nothing wrong may b your clients not using windows update ;-)
On 8/25/05, [EMAIL PROTECTED]
<[EMAIL PROTECTED]> wrote:
> Hi
>
> I have recently started using refresh pattern in squid configuration.
> My objective is to cache windows update for long time.
>
> Below is my configuration.
>
>
> r
Thanks
My maximum_object_size value is only 8MB. Should I increase this to get
more caching? Will it affect performance if I increase to 32MB.
Is there any farmula to calculate these values?
Thanks - Lokesh
-Original Message-
From: Kashif Ali Bukhari [mailto:[EMAIL PROTECTED]
Sent: Thu
yeah u can increase it but it will directly effact on your cache size
and memory size so first read about somf FAQs on it
thanks
On 8/25/05, [EMAIL PROTECTED]
<[EMAIL PROTECTED]> wrote:
> Thanks
>
> My maximum_object_size value is only 8MB. Should I increase this to get
> more caching? Will it
Hi
Below is my current access.log. My users are accessing windowsupdate but
I don't see any TCP_HIT. Am I giving correct regexp??
Thanks
###
1124941122.867 1467 10.18.24.227 TCP_MISS/206 6604 GET
http://au.download.windowsupdate.com/msdownload/update/v5
Yes mine access.log also shows same ...though i had configured
refresh_pattern option for windows update..
What might be the reason ?
Thanks,
uglyjoe
[EMAIL PROTECTED] wrote:
>Hi
>
>Below is my current access.log. My users are accessing windowsupdate but
>I don't see any TCP_HIT. Am I giving cor
I think regexp is not correct
We need to put
refresh_pattern http://au\.download\.windowsupdate\.com/ 4320
80% 43200
As per my understanding this should give us tcp_hit for
http://au.download.windowsupdate.com/*
Thanks
-Original Message-
From: Raj Kumar Gurung [mailto:[EMAIL P
:-D
hm i can see user are assecing cab files
you should use refresh_pattern for .cab and .dll from windows update
i am seding you this
refresh_pattern windowsupdate.com/.*\.(cab|exe|dll) 4320 100% 43200
reload-into-ims
refresh_pattern download.microsoft.com/.*\.(cab|exe|dll) 4320 100%
432
Thanks.
Will this rule also match any cab/exe/dll file from
http://au.download.windowsupdate.com
Or do i need to use
refresh_pattern http://*\windowsupdate\.com/.*\.(cab|exe|dll) 4320 100%
43200 reload-into-ims
Thanks
-Original Message-
From: Kashif Ali Bukhari [mailto:[EMAIL PROTECTED]
just use
refresh_pattern http://*\windowsupdate\.com/.*\.(cab|exe|dll) 4320 100%
43200 reload-into-ims
On 8/25/05, [EMAIL PROTECTED]
<[EMAIL PROTECTED]> wrote:
> Thanks.
> Will this rule also match any cab/exe/dll file from
> http://au.download.windowsupdate.com
> Or do i need to use
>
> refre
hatsoever for any loss,
>>>
>>>
>>>
>>>
>>be it direct, indirect or consequential,
>>
>>
>>
>>
>>>arising from information made available in this e-mail and actions
>>>
>>>
>>>
>>>
>>resulting there from.
>>
>>
>>
>>
>>>For more information about Accelon Nigeria Limited, please see our
>>>
>>>
>>>
>>>
>>website at
>>
>>
>>
>>
>>>http://www.accelonafrica.com
>>>
>>>
>>>
>>>
>>>
>>***
>>
>>
>*
>
>
>>**
>>
>>
>>
>>
>>
>>
>>
>>
>Disclaimer
>
>The information contained in this e-mail, any attached files, and response
>threads are confidential and
>may be legally privileged. It is intended solely for the use of individual(s)
>or entity to which it is addressed
>and others authorised to receive it. If you are not the intended recipient,
>kindly notify the sender by return
>mail and delete this message and any attachment(s) immediately.
>
>Save as expressly permitted by the author, any disclosure, copying,
>distribution or taking action in reliance
>on the contents of the information contained in this e-mail is strictly
>prohibited and may be unlawful.
>
>Unless otherwise clearly stated, and related to the official business of
>Accelon Nigeria Limited, opinions,
>conclusions, and views expressed in this message are solely personal to the
>author.
>
>Accelon Nigeria Limited accepts no liability whatsoever for any loss, be it
>direct, indirect or consequential,
>arising from information made available in this e-mail and actions resulting
>there from.
>
>For more information about Accelon Nigeria Limited, please see our website at
>http://www.accelonafrica.com
>**
>
>
>
>__ NOD32 1.1201 (20050825) Information __
>
>This message was checked by NOD32 Antivirus System.
>http://www.nod32.com
>
>
>
>
>
Ken Ara said:
> I have seen this question asked before but I have been
> unable to find the answer.
>
> Using squid-2.5.STABLE9 as reverse proxy, I try to
> defend my server against assorted nasties using lots
> of 'src' and 'browser' acls.
>
> But in access.log, when a 403 is reported, there seems
Hello,
I want the port on which Squid starts to be 8080. Default it's port 3128.
But I can't seem to get Squid compiled with the start-port on 8080.
What I did:
- Set the environment variable CACHE_HTTP_PORT to 8080
- ./configure --with-lots-of-options
- Checked include/autoconf.h, in it I see '#
I forgot to mention:
- OS: Linux RHES (Taroon update 4)
- Squid version: 2.5STABLE10
Joost
On Thu, 2005-08-25 at 11:36 +0200, Joost de Heer wrote:
> Hello,
>
> I want the port on which Squid starts to be 8080. Default it's port 3128.
> But I can't seem to get Squid compiled with the start-port on 8080.
>
> What I did:
> - Set the environment variable CACHE_HTTP_PORT to 8080
> - ./confi
> I want the port on which Squid starts to be 8080.
> Default it's port 3128.
> But I can't seem to get Squid compiled with the
> start-port on 8080.
>
> What I did:
> - Set the environment variable CACHE_HTTP_PORT to
> 8080
> - ./configure --with-lots-of-options
> - Checked include/autoconf.h, i
Thanks for these answers.
--- Christoph Haas <[EMAIL PROTECTED]> wrote:
>
> Set 'debug_options ALL,1 33,2' in your squid.conf
> and run 'squid -k
> reconfig'. The cache.log should then tell you why an
> access is denied.
>
So, Googling for "debug_options ALL,1 33,2" I see this
is an FAQ..
Ac
Move all the cache files and log files to a mount point with 20 gig, The Drive
is not full and I turned debug on in squid.conf just recently, Waiting for it
to fail again. When it does, I'll look for the debug file.
__
|
I am using squid2.5stable9 and receiving the following error in the log:
WARNING: Cannot run '/usr/lib/squid/ncsa_auth' process.
I am able to run the ncsa_auth from the terminal without failure.
Additionally, I created a user and made it part of the squid group and
was able to run the ncsa_aut
You can easily do this by starting multiple squid instances on your 1 squid
box. Start squid with the -f option to point to a unique squid.conf for
each IP address. Make sure each squid.conf has the correct http_port tag
which is the ip address squid is listening on and the correct
httpd_acce
Hy,
I use squid_ldap_auth for the authentification.
I would like to know if squid carries out a request LDAP in each consulted
page ?
My conf ?
auth_param basic program /usr/lib/squid/squid_ldap_auth -f uid=%s -b
ou=cicoa,o=cnamts,c=fr -h 55.7.4.62 -p 389
auth_param basic children 10
auth_para
Thanks Dan. This may work. But have a couples questions. You said "Make
sure each squid.conf has the correct http_port tag which is the ip
address squid is listening on" Did you mean Port or IP address? I need
to make sure squid is listening on all IP addresses. If I want three
instances of squid
One more thing, can I share the cache directories? Each real server will
contain the content and therefore each cache would be the same.
-Original Message-
From: Dan DeLong [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 25, 2005 8:54 AM
To: Squid Users
Subject: [SPAM] - Re: [squid-users
I found two solutions that use squid but which one i cant decide to use.
One is squid+ dansguardian+clmav and the other is squd+HAVP.
I want to scan all traffic through squid.
Any recommendations?
I do see now that http_port allows an IP address in addition to a port.
Thanks for the help.
-Original Message-
From: Dan DeLong [mailto:[EMAIL PROTECTED]
Sent: Thursday, August 25, 2005 8:54 AM
To: Squid Users
Subject: [SPAM] - Re: [squid-users] Reverse Proxy Multiple IP Addresses
- Emai
I recommend using ICAP (Ineternet Content Adaption
Protocol), a lightweight protocl to pass http message
to ICAP servers for modification or adaption. For more
information refer to ICAP RFC.
Today, It is the preferred approach in commercial
products. However, open source implementations are in
e
Hi All
A bit off topic, but I've had some users complain that they are having
problems when going to windowsupdate and it tries to validate their copy of
windows. It seems like a timeout issue.
What are people who are running squid as a firewall allowing through to
allow for windowsupdate?
Matt
>> So what else do I need to change to get the default start port to 8080?
>> I
>> know I can set it with http_port in the configuration, but things like
>> squidclient still need the -p argument then, and I wanted to avoid that.
> The relevant configuration directive is http_port.
> Please check
Hi,
At 23.58 24/08/2005, Covington, Chris wrote:
Hi all,
Is it possible to configure 2.5-10 to allow NTLM for users connecting
from certain networks (let's say 10.2.5.0), and Basic Auth for users
connecting from other networks (let's say 10.2.6.0)? If so, how?
You can't do this with Squid.
Hi,
At 11.36 25/08/2005, Joost de Heer wrote:
Hello,
I want the port on which Squid starts to be 8080. Default it's port 3128.
But I can't seem to get Squid compiled with the start-port on 8080.
What I did:
- Set the environment variable CACHE_HTTP_PORT to 8080
- ./configure --with-lots-of-op
> >Hi all,
> >
> >Is it possible to configure 2.5-10 to allow NTLM for users
> connecting
> >from certain networks (let's say 10.2.5.0), and Basic Auth for users
> >connecting from other networks (let's say 10.2.6.0)? If so, how?
>
> You can't do this with Squid.
Could I perhaps run 2 instanc
* On 25/08/05 18:09 +, Pavel M. Ivanchev wrote:
> I found two solutions that use squid but which one i cant decide to use.
> One is squid+ dansguardian+clmav and the other is squd+HAVP.
> I want to scan all traffic through squid.
> Any recommendations?
Did you say all traffic, or "all http tra
> -Original Message-
> From: ROUTIER Gilles [mailto:[EMAIL PROTECTED]
> Sent: Thursday, August 25, 2005 5:49 AM
> To: squid-users@squid-cache.org
> Subject: [squid-users] Cache Authentitifaction LDAP
>
>
> Hy,
>
> I use squid_ldap_auth for the authentification.
>
> I would like to know
Brad,
I think you're all set on the http_port tag (xx.xx.xx.xx:port) and yes you
have to have multiple IP addresses on the box to handle the multiple squid
instances.
As far as sharing the cache directory, I don't know of any reason you can't.
The best answer I can give you for why we have t
Hi!!
Windows Update really has problems authenticating to squid, so you
need to use some rules in order to get it working. The rules that we
are using are the following:
acl WindowsUpdateSites dstdomain .windowsupdate.com
.windowsupdate.microsoft.com .update.microsoft.com
Then, before the
Dear friends,
Is it possible to authenticate proxy users through windows server
2003 active directory? I read from the mailing list windows NT 2000
possible, what about 2003? To configure it, is it related to NTLM?
thanks for taking time reading my mail!
--
Yong Bong Fong (Ah Fong)
Rookie
Hi list
i have configured two squid servers running Redhat 9.My current
configuration for cache_peer is as :
CACHE 1:
cache_peer cache2.xxx.comsibling3128 3130 proxy-only
icp_port 3130
CACHE 2:
cache_peer cache1.xxx.comsibling3128 3130 proxy-only
icp_port 3130
Both have GRE tu
At 02:32 AM 8/25/2005, Raj Kumar Gurung wrote:
>Yes mine access.log also shows same ...though i had configured
>refresh_pattern option for windows update..
>What might be the reason ?
Because the entire update is too big to cache and the client is
trying to fetch it in small pieces. This can tie
37 matches
Mail list logo
