On 01/02/11 19:27, Saurabh Agarwal wrote:
Hi All
I am running Squid as a transparent proxy and can't authenticate to sharepoint
server. If I bypass squid then everything works fine.
I have not compiled Squid with any of the authentication related configurables
--enable-auth="basic,digest,ntlm
On 01/02/11 16:29, Pandu Poluan wrote:
Hello,
I want to configure SQUID as a transparent proxy, but on a separate
box from the Linux gateway (both boxes using Ubuntu Server 10.04)
I found this howto: http://www.faqs.org/docs/Linux-mini/TransparentProxy.html
Now, my questions are:
1. Is the ho
Hi All
I am running Squid as a transparent proxy and can't authenticate to sharepoint
server. If I bypass squid then everything works fine.
I have not compiled Squid with any of the authentication related configurables
--enable-auth="basic,digest,ntlm,negotiate"
--enable-basic-auth-helpers="LD
On 01/02/11 16:28, Qvalpro Solutions wrote:
Hi Amos,
Thanks for the response.
I tried using:
https_port 443 accel defaultsite=ccapi.client.qvalent.com
cert=C:\certificate\mycert.pem
cache_peer ccapi.client.qvalent.com parent 443 0 no-query login=PASS
ssl sslcert=C:\payway\ccapi.pem
The transac
On 01/02/11 16:01, John Treen wrote:
Hi Everyone,
I am having trouble getting WSUS 3.0 to communicate through Squid when
using NTLM authentication. Back in early 2009 I did some testing and
determined that 2.6.STABLE5 appears to be the last version that WSUS
would successfully communicate throug
On 01/02/11 16:30, Senthilkumar wrote:
Hi Amos,
Thanks for your response.
By using kerberos instead of ntlm scheme can the pop up occurring rarely
can be fixed?
I don't know the answer to that until we find out what your problem was
exactly.
Negotiate has less complexity than NTLM so in th
On 01/02/11 17:06, Pandu Poluan wrote:
Hello again!
I have 2 questions regarding SQUID peering:
Q1: Should I use ICP or HTCP?
If you have a choice HTCP.
The packets are slightly bigger than ICP (they contain HTTP headers not
just URLs) but the false-positives are much lower and thus routing
Hello again!
I have 2 questions regarding SQUID peering:
Q1: Should I use ICP or HTCP?
Q2: I plan on deploying 2 SQUID boxes in my LAN, say "A" and "B". They
will peer with each other (sibling). I also have another SQUID at our
ISP, say "C". I want only "A" to have "C" as the parent, "B" will ha
Hi Amos,
Thanks for your response.
By using kerberos instead of ntlm scheme can the pop up occurring rarely
can be fixed?
Thanks
Senthil
Amos Jeffries wrote:
On 31/01/11 18:44, Senthilkumar wrote:
Thank you .
We are using squid 3.1.8 with 100 children for ntlm scheme. We have
about 500 us
Hello,
I want to configure SQUID as a transparent proxy, but on a separate
box from the Linux gateway (both boxes using Ubuntu Server 10.04)
I found this howto: http://www.faqs.org/docs/Linux-mini/TransparentProxy.html
Now, my questions are:
1. Is the howto (esp. sections 6.2 and 6.3) still app
Hi Amos,
Thanks for the response.
I tried using:
https_port 443 accel defaultsite=ccapi.client.qvalent.com
cert=C:\certificate\mycert.pem
cache_peer ccapi.client.qvalent.com parent 443 0 no-query login=PASS
ssl sslcert=C:\payway\ccapi.pem
The transactions still did not work and when I checked th
Hi Everyone,
I am having trouble getting WSUS 3.0 to communicate through Squid when
using NTLM authentication. Back in early 2009 I did some testing and
determined that 2.6.STABLE5 appears to be the last version that WSUS
would successfully communicate through the proxy using NTLM.
Yesterday
On Tue, 1 Feb 2011 10:56:55 +1100, Jobst Schmalenbach wrote:
> Hi.
>
> If I setup squid as a transparent proxy, a lot of traffic
> goes through it including the following example:
>
> This is an entry from a flash application that is part of a music
station
> called "novafm".
>
> 1296479934.62
On Thu, 27 Jan 2011 11:31:21 -0800, Anthony Saenz wrote:
> I'm sure this has been brought up tons of times before but I simply
> can't find the answer... My current setup is as follows:
>
> PC -> HAProxy -> Squid -> The World
>
> The reason why I'm using HAProxy is for development environment
>
On Sun, 30 Jan 2011 15:25:56 -1000, Jean-Denis Girard
wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hi list,
>
> I have an old installation using squid-2.6.STABLE23 with ntlm_auth for
> Windows XP users belonging to a group; it works like a charm, but I want
> to upgrade it for va
Hi.
If I setup squid as a transparent proxy, a lot of traffic
goes through it including the following example:
This is an entry from a flash application that is part of a music station
called "novafm".
1296479934.621125 192.168.0.241 TCP_MISS/200 934 POST
http://220.233.2.215:443/idle/G
On Mon, 31 Jan 2011 17:35:02 +, "Gonzalo Morera"
wrote:
> Thanks Chad
>
> I'll follow this instructions
>
>
>
> Gonzalo
>
>
"Chad Naugle" 31-01-2011 >>>
> You need to move all of your "deny" lines *before* your "allow" lines,
> otherwise you will get the popup.
>
> FYI, if you pla
On Mon, 31 Jan 2011 10:57:57 +0100, "Jack Falworth"
wrote:
> Hi squid-users,
>
> I have a question regarding the TCP send/receive buffer size Squid uses.
> For my high-performance setup I increased both buffer sizes on my Ubuntu
> 10.04 system. Unfortunately I found out that Squid 2.7 (as well as
On 01/02/2011, at 12:50 AM, Chad Naugle wrote:
> Is the cache_peer parent, also 3.1.10 or another type of proxy?
>
This is running in a test environment so I have tried a few different parents
but the result is always the same. I have tried squid-3.0.STABLE19,
squid-3.1.10 and ISA2006 as the p
On Mon, 31 Jan 2011 19:59:55 +0100, Tobias Reckhard
wrote:
> Hi
>
> I'm having a bit of trouble implementing a Squid3 reverse HTTPS proxy
> for, among others, phpmyadmin. The initial connection to the phpmyadmin
> login page using HTTPS works fine, but after I enter my credentials,
> phpmyadmin r
On Mon, 31 Jan 2011 16:20:45 +1030, Michael Hendrie
wrote:
> Hello List,
>
> I need to use a version with connection pinning and was hoping to use
> 3.1.10 but I've run into a problem using a cache_peer that requires NTLM
> authentication. In my tests I'm able to get 3 authenticated requests
> t
On 01/02/11 09:01, Qvalpro Solutions wrote:
Hi Amos,
Thanks for the detailed response. I tried configuring Squid, but
couldn't get it working yet.
Can you please elaborate "You setup Squid as a reverse-proxy and make
old billing application believe Squid is the Payway system. Usually
via DNS".
Hi Amos,
Thanks for the detailed response. I tried configuring Squid, but
couldn't get it working yet.
Can you please elaborate "You setup Squid as a reverse-proxy and make
old billing application believe Squid is the Payway system. Usually
via DNS". Sorry if this sounds dumb.
Steps followed by
On Sun, Jan 30, 2011 at 3:37 PM, Amos Jeffries wrote:
> On 31/01/11 07:09, Yang Zhang wrote:
>>
>> On Fri, Jan 28, 2011 at 3:59 PM, Amos Jeffries
>> wrote:
>>>
>>> On 29/01/11 07:06, Yang Zhang wrote:
I was confused by your reply until I realized that in my email I
managed to omit
Hi
I'm having a bit of trouble implementing a Squid3 reverse HTTPS proxy
for, among others, phpmyadmin. The initial connection to the phpmyadmin
login page using HTTPS works fine, but after I enter my credentials,
phpmyadmin redirects my browser to http://, using a "302 Moved
Temporarily" code and
Thanks Chad
I'll follow this instructions
Gonzalo
>>> "Chad Naugle" 31-01-2011 >>>
You need to move all of your "deny" lines *before* your "allow" lines,
otherwise you will get the popup.
FYI, if you plan on using eDirectory 8.8 based IP->User, I wrote a
C-based program for that, which is b
You need to move all of your "deny" lines *before* your "allow" lines,
otherwise you will get the popup.
FYI, if you plan on using eDirectory 8.8 based IP->User, I wrote a
C-based program for that, which is bundled with Squid 3.2-BETA, instead
of using a perl script. You can probably just build 3
Hi all
After solving the squid_ldap_group issue, i'm still facing a little one with
users that are transparently authenticate thru a pl script against edirectory.
I've got this line:
external_acl_type IPUser ttl=7200 %SRC /etc/squid/squid_edir_iplookup.pl
(IPUser method)
squid_edir_iplookup.pl
In case somebody is interested, indeed changing the query made it work. Now
username/password in the browser works fine and users are correctly
authenticated
Thanks
Gonzalo
>>> Gonzalo Morera 31/1/2011 11:24 AM >>>
I've found an old post taking about edirectory, so i modified the query li
Is the cache_peer parent, also 3.1.10 or another type of proxy?
>>> Michael Hendrie 1/31/2011 12:50 AM >>>
Hello List,
I need to use a version with connection pinning and was hoping to use
3.1.10 but I've run into a problem using a cache_peer that requires NTLM
authentication. In my tests I'm a
On 31/01/11 18:44, Senthilkumar wrote:
Thank you .
We are using squid 3.1.8 with 100 children for ntlm scheme. We have
about 500 users and around 75 req/sec.
In the cache log rarely we see 100 pending ntlm requests and that time
squid reconfigures automatically.
Is it default behaviour of squid
I've found an old post taking about edirectory, so i modified the query like
that:
usr/sbin/squid_ldap_group -Z -D cn=squid,o=laboratorio -w "novell" -b
o=laboratorio -s sub -f
"(&(objectClass=User)(cn=%u)(groupMembership=cn=%g,o=laboratorio))" -h
192.168.0.205 -p 389
and now just entering
We have an ISP deployment in which we reach performance limits in Squid, so
we try to tune anything possible to get more performance.
I would like to know if there is a reason why this check has been implemented
(e.g. possible side-effects, etc.) or that it can be removed safely.
Upgrading to sq
i dont know how high performance your system is but i think you can try
the new version 3.1.10 on your system and after you will get real
performance
issues you can try to recompile it with less strick option.. or .. just
compile one with limit and one without limit and change the binary if
you
Hi squid-users,
I have a question regarding the TCP send/receive buffer size Squid uses.
For my high-performance setup I increased both buffer sizes on my Ubuntu 10.04
system. Unfortunately I found out that Squid 2.7 (as well as 3.x) limits the
receive buffer to 64K and the send buffer to 32K in
I saw now that if i enter the query on the bash:
usr/sbin/squid_ldap_group -Z -D cn=squid,o=laboratorio -w "novell" -b
o=laboratorio -s sub -f "(&(objectClass=User)(cn=%u)(groupMembership=%g))" -h
192.168.0.205 -p 389
when cursor blinks i enter:
username group
Then i've got squid_ldap_group
Hi all
After getting familiar with the squid_ldap_auth, i'm still having some issues
with squid_ldpa_groups.
I'm getting familiar with squid acl ( i've been working last years with novell
bordermanager what is quiet different) and i can not make it work
I've got two groups, internet_r and intern
On 31/01/11 17:38, Deepak Rao wrote:
Hi,
I am trying to run the squidclient command 'squidclient -p 443
mgr:info', but this is failing.
Is there a way to run the command over SSL port? My squid setup
(reverse proxy) has only port 443 open& no non-ssl port is open.
Please s
38 matches
Mail list logo