Hi.
On 21.06.2010 23:12, Henrik Nordström wrote:
However, this doesn't solve the service outage, which I have to handle
manually, for example raising the priority on the backup node.
What kind of service failure do you need manual action?
In this case - squid crash.
heartbeat is usi
Silamael
Many Thanks.
I have tested with a later daily build and it works OK.
Cheers
Steve
Sent from my iPad
On 19 Jun 2010, at 10:30, Silamael wrote:
> On 06/18/2010 08:27 PM, Steve wrote:
>> Hi
>> I am getting a compile error with 3.1.4 on IBM Power ppc64 running Red Hat
>> Enterprise Linu
mån 2010-06-21 klockan 19:05 +0100 skrev Alex Crow:
> Can a please add a request to have this added, unless it's fundamentally
> problematic. If so, where is the best place to make such a request?
The best place for such requests is the wiki, and discussing it on
squid-dev to draw attention.
mån 2010-06-21 klockan 13:30 -0500 skrev Baird, Josh:
> Ah, ok. Just read the documentation for deny_info. So, typically, the last
> ACL is the last http_access deny line, which I have as "http_access deny all"
>
> Applying the deny_info to the "all" ACL does not seem to be working, so I am
>
Ah, ok. Just read the documentation for deny_info. So, typically, the last
ACL is the last http_access deny line, which I have as "http_access deny all"
Applying the deny_info to the "all" ACL does not seem to be working, so I am
guessing that squid is actually denying the request on another A
mån 2010-06-21 klockan 13:02 -0500 skrev Baird, Josh:
> So, this patch is useless to me? Do you know of *any* workaround that
> will allow me to display a more specific error message? ISA somehow
> pulls this off.
http_access + deny_info?
Regards
Henrik
That commit is only in Squid-2.HEAD at the moment. Not found in Squid-3
or any production Squid-2 release.
http://www.squid-cache.org/Versions/v2/HEAD/changesets/12339.patch
Regards
Henrik
Dear Henrik,
Many thanks for the rapid reply.
Can a please add a request to have this added, unle
So, this patch is useless to me? Do you know of *any* workaround that will
allow me to display a more specific error message? ISA somehow pulls this off.
Thanks,
Josh
-Original Message-
From: Henrik Nordström [mailto:hen...@henriknordstrom.net]
Sent: Monday, June 21, 2010 12:45 PM
To
mån 2010-06-21 klockan 18:29 +0100 skrev Alex Crow:
> I found this post on Nabble which leads me to believe that at some point
> there was a commit enabling delay_access to work with acls based on
> rep_mime_type:
>
> http://squid-web-proxy-cache.1019090.n4.nabble.com/delay-access-and-rep-mime-
mån 2010-06-21 klockan 11:34 -0500 skrev Baird, Josh:
> HTTP blocking works fine, but when users try to
> access a HTTPS page that is blocked, in IE7, the user gets a generic
> "The Page Cannot Be Found" error (not a Squid specific error). I believe
> this is due to:
>
> http://bugs.squid-cache.o
All,
In the run-up to the first big England game in that "World Cup" thing,
I've been asked to limit bandwidth related to streaming video. As
background, all connections on port 80/443 are forced through the proxy,
and I am aware there is nothing we can do with SSL sites other than
blocking b
mån 2010-06-21 klockan 18:21 +0200 skrev Daniel Gomez:
> How can I make Squid to ask to my webserver if a content has the same
> ETAG everytime the content is requested?
>
> I have Squid in front of a Plone. When a user checks a web as
> anonymous and then logs-in and checks the same page, keeps s
mån 2010-06-21 klockan 21:50 +0600 skrev Eugene M. Zheganin:
> However, this doesn't solve the service outage, which I have to handle
> manually, for example raising the priority on the backup node.
What kind of service failure do you need manual action?
> Linux has carp implementation too, so
Hi,
We are currently running Squid 2.6 out of the RHEL 5.5 repos. We use
WebSense to filter web traffic which communicates with Squid via a
redirector plugin. HTTP blocking works fine, but when users try to
access a HTTPS page that is blocked, in IE7, the user gets a generic
"The Page Cannot Be
How can I make Squid to ask to my webserver if a content has the same
ETAG everytime the content is requested?
I have Squid in front of a Plone. When a user checks a web as
anonymous and then logs-in and checks the same page, keeps seen it as
Anonymous; but If the user refresh the site then can se
mån 2010-06-21 klockan 11:02 -0500 skrev Baird, Josh:
> Agreed. Heartbeat is likely the easiest way to achieve your
> active/passive desired configuration. If you want to introduce load
> balancing, you can take a look at LVS for Linux or a more expensive,
> hardware based solution like F5's BigI
Agreed. Heartbeat is likely the easiest way to achieve your active/passive
desired configuration. If you want to introduce load balancing, you can take a
look at LVS for Linux or a more expensive, hardware based solution like F5's
BigIP.
Josh
-Original Message-
From: Henrik Nordström
mån 2010-06-21 klockan 14:11 +0100 skrev Nick Cairncross:
> One thing though is that I'm not wanting to NLB - just have the failover
> capability if I want it. Does your setup still allow that?
Then you only need heartbeat with a VIP for each client VLAN.
Regards
Henrik
Hi.
21.06.2010 18:08, Nick Cairncross wrote:
Using the config tool of the proxies, you set the priority of each 'home' VIP
as 100 and the other site as 50. This means they act on each site, servicing
requests etc. However, should one proxy fail I can raise the priority of the
other so that it
Henrik,
See answers:
>> Why two VIP and how do clients select which VIP they should connect to?
DHCP scopes for each VLAN are configured with the options for the
auto-discovery proxy (i.e. 172.16.10.7). They are using NTLM at the moment so
hostname is not a problem. Moving to Kerberos though wi
mån 2010-06-21 klockan 13:08 +0100 skrev Nick Cairncross:
> Hi All,
>
> I'm just looking into clustering Squid and wanted to see what experiences
> people have had.
>
> Currently we have two non-Squid proxies on two different sites. Each has a
> virtual IP (the VIP network is extended over the
On 18.06.10 13:04, Luis Daniel Lucio Quiroz wrote:
> Subject: [squid-users] 301 too slow
>
> 1276884097.596 217345 192.168.1.190 TCP_MISS/301 597 GET
> http://www.imf.org/external/news - DIRECT/204.180.229.21 text/html
>
>
> 1276883011.245 206200 192.168.1.190 TCP_MISS/301 514 GET http://www.im
mån 2010-06-21 klockan 19:11 +1000 skrev Rob Price:
> I have authentication via negotiate_kerb_auth working a charm, with a
> secondary helper for basic via ntlm_auth
>
> This works a charm. However the negotiate_kerb_auth helper only supports
> NTLMv2 and this causes some applications, mostly We
Hi All,
I'm just looking into clustering Squid and wanted to see what experiences
people have had.
Currently we have two non-Squid proxies on two different sites. Each has a
virtual IP (the VIP network is extended over the two sites) and a physical IP
(though different VLANs)
Site A: VIP 172.
> Mathus
>
> The ACL is
> acl ftp_port port 21
> acl ftp_access src 10.202.2.221/255.255.255.255
> acl CONNECT method CONNECT
> http_access allow CONNECT ftp_access ftp_port
>
> Regards
> Tej
>
> On Mon, Jun 21, 2010 at 3:40 PM, Matus UHLAR - fantomas
> wrote:
>> On 16.06.10 19:25, Tejpal Amin wro
Mathus
The ACL is
acl ftp_port port 21
acl ftp_access src 10.202.2.221/255.255.255.255
acl CONNECT method CONNECT
http_access allow CONNECT ftp_access ftp_access
Regards
Tej
On Mon, Jun 21, 2010 at 3:40 PM, Matus UHLAR - fantomas
wrote:
> On 16.06.10 19:25, Tejpal Amin wrote:
>> I have addedd t
Henrik Thank you so much.
regards,
Bilal
> From: hen...@henriknordstrom.net
> To: gi...@msn.com
> CC: squid-users@squid-cache.org
> Date: Mon, 21 Jun 2010 10:59:45 +0200
> Subject: RE: [squid-users] Confusion regarding regex
>
> mån 2010-06-21 klockan
On 16.06.10 19:25, Tejpal Amin wrote:
> I have addedd teh following lines to my squid.conf
> acl FTP_PORT port 21
> acl src x.x.x.x/255.255.255.255
> http_access allow CONNECT ftp_access ftp_acces
what are ftp_access and ftp_acces ACLs? I don't see them defined.
> the followig is output in my acc
I have authentication via negotiate_kerb_auth working a charm, with a
secondary helper for basic via ntlm_auth
This works a charm. However the negotiate_kerb_auth helper only supports
NTLMv2 and this causes some applications, mostly Web Conferencing
applications, Live Meeting, WebEx etc, to fail
mån 2010-06-21 klockan 13:54 +0600 skrev Eugene M. Zheganin:
> use squid mostly because of it powerful authorization capabilities), but
> the swap.state during some "bad" conditions can eat entire slice, no
> matter how big it is - 40 Gigs, 80 Gigs, on one server I saw swap.state
> of 120 Gigs.
mån 2010-06-21 klockan 06:25 + skrev GIGO .:
> Hi Amos,
>
> There is still some confusion regarding regex and any help will be great
> please.
>
>
> you told that squid uses posix regex but is it BRE or ERE???
Extended.
> as for ERE according to my best understanding special characters
Hi.
I'm using squid caches since long time for now, I have production caches
running 2.7.x, 3.0.x and 3.1.x.
About a year/year and a half ago I started to encounter a problem when
squid eats the entire slice for it's swap.state file.
I still cannot localize this problem, the only thing I know -
32 matches
Mail list logo
