> Lo all,
>
> Can someone please just assit me with always/never_direct?
>
> I have two cache peers configured. The one will be used "per
> default", the
> other only for certain IP addresses.
>
> cache_peer x.x.x.x parent 3128 0
> cache_peer y.y.y.y parent 3128 0
>
> Then, I have a ACL t
>
> Hello!
>
> First post to this list, hope somebody can help me with this rather
> strange problem...
>
> First, this problem seems to be related to Microsofts service MSN
> Messenger. Earlier this evening I noticed that the CPU usage on the
> computer that runs squid (a P2 400Mhz with 256M
>
> Hello all:
>
> Here is what I want to do:
>
> Limit certain users or groups of users to accessing only
> certain sites that
> are preapproved by management. I however just cannot wrap my
> head around the
> SQUID HOWTO that deals with this type of control.
>
> Does anyone have any exam
On Wed, 9 Feb 2005, Askar wrote:
sorry my ignorance, I don't really have good idea abotu LVS/TUN or LVS/DR.
LVS/DR is generally preferrable over LVS/TUN as it doesn't require any
special support in the cache server OS (just a carefully planned network).
LVS/TUN requires a appropriate tunnel to b
On Tue, 8 Feb 2005, thomas wrote:
[EMAIL PROTECTED] chpasswd-1.9.1]# make
gcc -c -O2 -w -I. -DHAVE_LIBCRYPT=1 -DHAVE_DIRENT_H=1 -DSTDC_HEADERS=1 -DHAVc
chpasswd.c:243: error: conflicting types for 'getword'
chpasswd.c:131: error: previous implicit declaration of 'getword' was here
chpasswd.c:261
Hi,
Please be more specific about type of authentication you want to use.
Describe your environment like: i have windows 2003 ads, my clients a
using msie or firefox
want ldap authentication or ntlm, or basic- squid-cache.org faq 23 is very
helpfull.
my example will be like this:
installing samb
On Tuesday 08 February 2005 21:28, Henrik Nordstrom wrote:
> If you on the other hand build Squid with --disable-internal-dns then it
> will use the OS resolver functions with all it's nsswitch/hosts.conf
> magic, but at a significant performance penalty due to the API limitations
> of the OS resol
Hi, I would like to have (well, to be honest, I do really need it for
the final work of my degree!) a *working* squid that does use
pushcaching.
I've been looking at the pushcache patch in
http://devel.squid-cache.org/ but it seems to be a stale project! In
fact, looking at the CVS brach with tag
Cópia Chris Robertson <[EMAIL PROTECTED]>:
> > -Original Message-
> > From: cipher [mailto:[EMAIL PROTECTED]
> > Sent: Sunday, February 06, 2005 9:36 AM
> > To: squid-users@squid-cache.org
> > Subject: [squid-users] blocking urls
> >
> >
> > Hi people,
> >
> > I am having serious trouble i
On Wed, 9 Feb 2005, Askar wrote:
and yes all the caches are on the same switch, and we will also put the LVS
Director on the same switch with cache servers.
I thinks LVS/DR is what we have to go for ? :) sorry for my stupid question
again and again
Yes.
To make this setup simpler the LVS should h
On Wed, 9 Feb 2005, H Matik wrote:
if configuring with --disable-internal-dns the external dns lookup program
will interact with the OS, is that right and I need to define dns_children ?
This was the standard in older squid versions or am I wrong?
Correct.
So if I understood you this internal DNS r
On Wed, 9 Feb 2005, cipher wrote:
when o match that url i got the information that the
following is being blocked:
awprofessional.com/articles/article.asp?
Shouldn't it be blocking
awprofessional.com/articles/article.asp?p63731
It probably is.
access.log by default does not contain query terms. Thi
I was wondering how good can be having a huge storage size for caching.
I mean: having, let's say, about 2 Terabytes of cache storage size can
be helpful? Or do I have any kind of problems (speaking about FD for
example)? Are there any studies on this matter?
Going on...is it better, assuming to h
> I was wondering how good can be having a huge storage size
> for caching.
Not good , probably even bad.
Let alone RAM requirements (see FAQ).
> I mean: having, let's say, about 2 Terabytes of cache storage size can
> be helpful? Or do I have any kind of problems (speaking about FD for
>> What is the best approach to upgrade to 2.5.STABLE7 from 2.5.STABLE6?
I
>> see info on how to apply patches but not a new STABLE release.
>Just install the new version ontop of the old and restart Squid. Same
as
>when patching except that there is no doubt in what Squid version you
are
>using
>
> >> What is the best approach to upgrade to 2.5.STABLE7 from
> 2.5.STABLE6?
> I
> >> see info on how to apply patches but not a new STABLE release.
>
> >Just install the new version ontop of the old and restart Squid. Same
> as
> >when patching except that there is no doubt in what Squid
On Wednesday 09 February 2005 11:22, Elsen Marc wrote:
> > I was wondering how good can be having a huge storage size
> > for caching.
>
> Not good , probably even bad.
> Let alone RAM requirements (see FAQ).
>
I guess "huge" is a bad number to discuss
>
> Particular staying with the first pa
> - check whether squid was build ; should be in relative
>to your unpacked distribution root :
>
>`updist`/src/squid (so to speak)
This is there. So far so good.
>Check then for instance :
>
>`updist`/src/squid -v
This returned STABLE7. Still good. But squid -v with out /sr
Any particular reason why you're after DR mode? I have several squids load
balanced in masq mode and we're able to handle more traffic then most sites
can aspire too - with basically 0 load on the LVS server. You have to do
some monkey patching to get DR mode to work; I personally think unless on
Hi Henrik,
I don not quite understand your answer.
All I asked for was a way to stop that whole url, since
the information o get is that the url is being blocked
by it's partial length! :)
Regards
*cipher*
> when o match that url i got the information that the
> following is being blocked:
>
>
Chris Robertson wrote:
Anyway, by combining the "time" acl and the "no_cache" directive, you should be
able to specify times when URLs are not cached.
Something like:
acl maint_time time 04:00-05:00
acl maint_pages dstdomain .my.server
no_cache deny maint_time maint_pages
Thanks! I'll try that!
Hi all.
Thank you for the answers.
Here we go:
Flávio -> Guido:
first: sorry my english and my dummy questions. :)
1) I can't see any error running "squid -k parse".
2) I tried to run squid only as root. I can't run as "squid" (my
cache_effective_user), because, I cant do "su squid" (I dont know
Henrik Nordstrom wrote:
The best approach to this is to make the web server set proper
cache-control and/or Expires headers. Will make your and your users
life much better.
Yes, that would be nice, wouldn't it? ;-) Unfortunately, this is for
caching a commercial shopping cart (Miva Merchant) and
> -Original Message-
> From: Maxx Christopher Lobo [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, February 08, 2005 5:21 PM
> To: squid-users@squid-cache.org
> Subject: [squid-users] Port based ACLs for Squid setup with upstream
> proxying to Surfingate's Finjan-
>
>
> Hi:
>
> I've included
> -Original Message-
> From: cipher [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, February 09, 2005 2:11 AM
> To: Chris Robertson
> Cc: squid-users@squid-cache.org
> Subject: RE: [squid-users] blocking urls
>
>
> Cópia Chris Robertson <[EMAIL PROTECTED]>:
>
>> > -Original Message-
Chris Robertson wrote:
acl maint_time time 04:00-05:00
acl maint_pages dstdomain .my.server
no_cache deny maint_time maint_pages
Hmmm ... I tried using this:
acl MAINT time 12:32-12:35
no_cache deny MAINT
But during the time specified, when I hit pages I still got this header:
X-Cache: HIT from sq
> -Original Message-
> From: jennyw [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, February 09, 2005 11:38 AM
> To: squid-users@squid-cache.org
> Subject: Re: [squid-users] Clearing the Squid cache or disabling caching
> d uring certain periods
>
>
> Chris Robertson wrote:
>
>>> acl maint_
On Wed, 9 Feb 2005 10:59:21 -0500, Andrew Sawyers <[EMAIL PROTECTED]> wrote:
> Any particular reason why you're after DR mode? I have several squids load
> balanced in masq mode and we're able to handle more traffic then most sites
> can aspire too - with basically 0 load on the LVS server. You h
> You likely have "strip_query_terms" on (it's
> settable in the > squid.conf.
> It's on by default, and strips anything after a
> question mark (?) from > the
> URL before logging it. As long as you are
> specifying the regex as I > typed
> it above, you should be just fine. If you
> want, test
Hi everyone,
This is my first e-mail to the list and I hope you can help. I`m
running the lates squid stable on a Red Hat 7.3, the problem I have is
the following:
Everyone of the computers in the office except for the IT one´s access
the Internet with ncsa authentication. The following acl tak
On Wed, 9 Feb 2005, Andrew Sawyers wrote:
Any particular reason why you're after DR mode? I have several squids load
balanced in masq mode and we're able to handle more traffic then most sites
can aspire too - with basically 0 load on the LVS server.
If you do interception then LVS must not NAT th
On Wed, 9 Feb 2005, cipher wrote:
All I asked for was a way to stop that whole url, since
the information o get is that the url is being blocked
by it's partial length! :)
Based on which information?
Regards
Henrik
On Wed, 9 Feb 2005, Brad Taylor wrote:
I tried to install 2.5STABLE7 but after doing .configure, make and make
install I run squid -v and still STABLE6. I checked to config.log file
and these look to be the only errors:
How did you install 2.5.STABLE6?
You need to install 2.5.STABLE7 in the exact
On Wed, 9 Feb 2005, jennyw wrote:
But during the time specified, when I hit pages I still got this header:
X-Cache: HIT from squid
Which Squid version?
Regards
Henrik
On Wed, 9 Feb 2005, [ISO-8859-1] Flávio Henrique wrote:
2) I tried to run squid only as root. I can't run as "squid" (my
cache_effective_user), because, I cant do "su squid" (I dont know the
password).
When we asked you to run as the cache_effective_user we talked about
testing the helper alone ma
> -Original Message-
> From: Henrik Nordstrom [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, February 09, 2005 6:14 PM
> To: Andrew Sawyers
> Cc: 'Henrik Nordstrom'; 'Askar'; 'Squid Users'
> Subject: RE: [squid-users] LVS/TUN or LVS/DR
>
> On Wed, 9 Feb 2005, Andrew Sawyers wrote:
>
> > A
> -Original Message-
> From: Mario Maradiaga [mailto:[EMAIL PROTECTED]
> Sent: Wednesday, February 09, 2005 2:12 PM
> To: squid-users@squid-cache.org
> Subject: [squid-users] Allow msn messenger but no porn
>
>
> Hi everyone,
>
> This is my first e-mail to the list and I hope you can he
Chris:
Thanks for the suggestion - I added the port based ACL to the
always_direct list, and my new squid.conf is included below.
I've tested the veracity of the port based ACL, using an FTP client -
where previously the FTP connection would be shunted to FinJAN, now
squid passes it through itsel
Thanks Henrik
Similar errors is for - Hmsg putline Changed NotFound rulefail
strip_latin & sendmail.
May you suggest the declaration statement for these variables, please.
Another problem I am facing is - whenever accessing any secure site
https://somesecuresite.com, not able to access. But wit
Andrew Sawyers wrote:
-Original Message-
From: Henrik Nordstrom [mailto:[EMAIL PROTECTED]
Sent: Wednesday, February 09, 2005 6:14 PM
To: Andrew Sawyers
Cc: 'Henrik Nordstrom'; 'Askar'; 'Squid Users'
Subject: RE: [squid-users] LVS/TUN or LVS/DR
On Wed, 9 Feb 2005, Andrew Sawyers wrote:
>ACLs don't seem to be checked when squid serves cached content (likely in
>the interest of speed).
Many thanks Chris for your generous offer and your suggestions. Also to Henrik
for
clarifying the structure of URLs. My frustration, which I tried to conceal in
my posts, but
>...
>...
> >`updist`/src/squid -v
>
> This returned STABLE7. Still good. But squid -v with out
> /src/ returns
> STABELE6
>
>
Well hard to say, but that simply means that the new binary,
didn't go to where it was supposed to be by make install.
As stated by others, make sure tha
Chris Robertson wrote:
http_access allow AuthGroup
http_access allow SURFING
http_access allow allowedsites
http_access deny all
Will that do it, and grab authentication details for every request?
Thanks,
Oliver
Here is how I read your setup:
Everyone is prompted for authentication (which is passe
43 matches
Mail list logo