TPUT -p tcp -o $INTERNET --dport 445 -j DROP
iptables -A OUTPUT -p tcp -o $INTERNET --dport 32875 -j DROP
iptables -A OUTPUT -p udp -o $INTERNET --source-port 32875 -j DROP
iptables -A OUTPUT -p udp -o $INTERNET --dport 137 -j DROP
# DROP everything
iptables -A INPUT -j DROP
-Original Message
of RAM
an a small cache of 20GB. I checked the logs but can't find anything
wrong at all.
Any Ideas, on what I should/could be looking for? The page is simple
html.
Regards
George Dominguez
Business and Systems Engineer
Information Technology & Services Department
Melbourne Business
Good morning,
I added a new disk to squid (all configured and mounted).
Created a directory in /usr/local/cache
chown squid:squid
chmod 755 cache
Added a new "cache_dir" in squid.conf
"Cache_dir ufs /usr/local/cache 2 16 256"
Then squid -k shutdown
Squid -z
The new cache directory was suce
Good day, List
I have added a new scsi disk to our squid server, and would like to know
which is the best way to move the cache to the new scsi disk.
Your advice will be highly appreciated
Regards
George
=
Privileged/Confidential Informati
Hello All,
Examining the reports produced by Lire, we can see that 38.5% of cache
results are TCP_DENIED, 29.2% are TCP_MISS.
TCP_IMS_HIT only makes up for 14.8%
TCP_HIT only makes up for 5%
How can I increase the TCP_HIT rate?
Regards
George
==
Hello,
This is what I'm getting and what I think:
ACL:
# If an IP is from the exception-entries list, then
# pass the request to 10.1.1.4 proxy server.
acl mte src 10.1.10.201-10.1.10.207/255.255.255.255 10.1.4.68
acl skr src 10.1.4.160-10.1.4.180/255.255.255.255
acl syd src 10.1.5.60-10.1.5.
In regards to my problem, would it be crazy to schedule a crontab job to
run squid -k reconfigure every half hour. what would the implications of
doing so be?
- Forwarded by George Dominguez/MMBS on 02/04/2003 08:43 AM
Hello all,
I have posted this question before, tried suggestions but with no luck. I
hope someone can help
The problem is:
We have two squid proxy servers, running on RH8
students-proxy - 10.1.1.4
staff-proxy - 10.1.4.18
1 - All staff except for a specific IP range should be prompt to validate
This are the options I configured squid with:
configure options:
--enable-auth=ntlm, basic
--enable-basic-auth-helpers=winbind
--enable-ntlm-auth-helpers=winbind
--enable-gnuregex
Also, if you are using Squid Cache: Version 2.5.STABLE1- don't forget to
copy the helpers from the samba source to
This is just a clue! but this is how we got msn working in the studen's
lab:
Change the msn connections to HTTP proxy, port 3128, server x.x.x.x
(open msn messenger window, click Tools, Options, Connections Tab), click
ok and exit out..
On the desktop, right click Network places, click properti
In regards to the previous question - on the 10.1.1.4 proxy access logs
here is what I found
2003/03/19 16:23:38| WARNING: Probable misconfigured neighbor at 10.1.4.18
2003/03/19 16:23:38| WARNING: 143 of the last 150 ICP replies are DENIED
2003/03/19 16:23:38| WARNING: No replies will be sent fo
Hello everyone,
We have two type of users, those whom are allow direct access onto the
University of Queensland databases, and those whom need to validate them
self's.
In order to achieve the above requirement, we created an acl rule set, the
"exeption-entries" file has the ip's range.
10.1.1.4 i
Go to:
http://squid-docs.sourceforge.net/latest/html/x1589.html#AEN1729
"S ý è d F ú r q
Hello,
Looking into my cache.log file I see lots of the following entries:
"
2003/03/05 05:31:53| helperStatefulDefer: None available.
2003/03/05 05:32:04| AuthenticateNTLMHandleReply: invalid callback data.
Releasing helper '0x82179b8'
2003/03/05 05:32:04| AuthenticateNTLMHandleReply: invalid ca
Hello,
We are running squid with auth - it's all working fine! some users, however
are been prompt to validate after been validated at the domain.
I search through the cache.log and tells me the following:
"Warning: All ntlmauthenticator processes are busy
5 pending requests queue
consider incre
Hello,
Could someone help me in constructing an ACL that would perform the
following:
If an IP is from an IP range and destined to a specific URL the forward the
request to another proxy.
So far this is what I got. I don't know how to combine the dstdomain and
the scr
acl StuNet src 10.1.1.0/25
Hello,
Can someone help me in constricting an ACL that would perform the
following:
if an IP is from an IP range and destined to a specific URL then forward
the request to another proxy
Regards
George
=
Privileged/Confidential Information may
17 matches
Mail list logo