Cannot bind socket FD11 to 192.168.0.197:443 (13) Permission denied
>
> Does anyone know the permission that I need to set for a non-root user to be
> able
>
Hi All,
I am keen to switch my kernel to 2.6.7, due to reports that it is much more
efficient that the current 2.4 kernel. I am currently using Squid 2.5-S4.
Has anybody switched from a 2.4 kernel to a 2.6 kernel? Do you really see a
performance boost in squid?
Thanks
Liz
__
-Original Message-
From: Lizzy Dizzy [mailto:[EMAIL PROTECTED]
Sent: Wednesday, 23 June 2004 4:11 PM
To: [EMAIL PROTECTED]
Subject: [squid-users] Linux 2.6 Kernel. Any benefits?
Hi All,
I am keen to switch my kernel to 2.6.7, due to reports that it is much more
efficient that the curre
> 2004/06/22 13:00:06| chdir: /usr/local/squid-2.5.STABLE5//var/cache:
> (2) No such file or directory
Are the 2 slashes "//" correct?
Mit freundlichem Gruß/Yours sincerely
Werner Rost
GM-FIR - Netzwerk
ZF Boge Elastmetall GmbH
F
On 22.06 22:47, Hendrik Voigtländer wrote:
> With "growing" I mean the squid process increasing over the time. If I
> read the FAQ correctly this could be caused e.g. if more and more
> objects go in the the cache_dirs thus increasing the space needed for
> the index, i.e. if squid starts with a
58 matches
Mail list logo
