HI ,
Sokvantha wrote
did u find a solution for your problem ??
regards
-
Dr.x
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/wccp2-does-not-working-tp4659056p4663050.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Just to make sure I understood:
How many boxes do you have?
what is VPN and what is SQUID?
You do understand that there is no way to run TPROXY on amaozn safely??
So leave TPROXY out of sight for now.
If you have two machines it's another story.
if you do have one machine then what is the:
ip
1383254455.257 4846 x.x.x.x TCP_MISS_ABORTED/000 0 GET
http://imgcdn.ptvcdn.net/pan_img/appDownload/PandoraService/Service_Info.xml
hi , i use rock with smp and i a have very low hit ratio !!!
also i have logs of :
TCP_MISS_ABORTED
as an example :
1383254455.257 4846 x.x.x.x
Eliezer Croitoru eliezer at ngtech.co.il writes:
Just to make sure I understood:
How many boxes do you have?
what is VPN and what is SQUID?
You do understand that there is no way to run TPROXY on amaozn safely??
So leave TPROXY out of sight for now.
If you have two machines it's another
I experiment with use SNMP for limited client traffic in real time.
I have problem with zeroed values SNMP after /etc/init.d/squid3 -k
reload (time to time). Before reload I do /usr/sbin/squid -k check
and do not have any errors or warnings.
I understood command restart does zeroed values SNMP,
On 1/11/2013 5:11 p.m., Lennert Rienau wrote:
Hi,
i want squid to create dynamic ssl certificates in intercept mode, which works,
but squid uses ip-addresses for the certificates of the site, not the host name.
Does anybody know why this happens?
Because you use client-first bumping on
On 1/11/2013 10:36 a.m., Dr.x wrote:
1383254455.257 4846 x.x.x.x TCP_MISS_ABORTED/000 0 GET
http://imgcdn.ptvcdn.net/pan_img/appDownload/PandoraService/Service_Info.xml
hi , i use rock with smp and i a have very low hit ratio !!!
also i have logs of :
TCP_MISS_ABORTED
as an example :
On 1/11/2013 9:32 p.m., Kirill Kamyshnikov wrote:
I experiment with use SNMP for limited client traffic in real time.
I have problem with zeroed values SNMP after /etc/init.d/squid3 -k
reload (time to time). Before reload I do /usr/sbin/squid -k check
and do not have any errors or warnings.
I
Hi All,
I have configured a list of blacklist URLs.
One of these is set to (\.*)\.yahoo\.com
Now if i try to access URLs http://mail.yahoo.com from my browser, it blocks.
But if i try to access http://www.yahoo.com, it allows.
If i try to test the regular expression on
We want to block URLs like mail.yahoo.com, but not yahoo.com.
Using dstdom_regex acl for this.
Regards
On Fri, Nov 1, 2013 at 4:01 PM, Sachin Gupta ching...@gmail.com wrote:
Hi All,
I have configured a list of blacklist URLs.
One of these is set to (\.*)\.yahoo\.com
Now if i try to
On 11/01/2013 10:30 AM, WorkingMan wrote:
I am not using TPROXY. VPN/SQUID are two different servers.
OK now you mangled everything!!
try to start from scratch which means design.
Put the VPN on the same squid server or retry to design the network in a
way it will work.
Once you will prepare
On 1/11/2013 11:36 p.m., Sachin Gupta wrote:
We want to block URLs like mail.yahoo.com, but not yahoo.com.
Using dstdom_regex acl for this.
Regards
On Fri, Nov 1, 2013 at 4:01 PM, Sachin Gupta ching...@gmail.com wrote:
Hi All,
I have configured a list of blacklist URLs.
One of these is set
hi amos,
i pumped about 500 users and it gave horrible result and slow browsing and
youtube interrupt
i estimated the interrupt time when watching youtube and i found it relative
to TCP_MISS_ABORTED
again , i have no NAtting in my network .
i
where should start troubleshoot ??
is there
Hey there,
Can you describe the network setup in more details?
The first thing I will try is to use RAM only on the server to make sure
that the source of the problem is not the squid INSTANCE\PROCESS by it
self and also that the CPU can handle this traffic.
After thist test you will be able
I am using Squid 2.7 on a Debian box for several years without any
problem. Without changing the configuration (only doing the necessary
system updates), the user authentication is not longer working as
expected. I activated two authentication schemes (squid_kerb_auth and
pam_auth). While Kerberos
Because you use client-first bumping on intercepted traffic.
The only details Squid has at that point are the IP address and port the
clients ws connecting to.
You need server-first bumping to contact the server and find out what
domain(s) its certificate indicate.
Thank you for your
Eliezer Croitoru-2 wrote
hi ,
thanks alot
i tested without SMP and it gave the same problem !!!
as i remember the last time i changed squid location on sub-interference
not on physical interface of router !
but note that when i use ip squid:port in my browser remotely there is no
interrupt
hi ,
from cache manager we have top ten sites ,
my question is how to let squid optimize those sites ??
as an example , i mean how to let squid use cache mem for cahcing them not
use cache dir ???
in my opinion getting from ram is better than getting from cachd disk
is there some
hi ,
in smp , im trying to let the acl load on a specific process , i mean that
the acl verification watse alot of cpu , and i think that if i use a
specific process for acl verification will make a loabd balance of
squid.conf on my multi process.
here is my config
:
i cant sart squid !!!
Eliezer Croitoru eliezer at ngtech.co.il writes:
On 11/01/2013 10:30 AM, WorkingMan wrote:
I am not using TPROXY. VPN/SQUID are two different servers.
OK now you mangled everything!!
try to start from scratch which means design.
Put the VPN on the same squid server or retry to design the
On 11/01/2013 08:34 AM, Lennert Rienau wrote:
Because you use client-first bumping on intercepted traffic.
The only details Squid has at that point are the IP address and port the
clients ws connecting to.
You need server-first bumping to contact the server and find out what
domain(s) its
On 11/01/2013 01:26 PM, Dr.x wrote:
from cache manager we have top ten sites ,
my question is how to let squid optimize those sites ??
as an example , i mean how to let squid use cache mem for cahcing them not
use cache dir ???
You may experiment with the memory_cache_mode
On 2/11/2013 9:39 a.m., Dr.x wrote:
hi ,
in smp , im trying to let the acl load on a specific process , i mean that
the acl verification watse alot of cpu , and i think that if i use a
specific process for acl verification will make a loabd balance of
squid.conf on my multi process.
ACL do
On 11/01/2013 02:39 PM, Dr.x wrote:
in smp , im trying to let the acl load on a specific process , i mean that
the acl verification watse alot of cpu ,
ACL verification _wastes_ CPU only if you do not need those ACLs to be
verified. If that is the case, simply remove them. In all other cases,
Alex Rousskov wrote
On 11/01/2013 01:26 PM, Dr.x wrote:
from cache manager we have top ten sites ,
my question is how to let squid optimize those sites ??
as an example , i mean how to let squid use cache mem for cahcing them
not
use cache dir ???
You may experiment with the
Alex Rousskov wrote
On 11/01/2013 02:39 PM, Dr.x wrote:
in smp , im trying to let the acl load on a specific process , i mean
that
the acl verification watse alot of cpu ,
ACL verification _wastes_ CPU only if you do not need those ACLs to be
verified. If that is the case, simply remove
On 2/11/2013 9:42 a.m., WorkingMan wrote:
Eliezer Croitoru eliezer at ngtech.co.il writes:
On 11/01/2013 10:30 AM, WorkingMan wrote:
I am not using TPROXY. VPN/SQUID are two different servers.
OK now you mangled everything!!
try to start from scratch which means design.
Put the VPN on the
On 2/11/2013 1:36 p.m., Dr.x wrote:
Alex Rousskov wrote
On 11/01/2013 01:26 PM, Dr.x wrote:
from cache manager we have top ten sites ,
my question is how to let squid optimize those sites ??
as an example , i mean how to let squid use cache mem for cahcing them
not
use cache dir ???
On 2/11/2013 1:42 p.m., Dr.x wrote:
Alex Rousskov wrote
On 11/01/2013 02:39 PM, Dr.x wrote:
in smp , im trying to let the acl load on a specific process , i mean
that
the acl verification watse alot of cpu ,
ACL verification _wastes_ CPU only if you do not need those ACLs to be
verified. If
On 1/11/2013 6:30 a.m., WorkingMan wrote:
TPROXY is not routing. It is packet interception, taking a packet from
the kernel TCP stack and delivering it to a local process running on
that machine. Taking packets from that same local process marked with a
special TPROXY flag and allowing them to
30 matches
Mail list logo
