Hi,
we have been using squid 3.2.x for some time together with sslpassword_program
to be able to use password proteced ssl keys.
However, when I tried squid 3.3.1 and 3.3.3 this seems to work no longer. Due
to the documentation, the path to the ssl key is given as parameter to the
program -
3) Can i use multiple SSL certificates for proxy like i can do in
apache?
How do you do it in Apache? what version of Apache? what version of Squid?
can you change your version of Squid if it is too old? - these are
critical
information which you have omitted.
Amos
Hi Amos,
i just
On 27/03/2013 5:49 p.m., Mark Davies wrote:
On Wed, 27 Mar 2013, Amos Jeffries wrote:
Squid has a partial implementation of happy eyeballs added to 3.2+
which performs the parallel DNS lookup portion of the algorithm
but does not perform the parallel v6+v4 SYN portion which halves
the server
On 27/03/2013 1:13 p.m., Ed W wrote:
Hi Andy, Sorry to bug you, but I finally got round to trying the
qos_flows feature and I think my understanding is completely back to
front?
What I need is to copy the packet/connection mark from the client
request, and apply it to the upstream request.
we have a problem with one live-streaming video. The video itself is in a flash
player, server is helix.
The problem is, that at one location the video aborts after 1 or 2 minutes,
even the browser hangs, so there is only one way to restart.
Environment: IE 8 with flash player. At the location
On 27/03/2013 6:09 a.m., Youssef Ghorbal wrote:
the cachemanager can be usefull to see the actual activity of your squid :
squidclient localhost mgr:5min
gives you the last 5 min stats. (see if the n° of req/s is coherent
with what you expect )
Here after the output of the mgr:5min
It show
Hello,
I want to install a .p12 certificate on my forwarding proxy to
authenticate all my
users to a remote website.
Is there a way to do this in Squid ?
Thanks,
Hi,
I am trying to get the new dynamic certificate generation
functionality with squid-3.3.1. After compiling and installing, when I
try to initialize the certificate db with ssl_crtd it simply does
nothing. As a result squid crashes with FATAL: The ssl_crtd helpers
are crashing too rapidly,
[…]
client-squid : 31Mbps.
[…]
Squid-server : 28Mbps
Total: 59Mbps.
Which is slightly higher than the known good performance limit for
Squid-3.1. Which is up to ~50Mbps, tuning both in Squid and the system can
reach around 100Mbps IIRC. But that sort of numbers you are looking at
On 03/26/2013 09:33 PM, Amos Jeffries wrote:
Squid has a partial implementation of happy eyeballs added to 3.2+ which
performs the parallel DNS lookup portion of the algorithm
AFAICT Squid waits for the slowest of those two parallel DNS lookups.
For example, when the query fails on some
On Wed, 27 Mar 2013, Amos Jeffries wrote:
I wrote:
In terms of actual page viewing its worse than that. It's as you
say to get the base page but then you have to repeat the wait
for any elements the page references (css, images etc) before
the browser renders the page (depending on how
On 28/03/2013 6:09 a.m., Prasanna Venkateswaran wrote:
Hi,
I am trying to get the new dynamic certificate generation
functionality with squid-3.3.1. After compiling and installing, when I
try to initialize the certificate db with ssl_crtd it simply does
nothing. As a result squid crashes
On 28/03/2013 1:08 a.m., John wrote:
Hello,
I want to install a .p12 certificate on my forwarding proxy to
authenticate all my
users to a remote website.
Is there a way to do this in Squid ?
Thanks,
Squid uses PEM format to load and pass the certificates to OpenSSL.
You need to convert the
On Wed, 2013-03-27 at 00:13 +, Ed W wrote:
Hi Andy, Sorry to bug you, but I finally got round to trying the
qos_flows feature and I think my understanding is completely back to front?
What I need is to copy the packet/connection mark from the client
request, and apply it to the
Hiya Squid Users - So I'm trying to configure Squid as a reverse
proxy, listening on port 80, in front of two web servers. One web
server runs on the localhost and listens on port 81 and contains a
subset of all website content. Then the second web server is a remote
box, listening on port 80,
On 28/03/2013 12:28 p.m., Alex Stahl wrote:
Hiya Squid Users - So I'm trying to configure Squid as a reverse
proxy, listening on port 80, in front of two web servers. One web
server runs on the localhost and listens on port 81 and contains a
subset of all website content. Then the second web
Thanks for the suggestions... although I can't tell if they work just
yet. Squid version is 3.1.10; I'm restricted in my choice here and
unfortunately cannot upgrade.
I do think the crux of my issue lies in exactly your point regarding
ACLs. Per your advice, and the write-up at the link I
17 matches
Mail list logo