On 16/04/2015 5:59 p.m., Alex Samad wrote:
> On 16 April 2015 at 14:54, Amos Jeffries wrote:
>> On 16/04/2015 3:20 p.m., Alex Samad wrote:
>>> :) Living in Australia that has just sign into law meta data
>>> recording. So I am sending some of my traffic OS via a vpn service.
>>>
>>> But I still wa
On 16 April 2015 at 14:54, Amos Jeffries wrote:
> On 16/04/2015 3:20 p.m., Alex Samad wrote:
>> :) Living in Australia that has just sign into law meta data
>> recording. So I am sending some of my traffic OS via a vpn service.
>>
>> But I still want some things to go locally, so I was using src
On 16/04/2015 3:16 p.m., iridium191 wrote:
> Hi Forum,
>
> We're running Squid Version 3.3.8 (from repository) on Ubuntu server 14.04
> LTS x64 as a caching proxy server for a mixed Linux/Windows network.
> We were attempting to cache apt-get and Windows updates using various
> refresh patterns b
On 16/04/2015 3:20 p.m., Alex Samad wrote:
> :) Living in Australia that has just sign into law meta data
> recording. So I am sending some of my traffic OS via a vpn service.
>
> But I still want some things to go locally, so I was using src ip
> address to help my router determine which path to
Jason Haar-2 wrote
> On 15/04/15 22:58, Amos Jeffries wrote:
>> Squid has zero control over what TCP connections the *client* opens.
>> You need to use tcpdump on the Squid machine, or machine(s) at the
>> other end of the WAN1/2 connections to see what the Squid->origin
>> traffic uses.
>
> Amos
Hi Forum,
We're running Squid Version 3.3.8 (from repository) on Ubuntu server 14.04
LTS x64 as a caching proxy server for a mixed Linux/Windows network.
We were attempting to cache apt-get and Windows updates using various
refresh patterns but commented them out a few weeks ago after an issue wh
:) Living in Australia that has just sign into law meta data
recording. So I am sending some of my traffic OS via a vpn service.
But I still want some things to go locally, so I was using src ip
address to help my router determine which path to use.
unfortunately my vpn service doesn't handle IP
On 16/04/2015 9:09 a.m., HackXBack wrote:
> hello minds,
> it seems many files appear in access.log as 206 and not 200,
> to make this file hit is by using range_offsit_limit none
> but this option cause squid to consume more bandwidth from real internet,
> so what is the solution to make 206 cache
On 16/04/2015 2:33 p.m., Alex Samad wrote:
> Hi
>
> Is there any way to make some sites to be access only via ipv4 ? So
> even if there is a ipv6 address I reject it
Not in the way you are thinking.
acl to_ipv6 dst ipv6
http_access deny to_ipv6
will deny access to any IPv6-enabled website (
On 16/04/2015 1:43 p.m., Stanford Prescott wrote:
> Will Squid 4 be able to be compiled with GCC 4.7.3 or will it require GCC
> 4.9.x or newer?
Squid-4 will require C++11 support for some of the features only added
later in the language development. Which means 4.9 is the oldest which
will build f
anybody ???
is it even possible ??
On 15/04/2015, Jagannath Naidu wrote:
> Dear List,
>
> At a client side, I am facing an issue as follows
>
> OS: Windows 7 : Pro
> App: Office 2013
>
> ISSUE:
>
> By default, whenever the user opens a file to edit or read a office file
> (spreadsheet,doc etc), h
Hi
Is there any way to make some sites to be access only via ipv4 ? So
even if there is a ipv6 address I reject it
Thanks
Alex
On 15 April 2015 at 19:52, Amos Jeffries wrote:
> On 15/04/2015 8:32 p.m., Alex Samad wrote:
>> Hi
>>
>> I have squid-3.5.2-2.el6.x86_64 on centos 6.6
>>
>> I am trying
Will Squid 4 be able to be compiled with GCC 4.7.3 or will it require GCC
4.9.x or newer?
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
On 15/04/15 22:58, Amos Jeffries wrote:
> Squid has zero control over what TCP connections the *client* opens.
> You need to use tcpdump on the Squid machine, or machine(s) at the
> other end of the WAN1/2 connections to see what the Squid->origin
> traffic uses.
Amos is so right. Stop fiddling ar
OK I got it, I added "ip route add" commands ,set up routing tables in
/etc/iptables2/rt_tables and everything is working fine now.
Although I could not get it worked by "tcp_outgoing_address" option, this
way it is working perfectly.
Thanks for the help.
--
View this message in context:
htt
hello minds,
it seems many files appear in access.log as 206 and not 200,
to make this file hit is by using range_offsit_limit none
but this option cause squid to consume more bandwidth from real internet,
so what is the solution to make 206 cached and hit again without make it
consume this huge ba
On 04/15/2015 11:38 AM, tchristin wrote:
Hi all,
I'm having trouble with Squid Kerberos auth and the Squidguard
ldapusersearch that I use to apply ACLs by Active Directory groups
membership.
The problem is :
- Squid and Squidguard see my user as : 'user@domain.local' so the '%s'
variable of s
Hi all,
I'm having trouble with Squid Kerberos auth and the Squidguard
ldapusersearch that I use to apply ACLs by Active Directory groups
membership.
The problem is :
- Squid and Squidguard see my user as : 'user@domain.local' so the '%s'
variable of squidguard is 'user@domain.local'.
- In my ld
Hi Amos,
Good news !
Waiting for the new build, we'll test and keep you posted...
Best regards.
Bye Fred
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/Random-SSL-bump-DB-corruption-tp4670289p4670757.html
Sent from the Squid - Users mailing list archive at
this bug exist after changing in certificate_db.cc from flock to lockf
=== modified file 'src/ssl/certificate_db.cc'
--- src/ssl/certificate_db.cc 2014-12-03 11:58:37 +
+++ src/ssl/certificate_db.cc 2015-01-09 10:27:12 +
@@ -55,7 +55,7 @@
#if _SQUID_WINDOWS_
if (!LockFile(hFile,
On 15/04/2015 9:06 a.m., Stakres wrote:
> Hi Guy,
>
> Thanks for answering :o)
> Based on the bugzilla, it's fixed but not yet available.
> Anyway, that's a very good news.
> Let's wait the next build.
FYI: The squid-3.5 snapshot r13797 and squid-3.4 snapshot r13219 or
later include it. Those are
On 11/04/2015 1:51 a.m., Fiorenza Meini wrote:
> Hi,
> I'm testing on a 3.4 squid release the client_delay_poolfunctionality.
> It seems that isn't working: on my browser I receive the error that
> proxy isn't reachable, and in log file I can't see nothing useful.
>
> Has anyone configured this fu
On 13/04/2015 3:58 p.m., jimdo x wrote:
> Hi all,
>
> Anyone knows why with squid3 as proxy, the windows store load contents
> fine, but when comes to download apps, it always saying, you have a slow
> connection? or just can not download.
> Without squid as proxy, like connect directly to interne
On 15/04/2015 10:21 p.m., Keyvan Hedayati wrote:
> Hi
> I'm having trouble setting a transparent proxy in our network.
> For testing I've asked our net admin to transparently forward all of my
> http traffic to squid port but when I try to open a page I get *Access
> Denied *error and a warring abo
On 15/04/2015 10:21 p.m., naishal0748 wrote:
> Hello,
>
> I received following reply from Amos.
>
> ---
>
> Welcome to the world of application layer gateways.
>
> There is no guarantee that IPv4 is being used outbound. You may in fact
> be using IPv6 to contact servers.
> All that
am running squid 3.4.12 under debian7
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/assertion-failed-comm-cc-178-fd-table-conn-fd-halfClosedReader-NULL-tp4670726p4670749.html
Sent from the Squid - Users mailing list archive at Nabble.com.
_
Hello,
I received following reply from Amos.
---
Welcome to the world of application layer gateways.
There is no guarantee that IPv4 is being used outbound. You may in fact
be using IPv6 to contact servers.
All that means is that you need to set a WAN1 IPv6 address in a second
tcp_
On 15/04/2015 1:23 p.m., Yuhua Wu wrote:
>
> I assume the intention of code is to turn off COMM_TRANSPARENT if PROXY
> protocol is used.
>
> Is this proper change? At least, it works for me now,
Yes that was the intention. Your patch looks correct to me. Approved and
applied to Squid-4, it shoul
Hi
I'm having trouble setting a transparent proxy in our network.
For testing I've asked our net admin to transparently forward all of my
http traffic to squid port but when I try to open a page I get *Access
Denied *error and a warring about Forwarding loop.
As you can see in tcpdump squid sends r
On 15/04/2015 8:32 p.m., Alex Samad wrote:
> Hi
>
> I have squid-3.5.2-2.el6.x86_64 on centos 6.6
>
> I am trying to direct certain destinations from certain ip addresses
>
>
> acl viaTest dstdomain .abc.com
>
> tcp_outgoing_address 192.168.11.11 viaTEst
>
> This works well for
>
> www.abc.c
What version of Squid are you running, and in what environment?
Based on the fact that the output of the gdb backtrace doesn't show
function parameters (debug symbols don't quite match up to the
binary), this may not work, but if you could run these commands in gdb
and show the output, that would
On 15/04/2015 11:33 a.m., Hector Chan wrote:
> Hi all,
>
> If I configure a new delay pool in the config file or reconfigure an
> existing delay pool, do I have to restart squid? Can I send a SIGHUP to it
> to re-read the config file instead ? If I send a SIGHUP, what would happen
> to downloads
On 15/04/2015 9:46 a.m., Balázs Szabados wrote:
> Possile Problem #1:
> digest_pw_auth has not existed in some years. The helpers correct
> current name is digest_file_auth. Please upgrade.
>
> In the openwrt repository, I can only find Squid 2.7, and I can't upgrade
> to newer.
> Can I make this
On 15/04/2015 7:12 a.m., Abdelouahed Haitoute wrote:
> Hello Amos,
>
> Thank you for your reply.
>
>> Problem A)
>> requirements #1 and #2 above are mutually exclusive.
>>
>> Obeying #1 involves sending traffic from Squid to the parent proxy for
>> action.
>>
>> Obeying #2 involves opening direct
On 15/04/2015 4:25 a.m., HiP-HiPpO wrote:
> Hello-
>
> I'm using squid version 3.5.3 and I could use some help with
> configuration.
First up, lets be clear: This is going to be difficult.
The Apache setup you had appears to have been severely violating the
HTTP *and* HTTPS protocols security
same issue with your patch , this didnt solve the problem and i still have it
..
--
View this message in context:
http://squid-web-proxy-cache.1019090.n4.nabble.com/assertion-failed-comm-cc-178-fd-table-conn-fd-halfClosedReader-NULL-tp4670726p4670737.html
Sent from the Squid - Users mailing li
On 14/04/2015 8:35 p.m., tchristin wrote:
> Hi guys,
>
> I need your help for the same problem : I'm not able to strip the realm from
> username and the `-r` switch doesn't achieve this...
Of course. username and realm are very different things.
What -r does is strip the realm from the user *lab
Hi
I have squid-3.5.2-2.el6.x86_64 on centos 6.6
I am trying to direct certain destinations from certain ip addresses
acl viaTest dstdomain .abc.com
tcp_outgoing_address 192.168.11.11 viaTEst
This works well for
www.abc.com and test.abc.com when they resolve to ipv4 addresses
but when they r
On 15/04/2015 6:04 a.m., Baird, Josh wrote:
>>> Could anyone offer any suggestions or advice to help figure out what is
>> causing these problems?
>>
>> 1) upgrade.
>>
>> 2) seriously, upgrade.
>>
>> 3) try adding "via on" to your squid.conf. If you start to get warnings about
>> forwarding loops i
On 15/04/2015 9:49 a.m., Sriram Devadas wrote:
> Squid version 3.5.3.
> When the http response received by Squid contains a no-cache="set-cookie",
> the response is not cached. cache.log has the line:
> 2015/04/14 18:24:38.027 kid1| http.cc(359) cacheableReply: NO because server
> reply Cache-Con
40 matches
Mail list logo
