I think the easiest way to find out with which version of openssl was
link squid is to use ldd
# ldd /usr/sbin/squid | grep ssl
libssl.so.10 = /usr/lib64/libssl.so.10 (0x7ff8b13d6000)
On Wed, May 22, 2013 at 8:42 AM, Eliezer Croitoru elie...@ngtech.co.il wrote:
On 5/22/2013 8:20 AM,
Hi,
I've read a lot of post about kerberos and load balancers, but I don't have
clear the configuration. I have work one squid with kerberos, but now I want
balance the service. I think that correct configuration is:
1º - Create a account o computer acount in AD
loadbalancer.abg.local
On 5/22/2013 10:20 AM, Alex Domoradov wrote:
I think the easiest way to find out with which version of openssl was
link squid is to use ldd
# ldd /usr/sbin/squid | grep ssl
libssl.so.10 = /usr/lib64/libssl.so.10 (0x7ff8b13d6000)
From mine.
# ldd /usr/sbin/squid |grep ssl
Hi,
If I understand correctly, you've created a account for all squid and one
for balance service, and you've associated the SPN of balance service for
all squid account. Is this correct? Aren't there problems with ducplicat SPN
in AD?
A lot of thanks.
--
View this message in context:
I'm trying to setup a squid proxy that will accept multiple inbound
connections on one IPv4 across a range of ports, and for each port
connection to connect out on a unique IPv6 address.
I've named each port connection, and designated an ACL based on the
connection name, and then I've tried to
On 2/28/2013 2:57 PM, Sean Boran wrote:
Hi,
I’ve received (kemp) load balancers to put in front of squids to
provide failover.
The failover / balancing works fine until I enable Kerberos auth on the squid.
It seems to me like a basic LB problem since it's working on L7 and not L2.
Why do you
On 22/05/2013 8:47 p.m., bilderberger wrote:
I'm trying to setup a squid proxy that will accept multiple inbound
connections on one IPv4 across a range of ports, and for each port
connection to connect out on a unique IPv6 address.
I've named each port connection, and designated an ACL based on
I have similar issue. Try to upgrade at least to squid-3.2
On Wed, May 22, 2013 at 11:47 AM, bilderberger
marketqu...@googlemail.com wrote:
I'm trying to setup a squid proxy that will accept multiple inbound
connections on one IPv4 across a range of ports, and for each port
connection to
On 5/22/2013 11:47 AM, bilderberger wrote:
Can anyone see what I've done wrong here? (using Squid 3.1.1 on Centos 6
64bit)
[squid]
name=Squid repo for CentOS Linux 6 - $basearch
baseurl=http://www1.ngtech.co.il/rpm/centos/6/$basearch
failovermethod=priority
enabled=1
gpgcheck=0
or
[squid]
On 2/6/2013 11:49 PM, Alex Rousskov wrote:
mos, bug 3763 is not about setuid(0) warnings, although both bugs may
have been caused by the same Coverity-inspired motivation to check the
return values of system calls.
Simone, yes, I think you should report the setuid warning bug. If you
do, please
On Mon, 13 May 2013 12:47:31 +0500
Farooq Bhatti wrote:
Hi Amos,
I got it; the problem is bug in squid. As it is required to define
the policy before cache_dir in squid.conf.
IMO it's a feature rather than a bug.
If you take a look at the output of squidclient mgr:storedir you
posted,
On 23/05/2013 12:10 a.m., RW wrote:
On Mon, 13 May 2013 12:47:31 +0500
Farooq Bhatti wrote:
Hi Amos,
I got it; the problem is bug in squid. As it is required to define
the policy before cache_dir in squid.conf.
IMO it's a feature rather than a bug.
Er, uhm, yes I'll go with that one. ;-)
On May 22, 2013, at 03:39 , Eliezer Croitoru wrote:
On 5/22/2013 10:20 AM, Alex Domoradov wrote:
I think the easiest way to find out with which version of openssl was
link squid is to use ldd
# ldd /usr/sbin/squid | grep ssl
libssl.so.10 = /usr/lib64/libssl.so.10
Hi All,
I would like to setup RTSP proxy server on Fedora.Is it possible to enable
RTSP service in exsting squid proxy server? if not please guide me to setup
RTSP proxy server.
Regards
Rajesh
---
Robosoft Technologies - Come home to Technology
On 5/22/2013 5:01 PM, Chris Ross wrote:
From mine:
libssl.so.10 = /usr/lib64/libssl.so.10 (0x7f08f8eb2000)
I think that last number is simply a memory address, so it could be located
at a variety of different places depending on how squid was linked. Using
different
On May 22, 2013, at 11:32 , Eliezer Croitoru wrote:
Hey Chris,
Now I remembered in a more detailed way that the reason was the crtd and no
ssl which is another thing.
I didn't used the crtd since there is a bug and also since most users don't
really need it.
OK so we have the same
On 5/22/2013 6:40 PM, Chris Ross wrote:
On May 22, 2013, at 11:32 , Eliezer Croitoru wrote:
Hey Chris,
Now I remembered in a more detailed way that the reason was the crtd and no ssl
which is another thing.
I didn't used the crtd since there is a bug and also since most users don't
really
Hello all, I have the following squid.conf
acl parent_squid peername PARENT_SQUID
acl FILE_TO_CACHE urlpath_regex \.(zip|iso|rar)$
acl TEST dstdomain storage.example.net
cache_peer 192.168.100.50 parent 3128 3130 name=PARENT_SQUID connect-timeout=7
cache_peer_access 192.168.100.50 allow TEST
On 5/22/2013 7:11 PM, Alex Domoradov wrote:
Hello all, I have the following squid.conf
acl parent_squid peername PARENT_SQUID
acl FILE_TO_CACHE urlpath_regex \.(zip|iso|rar)$
acl TEST dstdomain storage.example.net
cache_peer 192.168.100.50 parent 3128 3130 name=PARENT_SQUID connect-timeout=7
In addition you need to add an option to squid_kerb_auth -s GSS_C_NO_NAME
otherwise the module will expect a HTTP/proxy-name
Markus
SPG spggps...@gmail.com wrote in message
news:1369208281267-4660187.p...@n4.nabble.com...
Hi,
I've read a lot of post about kerberos and load balancers, but I
On 05/22/2013 06:10 AM, RW wrote:
On Mon, 13 May 2013 12:47:31 +0500
Farooq Bhatti wrote:
I got it; the problem is bug in squid. As it is required to define
the policy before cache_dir in squid.conf.
IMO it's a feature rather than a bug.
It is a bug with side effects that some may [ab]use
Hi,
then, with this option you don't need create an account for all squids
servers and duplicate spn in each account of squid. Only need a account for
load balancer service. I question it, because I read this post in the
morning and I have doubts . Is it true?
On Wed, May 22, 2013 at 12:46:08PM +0300, Eliezer Croitoru wrote:
On 2/28/2013 2:57 PM, Sean Boran wrote:
Hi,
Ive received (kemp) load balancers to put in front of squids to
provide failover.
The failover / balancing works fine until I enable Kerberos auth on the
squid.
It seems to me
23 matches
Mail list logo
