Hello Gonzalo and thanks for your thoughts...
> I do not know if this is your exact issue but a checking on
> webshop dns records and a simple lan trace with tcpdump on
> squid will show if this is the issue.
As from an external DNS server (www.kloth.net) I get *one single* IP
address:
DNS s
Hello people.
I got some curious behaviour with my transparent proxy setup.
When logging into a specific online shop, I can't get that site to
maintain my logged in status. Whenever I choose a product and put it
into the basket, I get asked again to log in (web form) and when I do
log in, my bask
Alright Amos!
> > Well, maybe! But that's weird behaviour... why should my
> "protection
> > suite" scan my whole subnet on port 80?
>
> From the (marketing) docs that particular McAfee component
> is designed for admins to do network wide security with.
> Active scans are one way to do thin
Hy Amos...
[cut]
> .. or in this case, it appears, some security penetration
> testing software. Somehow installed on a users PC.
>
> > Here you can find trace: http://www.sendspace.com/file/ij5qpe
> >
>
> Sorry, that seems to be a summary packet log. Just confirms
Sorry, I just took over y
Hello again Amos, you're precious debugger of my situation! :-)
> > What you see there are some services redirected to my
> internal servers
> > and the rule for intercepting web traffic...
>
> Okay. Looks okay. The use of "eth0" replaces a specific Squid bypass.
> Squid will be using the Int
Hello Amos...
> > What does that forward loop mean
>
> Your squid is sending requests out which subsequently arrive
> back to it.
OK.
> > and how could it happen? I've noticed
>
> Most likely your NAT rules are broken. Packets leaving Squid
> MUST NOT be sent back to Squids listening port.
Hello everybody.
I ran out of space on my squid log directory because cache.log grew very
fast filled by "forward loop detected" messages.
I'm using my squid as a transparent proxy.
What does that forward loop mean and how could it happen? I've noticed
that the originating IP was from a PC I had
Hello Amos,
> I believe this is going down the wrong track focusing on IPv4
> address.
> Debian is a IPv6 serviced website.
Ah, really? Didn't know that... can you tell us more about this?
> I suspect you are using the 3.1.6 release from Debian Squeeze, yes?
I bet yes:
proxy:~# dpkg -l | gre
> -Original Message-
> From: Indunil Jayasooriya [mailto:induni...@gmail.com]
> Sent: Wednesday, February 09, 2011 11:47 AM
> To: Boniforti Flavio
> Cc: squid-users@squid-cache.org
> Subject: Re: [squid-users] Not reaching one site
>
> >
> >>
>
Hello everybody.
I'm experiencing strange error happening with my transparent proxy
setup. I'm not able to access the domain debian.org. Here's what I got
from my proxy:
proxy:~# ifconfig | grep "inet addr:"
inet addr:172.16.16.1 Bcast:172.16.16.255 Mask:255.255.255.0
inet a
Wps... I thought I already replied, but instead my mail was in the
drafts folder :-/ So here I go:
Hello Amos and thanks for your reply.
[cut]
> > 3) would I completely miss the traffic done in HTTPS in my
> webalizer
> > stats, if there'd be no way to have transparently proxied HTTPS
> >
Hello there.
I've been googling around and reading some list posts about using
transparent proxy with HTTPS (TCP 443) requests, but I didn't understand
if there *today* is a solution to it.
My goal is as follows: I want *every browser traffic* be transparently
caught by my squid proxy. None of my
Hello Glenn,
[cut]
> > Good luck, but still I confess that I *may be* switching to
> this your
> > suggestion too! ;-)
>
> Use default deny and break up the logic into chains (within
> reason). Makes things a lot easier to maintain. Did for me, anyway.
glad to share some thoughts... We will
> Remove the default gateway so nobody can get to the internet
> unless they go through the proxy. I've had my network set
> that for 9 years and nobody has ever noticed.
Well... This could be a solution I may consider...
In fact, the remote office uses VPN to connect to the HQ and to surf the
Hy Glenn
[cut]
> Aside from a few ports (SMTP, POP3, IMAP, DNS, etc. on the
> DMZ), the LAN won't be able to go anywhere. Except for me, of
> course; I can go anywhere...
>
>
> Don't know if this is going to work, but if it does, rules
> similar to these may solve your problem. With no proxy
Hello everybody.
I've set up a proxy at a customers' site and set up an ACL to block some
domains (first of all facebook.com).
Now some clever users have discovered that they can use foreing external
proxies to avoid filtering.
What I was thinking to do, is to enable on my firewall LAN-->WAN *on
Hello Amos,
> > B) is it normal that now the /etc/squid3/squid.conf is not
> anymore a
> > file, but a directory?
>
> No. It's a new bug in the Debian squid3-3.1.1-2 package.
> Hopefully Luigi can fix it again.
I checked bug-reportings and there it is:
BUG #577615 (http://bugs.debian.org/cgi-
Hello list.
I'm on Debian SID and wanted to update squid3 to the latest 3.1.1-2
version. What happened is that dpkg returned me following error:
Configurazione di squid3 (3.1.1-2)...
sed: errore di lettura su stdin: Is a directory
dpkg: errore nell'elaborare squid3 (--configure):
il sottoprocess
> For trend analysis, alerting, log parsing, configuration, etc. etc.?
>
> The only 3rd party tool we currently use is SARG.
Me using webalizer (stats) and webmin (server management).
In another environment I used to use the above + calamaris and SARG.
Hello list,
following is my setup (in relation to ACLs):
acl localnet src 10.0.0.0/24
acl domini_bloccati dstdomain "/etc/squid3/domini_bloccati.acl"
http_access deny localnet domini_bloccati
How do I add an exception for one client of that network?
I thought to write it like:
acl localnet src
> In that case the config you posted is all correct. You have a
> global allow for localnet before domini_bloccati is ever
> tested so it can't even be a bad domain entry in there.
>
> It must be something else doing the denial.
Thanks for double-replying, I looked at the access.log file and I
> In that case the config you posted is all correct. You have a
> global allow for localnet before domini_bloccati is ever
> tested so it can't even be a bad domain entry in there.
>
> It must be something else doing the denial.
Yes, indeed. Thanks for your confirmation, but now how do I solve
> Missing the ACL defininitions, specifically that for
> 'localnet'. Maybe you have not set your local network range
> properly into it.
Sorry, here the ACLs:
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 172.16.16.0/24 # RFC19
Hello list,
I've now set up my client to use squid proxy, which simply denies access
(http_access deny) to a list of sites. This is the relevant config part:
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access a
t another error:
"Cannot connect to the Citrix MetaFrame server.
There is no Citrix SSL server configured on the specified address."
Suggestions?
Try on a Citrix Mailinglist... I bet there you will get help.
(www.experts-exchange.com or www.citrix.com)
--
------
Boniforti Flavio ha scritto:
Hello list.
[cut]
I'm now confused about *what* to put in there... how should the access
lines be modified? Or do I have to insert something?
Many thanks in advance...
Anybody got a clue? Still seeking for
dst 88.32.161.35 88.32.161.37
acl RegionePiemonte dstdomain regione.piemonte.it
I'm now confused about *what* to put in there... how should the access
lines be modified? Or do I have to insert something?
Many thanks in advance...
--
--
Boniforti Flavio
Prov
cannot
follow that indication.
And here:
proxy:~# cat /proc/sys/fs/file-max
104800
Is this enough?
--
--
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
--
-) I'm using it too and I'm noticing that the list is
growing everyday (my contributions also helped!) :-)
--
------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
--
8 13:09:37| squidaio_queue_request: WARNING - Queue congestion
What do these things mean? What is the solution for this faulty behaviour?
I'm on Debian old-stable (Woody), kernel 2.4.27 and squid 2.5.9-5woody1.
Any suggestions are appreciated.
Regards,
--
--
Boniforti Flavi
lock based on domain URLs and also based on MIME
Types (req or rep). It just seems that I can't be blocking that site in
any other way than blocking the domain. Do you all agree?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Te
... www.pandora.com, while not blocking it's URL?
I mean: I'm trying to find out if there's a way to block this "radio
station", which streams via Flash-7 plugin. Any advice for me?
Thanks...
--
-------
Boniforti Flavio
Provincia del Ver
ction). Do you agree?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Dansguardian.
This is nice... thanks
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
me may be having...
Regards,
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
there any free blacklist which would also be updated regularly
and with specific "categories"?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
ragent.log) with the URL it has
requested, it's fundamental that I enable "log_mime_hdrs on", right?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
ng "Malware useragent blocking list". I got inspiration from here:
http://www.bleedingsnort.com/cgi-bin/viewcvs.cgi/sigs/MALWARE/MALWARE_USER_Agents?rev=1.7
Any thoughts/opinions/success stories about this?
Thanks again,
--
---
Boniforti Flavio
Provincia
part of my
sparetime to create and maintain a list of useragents with their
description.
Anybody can help?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
am I right?
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
find any "Engelmann Media Radio Listener"
useragent, which I try to block with
acl stream_uAgents browser ^Engelmann Media Radio Listener
http_access deny stream_uAgents
Is my setup working correctly?
TIA.
--
-------
Boniforti Flavio
Provincia del Verba
this proxy
http_access deny all
http_reply_access allow all
##
Do you see some errors in what I've configured here? If not, I would
then go further and set up browser (useragent) ACLs and place them in
the right sequence.
TIA,
--
---
Boniforti Flavi
may I block this one?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
;t this measure make the logs
grow very large? I actually have daily logs ranging from 30 MB to over
50 MB.
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
quot;non-standard" ports.
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
be appreciated.
Thanks in advance,
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
stood quite well! :)
Cheers!
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
^application/vnd.ms.wms-hdr.asfv1
acl block_stream urlpath_regex
\.(ra?m|mpe?g?|mov|m3u|pls|ivf|asf|asx|avi|wax|wma|wmv|wvx|wmp|wmx|m1v|mp2|mp3|mpa|mpe|mpv2)($|
\?)
Then:
http_reply_access deny block_stream
http_reply_access deny streaming
HTH.
--
---
Boniforti
Hello!
As the subject states: did anybody succeed in using Skype
(www.skype.com) through squid proxy?
If yes, could I be helped in achieving the same task?
Thanks!
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago
stamps
according to GMT?
Thanks.
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
allow SERVER block_stream streaming
doesn't work (I put it before the "http_reply_access" rules).
My question is: is it possible (and if yes, *how*) to merge different
access rules (http_access and http_reply_access)?
Thank you!
--
-------
Boniforti Flavio
Pr
same e-mail!)
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
refresh_pattern ^ftp: 144020% 10080
refresh_pattern ^gopher:14400% 1440
refresh_pattern . 0 20% 4320
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
gth: 53\r\nAge:
23\r\nX-Cache: HIT from
proxy.reteunitaria.piemonte.it\r\nProxy-Connection: keep-alive\r\n\r]
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Henrik Nordstrom wrote:
On Fri, 1 Oct 2004, Boniforti Flavio wrote:
1096620618.430 5697 10.167.211.11 TCP_MISS/200 554 GET ...
[HTTP/1.0 200 OK
Date: Thu, 30 Sep 2004 09:31:56 GMT
Last-Modified: Tue, 23 Jul 2002 06:48:03 GMT
Via: 1.0 imc3 (ICS 2.3.0.16)
Age: 83277
What do you NOW suggest
"\r\nAccept-Ranges: bytes\r\nContent-Type:
image/gif\r\nVia: 1.0 imc3 (ICS 2.3.0.16)\r\nContent-Length: 53\r\nAge:
83748\r\nX-Cache: HIT from
proxy.reteunitaria.piemonte.it\r\nProxy-Connection: keep-alive\r\n\r]
What do you NOW suggest?
Thank you really much!
--
---
.
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
3 10.167.211.11 TCP_MISS/200 553 GET
http://www.nu.nl/img/balkje.gif boniforti
PARENT_HIT/proxy.reteunitaria.piemonte.it image/gif
A lot changed. There is now status code 200, not 304, and the reply size
is differnt (bigger).
What do these facts mean?
--
---
Boniforti F
Elsen Marc wrote:
Then I would advise to go more 'native' and
fetch squid from squid-cache.org.
Configuring-making and installing Squid is not so difficult.
Oh, I know that's not difficult, but I am used to do everything via APT :-)
--
---
B
behavior.
Make sure also that your system clock is 'adequately synced
to the Internet' (UTC synced, irrespective of Timezone).
Yes, everthing is fine: correct time sync and no refresh/reload button...
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
SS/200 553 GET
http://www.nu.nl/img/balkje.gif boniforti
PARENT_HIT/proxy.reteunitaria.piemonte.it image/gif
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
e that is being blocked. We
are running squid-2.5-stable5 on suse 9. I have used the default
safe-port list. Where do I need to look? Thanks for any help.
I'm in the same trouble: no ICQ or MSN connection from GAIM...
--
-------
Boniforti Flavio
Provincia del Verbano-
e.it/3128/3130
In squid.conf:
cache_dir ufs /var/spool/squid 8192 16 256
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
e.gif boniforti
TIMEOUT_FIRST_UP_PARENT/proxy.reteunitaria.piemonte.it image/gif
I also get some "timeouts" on the second proxy... but the main behaviour
is the same: TCP_MISS at my proxy!
Thank you...
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio I
Henrik Nordstrom wrote:
Which Squid version are you using?
Squid-2.5.STABLE6 has a broken "ufs" cache_dir type..
SQUID 2.5 stable 1
And on another proxy, squid 2.5 stable 6...
But it happens on BOTH of them
--
---
Boniforti Flavio
Provincia del Verbano-Cu
g files (I rotate them daily) of
squid usage done by at least 150 clients, *without* ANY TCP_HIT?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
ml
I mean: shouldn't there be any "TCP_HIT", at least *once* in my logs?
Thank you.
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
ySQL support is a bit more
complex and/or difficult to implement than NCSA, right?
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Hello all!
I noticed that there's the option to "chroot" my squid.
Now, which benefits could I get from this configuration?
What should I be doing/configuring for getting "chroot" to work in squid?
Thank you all again...
--
-------
Boniforti Fla
best solution in relation to
squid? Would there be any chance to have MySQL with a table made of
"user/pass" pairs, used by a squid authenticator?
Thanks again...
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco de
gards,
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
;d like to know from you all is: does it still make sense tu
use squidguard? Is that project still maintained/going on? What would
you suggest me to use?
Thank you all!
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del La
ing it with MSN
Messenger with HTTP proxy enabled and passing through the same and only
proxy.
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
# unregistered ports
And actually I just have this one (should allow every destination IP
address to be reached by means of CONNECT method on SSL_ports, right?)
http_access deny CONNECT !SSL_ports
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio
FIRST_UP_PARENT/proxy.reteunitaria.piemonte.it -
1084804331.028170 10.167.211.11 TCP_MISS/000 1361 CONNECT
login.oscar.aol.com:5190 boniforti
FIRST_UP_PARENT/proxy.reteunitaria.piemonte.it -
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio
void proxy abuse and or or 'unwanted' proxy behavior towards the outside world.
What do you mean exactly?
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Joel Jaeggli wrote:
socks proxy or http proxy?
HTTP proxy
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
084802777.627 6 10.167.211.11 TCP_DENIED/403 1353 CONNECT
login.oscar.aol.com:5190 - NONE/- text/html
1084803020.025 2 10.167.211.11 TCP_DENIED/403 1357 CONNECT
messenger.hotmail.com:1863 - NONE/- text/html
Nothing to mention in cache.log.
What else?
--
----
Elsen Marc wrote:
What is GAIM ?
GAIM is a multi-protocol Instant Messenger (gaim.sourceforge.net).
It's supposed to be configured to use a proxy, but I always get errors
with squid...
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Uf
Hy all!
I'm getting troubles using GAIM through squid.
I always get "No tunnelling available on port 80", but MSN Messenger
works fine!
Who can help me?
Thanks
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecn
And the i get the "Detected REVIVED proxy" message...
Where does the problem stay? Is it my task to solve it on my proxy or is
it a peer proxy's trouble?
Thank you.
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnopa
poses) but also
enabling him to get media contents.
Thank you!
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
proxy in
this environment?
THanks...
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
uot; on my Windows box and "OpenSSH client"
on Linux...
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Hello all!
Is there any way to use SSH by passing through squid proxy?
Can squid in some way handle such kind of connections (don't know if
it's called "tunneling" or whatever).
Thank you
--
-------
Boniforti Flavio
Provincia del Verbano-
?
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
achieve this (I'm no good at all with RPM manipulation)?
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
rouble be?
Thank you all.
--
-------
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Hello all!
I'm seeking for the latest SuSE 7.3 RPM package of squid (I guess it's
the 2.5 stable 4).
Who knows where to get it?
Thanks...
--
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Ma
his stuff is getting a bit too complicated, I'll ask another
question (I'm still confused):
Is there any way (other than NCSA_Auth) to have "username" available to
PHP in some variable?
Thank you very much...
--
---
Boniforti Flavio
Provincia del V
Joel wrote:
iptables -t nat -A PREROUTING -i $yourethernetcard -p tcp --dport 80 -j
REDIRECT --to-port 3128 -d ! mysite.org or give the ip address of the site.
This sounds to me like transparent proxying, ain't it?
Antony Stone wrote:
What is the nature of the corruption? Are the files correct up to a certain
point, and then simply end, suggesting that the data stream got cut off, or
are there missing bytes within the file (so the resultant length is
shortened), or are some bytes changed (so the final f
Henrik Nordstrom wrote:
Have you tried downloading the same files directly from the parent proxy?
Yes I did. And the facts don't change!
Hello all.
I would like to know _how_ do I have to configure squid to tell it that
accessing a defined site (mysite.org) doesn't have to be handled by
squid (that is, the server on "mysite.org" should see the client's IP
address and not squid's one).
Thank you!
Francisco Neira wrote:
I once managed to do that but only using authentication. If the proxy
users are authenticated and recognized by the proxy then the proxy keeps
the username in each connection.
Can you tell me more about it?
It's really important to me!
Thanks..
Hello all!
Is there any way to know the username of the clients which are connected
to my squid proxy and are using it?
I looked into "Cache Manager", but there's no trace of that information.
Any help?
Thank you in advance.
Henrik Nordstrom wrote:
Probably.
Try this instead:
snmpwalk -p 3401 localhost public .1.3.6.1.4.1.3495
I got this:
plin:~ # snmpwalk -p 3401 localhost public .1.3.6.1.4.1.3495
enterprises.3495.1.1.1.0 = 216
enterprises.3495.1.1.2.0 = 41992
enterprises.3495.1.1.3.0 = Timeticks: (52091168) 6 d
Christoph Haas wrote:
netstat -na | grep 3401
or
nmap -sU -p 3401 localhost
or
snmpwalk -p 3401 localhost public .1
My results:
plin:~ # netstat -na|grep 3401
udp0 0 0.0.0.0:34010.0.0.0:*
plin:~ # nmap -sU -p 3401 localhost
Starting nmap V. 2.54BETA22 ( www.insecur
et NO ERRORS at all!
Any help?
Thank youy
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecnoparco del Lago Maggiore
Via dell'Industria, 25
28924 Verbania
---
Hello all!
I would like to know if there's a way to know, by means of a PHP script,
_which_ user is actually connected to my squid proxy.
I'm using ncsa_auth.
Thank you!
---
Boniforti Flavio
Provincia del Verbano-Cusio-Ossola
Ufficio Informatica
Tecn
1 - 100 of 137 matches
Mail list logo