On 5/03/2016 10:54 a.m., Heiler Bemerguy wrote:
>
> Hi Amos,
>
> It seems the "quick_abort_min -1 KB" did the trick. But I remember that
> "range_offset_limit" should overrule that.. isn't it?
Yes, it is supposed to. It seems the docs are incorrect.
> Also, I saw people using -1 instead of "non
When trying to compile squid 4.0.7 I have the following errors (see bellow)
I am using gcc 5.2.1 compiler and libecap 1.0.0
I compile on Ubuntu 15.10
What am I missing here ? Please help
libtool: compile: g++ -DHAVE_CONFIG_H -I../.. -I../../include -I../../lib
-I../../src -I../../include -I../
Hi Victor,
What does the squid log say when you use -d for the authentication
helper ?
Can you provide a wireshark capture from the client ? I guess that
2008 is using AES not RC4.
Markus
"Victor Sudakov" wrote in message
news:20160304162923.gb81...@admin.sibptus.tomsk.ru...
Hi Amos,
It seems the "quick_abort_min -1 KB" did the trick. But I remember that
"range_offset_limit" should overrule that.. isn't it?
Also, I saw people using -1 instead of "none" for range_offset_limit..
is it the same? :P
/quick_abort_min -1 KB//
//acl wupdatecachable url_regex -i
(micro
Right now we have squid setup to present a splash page to users. Here is the
config for the captive portal:
--
external_acl_type splash_page ttl=30 concurrency=100 %SRC
/usr/lib64/squid/squid_session -t 1440 -b /var/l
Hell Bma, Yuri, Alex and all,
We are planning to update the CentOS 7 tutorial at
http://docs.diladele.com/tutorials/transparently_filtering_https_centos/index.html
when Squid 4 is published by Elizier.
Best regards,
Rafael Akchurin
Diladele B.V.
--
Please take a look at Web Safety - our ICAP b
On 03/04/2016 09:54 AM, bma wrote:
> I want to start evaluating squid 4 beta version.
> Is there a tutorial or a step by step document I can use to setup a proxy
> that would do the following:
> - intercept traffic (transparent proxy)
> - handles HTTP and HTTPS (handles gracefully sites that canno
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
http://wiki.squid-cache.org/
04.03.16 22:54, bma пишет:
> Hi folks,
>
> I want to start evaluating squid 4 beta version.
> Is there a tutorial or a step by step document I can use to setup a proxy
> that would do the following:
> - intercept traff
Hi folks,
I want to start evaluating squid 4 beta version.
Is there a tutorial or a step by step document I can use to setup a proxy
that would do the following:
- intercept traffic (transparent proxy)
- handles HTTP and HTTPS (handles gracefully sites that cannot be 'bumped')
- attach an ICAP ser
L.P.H. van Belle wrote:
>
> What is the output of
>
> ktutil list
>
> (of the squid keytab. )
I have already quoted it in the previous message, but I am happy to repeat:
/usr/local/etc/squid/squid.keytab:
Vno Type Principal
1 arcfour-hmac-md5 HTTP/proxy.sibptus.transneft.
Hai,
This is what i now use for the remote ip logging.
cat /etc/apache2/conf-custom/log-remote-ip.conf
## apache 2.4: mod_remoteip is by default available
## enable a2enmod remoteip && service apache2 restart
# for remote proxy setup
RemoteIPHeader X-Forwarded-
Hai,
What is the output of
ktutil list
(of the squid keytab. )
And you can try adding To krb5.conf
; for Windows 2008 with AES
default_tgs_enctypes = aes256-cts-hmac-sha1-96 rc4-hmac des-cbc-crc
des-cbc-md5
default_tkt_enctypes = aes256-cts-hmac-sha1-96 rc4-hmac des
Victor Sudakov wrote:
>
> I have squid 3.5.14 successfully authenticating users from a Windows 2003
> domain, but there is a problem authenticating Windows 2008R2 domain
> users from another realm. I am using the standard
> negotiate_kerberos_auth helper with "-s GSS_C_NO_NAME".
>
> I have collec
Dear Colleagues,
I have squid 3.5.14 successfully authenticating users from a Windows 2003
domain, but there is a problem authenticating Windows 2008R2 domain
users from another realm. I am using the standard
negotiate_kerberos_auth helper with "-s GSS_C_NO_NAME".
I have collected a traffic dump
On 4/03/2016 8:08 p.m., johnzeng wrote:
>
> Hello Dear Sir
>
>
> I hope i can improve hit ratio of cache system recently , but i have two
> question .
>
> first : whether maximum_object_size_in_memory can be writed ( other
> value less than 1KB)
>
> maximum_object_size_in_memory 500 bytes ( wh
On 4/03/2016 10:01 p.m., Ali Jawad wrote:
> Actually, now that I am using 3.15 it seems I get the error for port 80 ->
> 3128 intercepts again
>
> TCP_MISS/503 4274 GET http://www.whereIwantToVisit.net/ - ORIGINAL_DST/
> 162.220.244.7 text/html
This is the same problem happening for both port 443
Actually, now that I am using 3.15 it seems I get the error for port 80 ->
3128 intercepts again
TCP_MISS/503 4274 GET http://www.whereIwantToVisit.net/ - ORIGINAL_DST/
162.220.244.7 text/html
On Fri, Mar 4, 2016 at 10:35 AM, Ali Jawad wrote:
> Hi Amos
>
> Thanks for your input, I did recompile
Yes but!!
We know nothing about the box.
This is not a perfect script at all:
http://ngtech.co.il/squid/ipv6_test.sh
but it verifies if there is a basic ICMP ipv6 access to a publicly
allowed ipv6 icmp host.
And it also sets the dns_v4_first to on automatically.
As I mentioned the first thing
Hi Amos
Thanks for your input, I did recompile
See :
Squid Cache: Version 3.5.15-20160302-r14000
Service Name: squid
configure options: '--prefix=/squid' '--includedir=/squid/usr/include'
'--enable-ssl-crtd' '--datadir=/squid/usr/share' '--bindir=/squid/usr/sbin'
'--libexecdir=/squid/usr/lib/
19 matches
Mail list logo
