Hi Amos,
I resolved the issue with the following line in my proxy.pac file:
if (dnsDomainIs(host, "\'wbetest2.bloomberg.com")) { return
"proxy:3128"; }
I used the page at
http://jcurnow.home.comcast.net/~jcurnow/WritingEffectivePACFiles.html
(mentioned in the proxy.pac entry in wikiped
Henrik Nordstrom wrote:
On tor, 2007-09-27 at 14:26 -0400, fname lname wrote:
Can squid do transparent proxy with https requests yet or is there an
work around?
Why do you want to transparently proxy https?
Regards
Henrik
while I don't pretend to know the OP's situation, in ours, i
miles800 wrote:
Can Squid grab a list of files from a server and then prefetch those specific
files? I would like to be able to set up a proxy server (that will run on
both windows and Linux) that will grab mp3s and flash files from a server
(running a web app) to help avoid a bottleneck. Ideal
Paul Cocker wrote:
Alas, it was all so perfectly planned. Grab some blacklists from Shalla
- http://www.shallalist.de/ - and hook the domain lists into squid using
dstdomain. Unfortunately, it seems squid's interpretation of domain
names is incredibly literal, so rather than youtube.com blocking
Ryan Thoryk wrote:
We currently have Squid set up as a GRE-based WCCP2 transparent proxy,
and are wondering if it can support both GRE and L2 modes
simultaneously - we have a couple Cisco 7200 routers pointing to it,
but are wanting to add a 3750 switch that has wccp2 support.
Ryan Thoryk
If
Amos Jeffries wrote:
Elvar wrote:
Anyone else having trouble getting to http://wiki.squid-cache.org/
Elvar,
I'm visiting the wiki without problems...
Seems to be an variable problem then.
It's down for me from here now...
Amos
Down for me as well.
/Jason
I worked around that a few years ago by having multiple instances of
squid on my server, each with its own IP and dedicated squid.conf
Each router would connect to its own squid instance and linux policy
routing would determine the default gateway to use.
The downside is that you are now effectiv
Hello,
I ma having a very bizarre problem and I am wondering if anyone here can
shed some light on it.
Our internal users are accessing the Internet via a squid v2.6-STABLE9
proxy using a proxy.pac file.
Their browsers (corporate dictates Internet Explorer) are configured to
"Automatically det
So I think the client's proxy.pac script might be having trouble
digesting the malformed URL below:
1239113823.055 0 xxx.yyy.zzz.aaa TCP_DENIED/400 1614 GET
http://'wbetest2.bloomberg.com/jscommon/0/s_code.js' - NONE/- text/html
The single quote is making the proxy.pac freeze which in tu
--with-large-files
make
make install
#
## Deviations from stock squid.conf.default:
http_port 172.16.2.93:8080 transparent
http_port localhost:8080
tcp_outgoing_address 172.16.2.93
## Disable ICP since we only have the one cache
icp_port 0
#####
## Set all the pathname stuff here.
#
Hello again,
I was just corrected by one of my colleagues as to the hardware and os
of the squid server.
Hardware: IBM x360
OS: RedHat Enterprise Linux 4 update 3
Also, here is the combined tcpdump output from gre1 and eth2:
### This is the 3-way handshake.
gre1 12:17:04.712823 IP 1
Hello again,
Here is the cache.log from a squid-2.6.STABLE5-20061116 built with a
stock "./configure".
So grab the latest squid-2.6.stable release, and build with
./configure
make
make install
And you still get the same error, more or less.
In previous builds, I had tried disabling "epoll" si
I solved the problem.
I was too aggressive in the version I was running.
Something seems to be broken between squid-2.6.STABLE5 and
squid-2.6.STABLE5.20061116
/Jason
Hello list-people,
I am experiencing some strangeness with WCCPv2 on squid 2.6.
My hunch is that the problem is likely on the cisco side.
I have tried this with squid 2.6-stable5 as well as the latest version
(20061204) which is supposed to allow for multi-router wccp2 configs.
At the moment, I
arding = 1
==
Adrian Chadd wrote:
On Mon, Dec 04, 2006, Jason Taylor wrote:
However, a tcpdump on the GRE interface of the squid shows only the
first packet (SYN).
A tcpdump on the eth2 (where squid is listening) shows the SYN-ACK
packet being sent back to the workstation.
Whats the wccp config on
Hello again,
A little bit more info on this problem...
The setup:
The squid:
- Squid 2.6 STABLE5-20061204
- RedHat Enterprise Linux v4 update 3
- IP/mask/gw: 192.168.40.37/255.255.255.240/192.168.40.33
- ip tunnel add gre1 mode gre \
remote 192.168.40.33 local
wrote:
On Tue, Dec 05, 2006, Jason Taylor wrote:
The intercept router:
- Cisco 6509
- IOS version 12.2.18sxf
Hm, I've heard rumours that there's been some WCCPv2 bugs in the SXF code.
Yah, there's an unrelated bug resolved in 12.2(18)SXF7 and a couple more
in previous r
Hi all,
Is it possible to intercept https traffic with wccpv2 and squid 2.6?
The Cisco documentation leads me to believe that it is possible, at
least with the Cisco Web Cache Engine.
I have heard that transparent proxying of https does not work, but
what about intercept proxying?
Our exi
We recently upgraded our extremely old squid servers (P3-1GHz, 512MB ram) to modern hardware (3GHz P4, 2GB ram) running RedHat
linux. The problem I am experiencing is that CPU load will jump to 100% and stay there. The system shows about 50% iowait cpu
usage. We have about 1500 employees using
Are you logging access_log to syslog?
I used to have "access_log syslog" in my squid.conf and just turned it off.
I saw my iowait drop from 46% to 1% within 10 seconds.
/Jason
Andrew Miehs wrote:
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On 30/01/2007, at 8:51 PM, Robert wrote:
My connecti
Hello list,
Is it possible to have the URL-filter deny action not be to just serve
an "access denied" page, but to rather
serve up a "page is against policy, click here to access anyway" page?
Would this be done through a "redirector" program? Any pointers?
I think that putting this in place
Pardon the confusing subject in my previous message. Should have read
"http_access deny"
Hello list,
Is it possible to have the URL-filter deny action not be to just serve
an "access denied" page, but to rather
serve up a "page is against policy, click here to access anyway" page?
Would th
Henrik Nordstrom wrote:
tis 2007-04-10 klockan 17:28 -0400 skrev Jason Taylor:
Is it possible to have the URL-filter deny action not be to just serve
an "access denied" page, but to rather
serve up a "page is against policy, click here to access anyway" page?
Se
Hello list,
I have been putting in delay pools and just noticed an odd behaviour.
My workstation was in the middle of a long file transfer which was
properly being limited by the delay pools.
I then made a modification to my squid filters and did a squid -k
reconfigure to load the changes.
I th
24 matches
Mail list logo
