Re: [squid-users] external_acl_type wont work

Thanks i'll try it later Amos Jeffries wrote > On 7/03/2016 3:46 p.m., Baselsayeh wrote: >> Thanks for the script >> Is there a semplified bash script so I can understand it? > > This one is close: >

Re: [squid-users] Bizarrely slow, timing out DNS only via Squid :D

Alright, we’re getting somewhere. A plain curl is about as slow as a default squid config curl: P.S. I sent you a Skype request --- # time curl http://httpbin.org/ip { "origin": "59.167.202.249" } real0m5.513s user0m0.002s sys 0m0.001s # time curl http://httpbin.org/ip --proxy h

Re: [squid-users] Bizarrely slow, timing out DNS only via Squid :D

If you want to somehow use a skype\irc session to see what can be done without all the hassle of emails back and forth let me know. Eliezer On 06/03/2016 13:55, Dan Charlesworth wrote: For what it's worth, I've now tried disabling IPv6 via sysctl and it didn't make any difference. Appreciate

Re: [squid-users] SSL Bump Issue

Hi Amos Thanks for the elaborate reply, I highly appreciate it. I did flush iptables and re-applied from scratch, see : [root@kgoDcyTx9 ~]# iptables -nL -t nat Chain PREROUTING (policy ACCEPT) target prot opt source destination ACCEPT tcp -- 162.220.xx.xx0.0.0.0/

Re: [squid-users] external_acl_type wont work

On 7/03/2016 3:46 p.m., Baselsayeh wrote: > Thanks for the script > Is there a semplified bash script so I can understand it? This one is close: Notice it uses the old URL-rewrite interface

Re: [squid-users] external_acl_type wont work

Thanks for the script Is there a semplified bash script so I can understand it? Eliezer Croitoru-2 wrote > On 06/03/2016 22:44, Baselsayeh wrote: >> Im sorry but I think its a squid related issue than php >> I tried also with simple bash script with read and echo > gg.txt >> And the output file sh

Re: [squid-users] SSL Bump Issue

On 7/03/2016 2:50 p.m., Ali Jawad wrote: > Hi > Pardon me if I am mistaken but isnt it the case that 1 : > > iptables -t nat -A PREROUTING -p tcp --dport 443 --destination > 162.220.xx.xx -j REDIRECT --to-ports 3129 > The rule above would only match for the IP of squid and squid should be > headi

Re: [squid-users] external_acl_type wont work

On 06/03/2016 22:44, Baselsayeh wrote: Im sorry but I think its a squid related issue than php I tried also with simple bash script with read and echo > gg.txt And the output file should contain string but it dont for some reason I have a suggestion! First some kind of reference to something t

[squid-users] Whether bypass the part TAG_NONE/400 4413 NONE error:invalid-request - HIER_NONE/- text/html at access.log

Hello Dear Amos: Thanks again , and i will try to bypass same traffic via firewall in according to your advisement . John [squid-users] Whether bypass the part TAG_NONE/400 4413 NONE error:invalid-request - HIER_NONE/- text/html at access.log *Amos Jeffries* squid3 at treenet.co.nz

Re: [squid-users] SSL Bump Issue

Hi Pardon me if I am mistaken but isnt it the case that 1 : iptables -t nat -A PREROUTING -p tcp --dport 443 --destination 162.220.xx.xx -j REDIRECT --to-ports 3129 The rule above would only match for the IP of squid and squid should be heading to the actual IP of the site in question which is no

Re: [squid-users] Kerberos (Negotiate) problem with win2008 AD users

On Sun, Mar 06, 2016 at 07:18:18PM +0600, Victor Sudakov wrote: > > On a more practical note, the Windows command to extract the squid > keytab from the AD was > > ktpass -princ HTTP/proxy2.sibptus...@stn.tn.corp -mapuser squiduser +rndPass > -out squid.keytab -ptype KRB5_NT_PRINCIPAL /target x.

Re: [squid-users] external_acl_type wont work

Im sorry but I think its a squid related issue than php I tried also with simple bash script with read and echo > gg.txt And the output file should contain string but it dont for some reason Yuri Voinov wrote > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > I suggest better to ask this o

Re: [squid-users] external_acl_type wont work

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I suggest better to ask this on any php forum 07.03.16 1:59, Baselsayeh пишет: > Php wont get stdin for some reason > Squid wont pass any parameter > > > Baselsayeh wrote >> im using php just for testing. >> my script after editing: >> http:

Re: [squid-users] external_acl_type wont work

Php wont get stdin for some reason Squid wont pass any parameter Baselsayeh wrote > im using php just for testing. > my script after editing: > http://pastebin.com/AvvZRP9s > and what should squid expect from php script starting? > Amos Jeffries wrote >> On 6/03

Re: [squid-users] Squid ssl bump with upstream proxy

Thanks i managed to do it Amos Jeffries wrote > On 2/03/2016 3:02 p.m., Baselsayeh wrote: >> My proxy supports connecting to https website by using >> (Connect Website:443) (as if normal proxy in browser sittings) >> The problem is that the proxy dosent support tunnels > > Yes, that is what we h

Re: [squid-users] external_acl_type wont work

im using php just for testing. my script after editing: http://pastebin.com/AvvZRP9s and what should squid expect from php script starting? Amos Jeffries wrote > On 6/03/2016 8:47 a.m., Baselsayeh wrote: >> hello >> im using external_acl_type with my php script >

Re: [squid-users] Kerberos (Negotiate) problem with win2008 AD users

Markus Moeller wrote: > > mismatch. What do you get when using the 2003 clients ? > > Markus, you are great! That was indeed the cause of the problem. Thank > you ever so much. > > I have created an identical key with kvno=3 in the squid keytab, and > now it's working. To hell with the Windows a

Re: [squid-users] Bizarrely slow, timing out DNS only via Squid :D

For what it's worth, I've now tried disabling IPv6 via sysctl and it didn't make any difference. Appreciate the advice so far. More from me tomorrow. ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squ

Re: [squid-users] Just a simple question about ACL

On 6/03/2016 2:18 p.m., Verónica Ovando wrote: > Hi, community. > > I need to understand why this rules are not working. Unfortunately that is far from simple. > > My squid is working with AD authentication. > > I need to allow the group *AD_informatico* to visit facebook only during > *mania

Re: [squid-users] external_acl_type wont work

On 6/03/2016 8:47 a.m., Baselsayeh wrote: > hello > im using external_acl_type with my php script > squid config: > external_acl_type session children-max=1 %SRC /home/basel/Desktop/php/php.php > -k jj > acl session_login external session LOGIN > acl session_is_active external session CHECK > acl

Re: [squid-users] Whether bypass the part TAG_NONE/400 4413 NONE error:invalid-request - HIER_NONE/- text/html at access.log

On 6/03/2016 11:09 a.m., johnzeng wrote: > > Hello Dear Sir > > i found more error info at access.log > > 192.168.0.16 TAG_NONE/400 4413 NONE error:invalid-request - HIER_NONE/- > text/html > > Whether we can skip or bypass the TAG_NONE/400 ? Skip or bypass what exactly? Squid is an HTTP prox

Re: [squid-users] Squid splash page TTL and refresh

On 6/03/2016 10:21 p.m., Amos Jeffries wrote: > On 5/03/2016 7:01 a.m., project722 wrote: >> >> Problem is, we want the user to be automatically redirected to the >> originally requested page after the 30 second TTL is up. How can I set this >> up? >> > > Squid does not have anything to do with ap

Re: [squid-users] Squid splash page TTL and refresh

On 5/03/2016 7:01 a.m., project722 wrote: > > Problem is, we want the user to be automatically redirected to the > originally requested page after the 30 second TTL is up. How can I set this > up? > Squid does not have anything to do with application level behaviour on the client. You need to lo