Re: [squid-users] Read Timeout

On 14/03/2015 2:34 a.m., sci wrote: > Hi, > > I search a solution for the follow "problem": > > A website with a simple button (POST) needs more than 15min to send the > information what the clients needs (a simple excel sheet). > We don't want to change the global settings at the "Read Timeout",

Re: [squid-users] Reverse Proxy Funny Logging Issue

On 14/03/2015 5:19 a.m., dweimer wrote: >> >> Last night I applied the FreeBSD 10.1-RELEASE-p6 Update and Upgraded >> the ports which included Squid 3.4.12, I enabled the LAX HTTP option >> in the ports configuration with adds the --enable-http-violations >> compile option. With the intention to en

Re: [squid-users] i hope to use external ACL + ldap at squid 3.5.2, but i don't find ext_ldap_group_acl and basic_ldap_auth from /squid/libexec/

On 14/03/2015 5:37 a.m., johnzeng wrote: > > Hello All: > > i hope to use external ACL + ldap at squid 3.5.2, but i don't find > ext_ldap_group_acl and basic_ldap_auth from /squid/libexec/ > > if possible , please give me some advisement . Thanks > You are missing the LDAP libraries needed to

Re: [squid-users] Cento 6 repo

On 14/03/2015 2:39 p.m., Alex Samad wrote: > Hi > > Quick on > > squid.x86_647:3.4.10-1.el6 @squid > squid-debuginfo.x86_64 7:3.4.10-1.el6 squid > squid-helpers.x86_647:3.4.10-1.el6 squid > squid-sysvinit.

Re: [squid-users] negotiate_wrapper: fgets() failed! dying..

On 14/03/2015 4:19 p.m., Donny Vibianto wrote: > hi markus, > > unfortunately i move to centos but i still got same error after 9 hours > running. > > 2015/03/14 10:05:43| negotiate_wrapper: received Kerberos token > 2015/03/14 10:05:43| negotiate_wrapper: Starting version 1.0.1 > 2015/03/14 10:0

Re: [squid-users] negotiate_wrapper: fgets() failed! dying..

hi markus, unfortunately i move to centos but i still got same error after 9 hours running. 2015/03/14 10:05:43| negotiate_wrapper: received Kerberos token 2015/03/14 10:05:43| negotiate_wrapper: Starting version 1.0.1 2015/03/14 10:05:43| negotiate_wrapper: NTLM command: /usr/bin/ntlm_auth --dia

[squid-users] Cento 6 repo

Hi Quick on squid.x86_647:3.4.10-1.el6 @squid squid-debuginfo.x86_64 7:3.4.10-1.el6 squid squid-helpers.x86_647:3.4.10-1.el6 squid squid-sysvinit.x86_64 7:3.4.3-1.el6 squid the

Re: [squid-users] squid intercept config

Thanks a lot Yuri, I made some merge with my config and some of this options, I will see now how HIT rate it goes, my squid run so limited of bandwidth that I need to be as much aggressive as I can caching the content. Thanks again for sharing, very appreciated Alberto On Fri, Mar 13, 2015 at 4:

Re: [squid-users] squid intercept config

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 This is know-how to himself. ;) To be serious, you must carefully play with refresh_pattern(s), and some squid.conf parameters (and also with store ID feature) to get higher HIT ratio. Just for example (this is NOT complete config! No responsibility

Re: [squid-users] squid intercept config

Can you share more details about "Agressive dynamic content caching requires some special tweaks" I am very interested. Thanks On 3/13/15, Yuri Voinov wrote: > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA1 > > > > 13.03.15 23:33, Amos Jeffries пишет: >> On 14/03/2015 5:47 a.m., Monah Baki wr

Re: [squid-users] squid intercept config

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 13.03.15 23:33, Amos Jeffries пишет: > On 14/03/2015 5:47 a.m., Monah Baki wrote: > > > >> half_closed_clients off quick_abort_min 0 KB quick_abort_max 0 >> KB vary_ignore_expire on reload_into_ims on memory_pools off >> cache_mem 4096 MB visible

Re: [squid-users] squid intercept config

On 14/03/2015 5:47 a.m., Monah Baki wrote: > half_closed_clients off > quick_abort_min 0 KB > quick_abort_max 0 KB > vary_ignore_expire on > reload_into_ims on > memory_pools off > cache_mem 4096 MB > visible_hostname isn-phc-cache > minimum_object_size 0 bytes > maximum_object_size 512 MB > ma

Re: [squid-users] squid intercept config

It's working now, all I did is rem'd the following: # half_closed_clients off # quick_abort_min 0 KB # quick_abort_max 0 KB # vary_ignore_expire on # reload_into_ims on # memory_pools off # cache_mem 4096 MB # # memory_cache_shared on visible_hostname isn-phc-cache minimum_object_size 0 bytes maxi

Re: [squid-users] squid intercept config

On 14/03/2015 6:15 a.m., Antony Stone wrote: > On Friday 13 March 2015 at 17:47:44 (EU time), Monah Baki wrote: >> >> http_access allow localhost manager >> http_access deny manager >> >> #http_access deny to_localhost >> >> http_access allow localnet >> http_access allow localhost > > You've got

Re: [squid-users] squid intercept config

On Friday 13 March 2015 at 17:47:44 (EU time), Monah Baki wrote: > acl localnet src 10.0.0.0/8# RFC1918 possible internal network > acl localnet src 172.16.0.0/12# RFC1918 possible internal network > acl localnet src 192.168.0.0/16# RFC1918 possible internal network > acl localnet src

Re: [squid-users] squid intercept config

# # Recommended minimum configuration: # # Example rule allowing access from your local networks. # Adapt to list your (internal) IP networks from where browsing # should be allowed acl localnet src 10.0.0.0/8# RFC1918 possible internal network acl localnet src 172.16.0.0/12# RFC1918 possi

[squid-users] i hope to use external ACL + ldap at squid 3.5.2, but i don't find ext_ldap_group_acl and basic_ldap_auth from /squid/libexec/

Hello All: i hope to use external ACL + ldap at squid 3.5.2, but i don't find ext_ldap_group_acl and basic_ldap_auth from /squid/libexec/ if possible , please give me some advisement . Thanks This is my config configure options: '--prefix=/accerater/webcache3' '--enable-follow-x-forwarded-for

Re: [squid-users] Reverse Proxy Funny Logging Issue

On 03/12/2015 10:31 am, dweimer wrote: On 01/23/2013 10:39 pm, Amos Jeffries wrote: On 24/01/2013 4:13 a.m., dweimer wrote: On 2013-01-23 08:40, dweimer wrote: On 2013-01-22 23:30, Amos Jeffries wrote: On 23/01/2013 5:34 a.m., dweimer wrote: I just upgraded my reverse proxy server last night

Re: [squid-users] squid intercept config

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 13.03.15 21:58, Monah Baki пишет: > Hi All, > > Installed squid on CentOS 6.6 and it's working, but mY access.log > shows all TCP_MISS and no TCP_HIT. The following config: > > squid.conf # Squid normally listens to port 3128 http_port 3128 > http

Re: [squid-users] squid intercept config

Hi All, Installed squid on CentOS 6.6 and it's working, but mY access.log shows all TCP_MISS and no TCP_HIT. The following config: squid.conf # Squid normally listens to port 3128 http_port 3128 http_port 3129 intercept iptables # Generated by iptables-save v1.4.7 on Fri Mar 13 16:04:02 2015

Re: [squid-users] Squid 2.7, 3.4 and 3.5 Videos/Music/Images/Libraris/CDNs Booster

Hi All, Advanced Caching Add-On for Linux Squid Proxy Cache v2.7, v3.4 and v3.5 with Videos, Music, Images, Libraries and CDNs. New version 2.39 - March 13th 2015. - New websites - Tiny bugs fixed More details on https://svb.unveiltech.co

Re: [squid-users] peek/splice working with lynx but not with firefox or chrome [SOLVED]

Hi, I am also having similar environment with squid (version 3.5.2 -20150218-r13758) and openssl 1.0.1k, but for me only small number of https sites are working with peek and splice. For eg:- , I can access https://www.google.com but not https://ssllabs.com and lot of other https domains, giving "

Re: [squid-users] https traffic using squid and icap

Hi Michael, I was just reading this thread, and I've been following the same line of thought wrt to monitoring the contents of HTTPS payloads that way I can conduct analysis with an IDS such as Snort, or Bro. Did you end up having any luck with ICAP, or is this a rabbit hole that I'm going down?

[squid-users] Read Timeout

Hi, I search a solution for the follow "problem": A website with a simple button (POST) needs more than 15min to send the information what the clients needs (a simple excel sheet). We don't want to change the global settings at the "Read Timeout", so I try to find something like a ACL for the

Re: [squid-users] assertion failed: comm.cc:769: "Comm::IsConnOpen(conn)"

Dear amos i still have the same problem !! please give advice about this critical problem -- View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/assertion-failed-comm-cc-769-Comm-IsConnOpen-conn-tp4669842p4670392.html Sent from the Squid - Users mailing list archive

Re: [squid-users] Editing Makefile.am to include static libraries

On 14/03/2015 12:28 a.m., Priya Agarwal wrote: > I tried what you advised. Getting the same error for both methods > (./configure LDFLAGS=-L<../tmp/../lib CXXFLAGS=-I<.../tmp../include or > editing Makefile.am appropriately). autoreconf is failing. I see "<" characters in your paths. That is inval

Re: [squid-users] Editing Makefile.am to include static libraries

I tried what you advised. Getting the same error for both methods (./configure LDFLAGS=-L<../tmp/../lib CXXFLAGS=-I<.../tmp../include or editing Makefile.am appropriately). autoreconf is failing. And also I am getting many such warnings: | src/Common.am:16: warning: 'INCLUDES' is the old name for

Re: [squid-users] Editing Makefile.am to include static libraries

On 13/03/2015 10:19 p.m., Priya Agarwal wrote: > Hi, > > I wanted to link certain static libraries and use them in squid source > code. I added the following lines in Makefile.am of the 'src' directory. Please be aware if you do that your new code and anything built from the Squid Makefile MUST b

Re: [squid-users] Reverse Proxy Funny Logging Issue

On 13/03/2015 4:31 a.m., dweimer wrote: > On 01/23/2013 10:39 pm, Amos Jeffries wrote: >> On 24/01/2013 4:13 a.m., dweimer wrote: >>> On 2013-01-23 08:40, dweimer wrote: On 2013-01-22 23:30, Amos Jeffries wrote: > On 23/01/2013 5:34 a.m., dweimer wrote: >> I just upgraded my reverse pr

Re: [squid-users] Captive Portal authentication in Intercept mode

On 13/03/2015 10:10 p.m., James Harper wrote: >> Hey, >> >> I have written a basic idea with a php "login portal" that can be seen at: >> http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/ >> http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/Conf >> http://wiki.squid-cache.org/Eliez

[squid-users] Editing Makefile.am to include static libraries

Hi, I wanted to link certain static libraries and use them in squid source code. I added the following lines in Makefile.am of the 'src' directory. squid_LDFLAGS = -L/media/NewVolume/yocto/build_t4240qds_release/tmp/work/ppce6500-fsl_networking-linux/usdpaa/git-r5/lib_powerpc/ squid_LDLIBS = -lu

Re: [squid-users] Captive Portal authentication in Intercept mode

> Hey, > > I have written a basic idea with a php "login portal" that can be seen at: > http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/ > http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/Conf > http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/PhpLoginExample > http://w

Re: [squid-users] ssl_bump for specific dstdomain

On 13/03/2015 6:39 p.m., Yuri Voinov wrote: > > > 13.03.15 2:37, Mukul Gandhi пишет: >> On Thu, Mar 12, 2015 at 11:04 AM, Yuri Voinov >> wrote: > >> You only have external helper (which is must wrote yourself) in >> 3.4.x. > > >>> Are there any examples that I can look at to implemented thi

Re: [squid-users] Captive Portal authentication in Intercept mode

Hey, I have written a basic idea with a php "login portal" that can be seen at: http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/ http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/Conf http://wiki.squid-cache.org/EliezerCroitoru/SessionHelper/PhpLoginExample http://wiki.squid-cac

Re: [squid-users] One Time Password with squid, exists?

On 13/03/2015 05:22, Daniel Greenwald wrote: Ah that would be a clever way to implement pki authentication but i was thinking of something more that browser natively support.. Hey Daniel, What is the direction of what you are thinking about? I do not know about a browser natively support optio