Hi
I do intercept traffic using iptables, problem is same config works
for squid 3.1.2, I did remove all access rules and ended up with the
config below but I still get an access denied error.
always_direct allow all
ssl_bump allow all
sslproxy_cert_error allow all
http_port 0.0.0.0:80 transpare
Hi,
I would like to block teamviewer traffic i tried it with ips but also
like to make any restriction possible on squid. By the time the
program versions changes this kind of configuration changes so id like
to post this current mail for your help.
Regards
* Amos Jeffries :
> # host www.vkontakte.ru
> www.vkontakte.ru has IPv6 address 2a00:bdc0:3:103:1:0:403:908
> www.vkontakte.ru has IPv6 address 2a00:bdc0:3:103:1:0:403:909
> www.vkontakte.ru has IPv6 address 2a00:bdc0:3:103:1:0:403:900
> www.vkontakte.ru has IPv6 address 2a00:bdc0:3:103:1:0:403:90
Squid's TPROXY sockets only seem to bind to the IPv4 stack - Some
Googling suggests it can be made to work with IPv6, but I've not found
anything explaining how. What am I missing?
Thanks.
--
- Steve Hill
Technical Director
Opendium Limited http://www.opendium.com
Direct contac
Hi,
Is it possible, with any version of squid, to identify REAL SSL
connections using CONNECT method ? The idea is blocking some softwares
thattunnel connections, through squid and on 443 ports, but are not real
SSL connections, like Skype and other P2P softwares.
I would like t
I'm trying to understand the purpose of the tproxy_uses_indirect_client
configuration directive and how to use it.
Given the following scenario:
A client (192.168.1.50) is sat behind a transparent proxy (lets call it
"proxy A" - 192.168.2.1). Proxy A has a parent proxy ("proxy B" -
192.16
Hey,
Take a look at NDPI ODPI.
you can find info on it in netfilter mailing list.
They have an option to identify teamviewer connections and filter\block
them.
It's much better and faster then squid.
Regards,
Eliezer
On 12/20/2012 11:15 AM, a bv wrote:
Hi,
I would like to block teamviewer t
Hey,
Why not to blame the proxy? it can be the source of the problem.
If you are willing to explain more about the environment and maybe with
a simple network diagram where every device and system is on the map it
will simplify things.
Regards,
Eliezer
On 12/18/2012 8:06 PM, dweimer wrote:
Hey there,
Squid is a http\https proxy and is not suited for Mysql and other
software which is not compatible with CONNECT method.
Try to search for Mysql Proxy which I think available on mysql db site
and others as well.
Regards,
Eliezer
On 12/20/2012 2:55 PM, wrote:
Hello,
I have taken
W dniu 2012-12-20 10:48, Steve Hill pisze:
Squid's TPROXY sockets only seem to bind to the IPv4 stack - Some
Googling suggests it can be made to work with IPv6, but I've not found
anything explaining how. What am I missing?
Thanks.
Search the list archives.
I posted working config for ipv
Hi
I did miss to point out an important factor, the server is a remote
transparent proxy, in other words
my pc "uses a custom dns to point certain sites to proxy server" --
Internet Gateway Transparent proxy with public IP and redirect
port 80 to proxy
Regards
On Thu, Dec 20, 2012 at 11:05
On 20.12.12 13:58, Paweł Mojski wrote:
Search the list archives.
I posted working config for ipv6 few months ago.
Thanks - I found your config:
http://www.squid-cache.org/mail-archive/squid-users/201206/0281.html
It didn't explain how it could work when Squid only binds the tproxy
socket to t
Try to start from scratch what you are doing what are your settings?
If you have access denied you should look at the access.log.
What do you have there?
I dont think it's squid issue but another thing on the way but we cannot
even try helping you with the basic logs needed.
Regards,
Eliezer
O
I just upgraded from 2.7STABLE9 to 3.2.5, and now I'm battling a memory leak.
Squid Cache: Version 3.2.5
configure options: '--prefix=/local/proxy/squid' '--with-maxfd=8192'
'--with-pthreads' '--enable-storeio=aufs' '--enable-removal-policies=heap'
'--enable-cache-digests' '--enable-delay-pools
I used cachemgr.cgi and looked at the memory utilization.
My first four rows are:
PoolAllocatedIn
Use
(#)(KB)
(#)(KB)
cbdata IdentStateData (21) 1088861
I've been using squid 2.6.STABLE5 for a long time. Now, I'm upgrading
to 3.1.19 (Ubuntu 12.04). On my previous setup i've used ldap_auth
(with basic authentication) and after tuning my configuration I made
it work for squid3.
But now I have a problem with some (allowed) sites that load some
(forbi
Hi,
the URL
http://www.gliffy.com/products/confluence-plugin/download/archive/gliffy-confluence-plugin-5.0.3.jar
Consistently gives the error:
ICAP protocol error.
The system returned: [No Error]
This means that some aspect of the ICAP communication failed.
Some possible problems are:
The ICAP se
17 matches
Mail list logo
