So it's leaking memory and not tracking it? Clearly 'top' is showing
it is using a lot of memory and growing over time. I'm happy to do
more tests/etc, but right now I can't go into production with this
memory leak. Should I try squid4?
--
Aaron Turner
https://synfin.net/ Twitter: @synfi
On 03/10/17 04:39, Aaron Turner wrote:
Anyone see anything useful?
The numbers in those reports all seem reasonable to me. Nothing is
showing up with GB of RAM used.
Amos
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.s
I have just started reading the SF post the 10 time.
I really didn’t understood what was the requirement and what or why the
FREEBIND was offered.
And Amos, in intercept\transparent mode there is no way to select the outgoing
addresses but not for a tproxy setup.
Also I do not think that squid s
On 03/10/17 07:44, xpro6000 wrote:
If one were to assign a whole /64 block of IPv6 IPs to a NIC on Linux
then they would use the "ip route add local" method instead of adding
each IP in the /etc/network/interfaces file.
From the testing I have done the IPs that were assigned with the "ip
rou
On 03/10/17 06:44, Hector Chan wrote:
I have a question about caching URLs with an auth token embedded in the
URL parameter. For example:
https://www.example.com/path/page?token=xxx135ynjy93tqi
The page can be uniquely identified without the URL parameters. It
appears squid is using the ful
From: Eliezer Croitoru
> To test if it exists you need to run the next command:
> $ iptables -t mangle -A PREROUTING -p tcp -m socket -j MARK --set-mark 1
Thanks!
___
squid-users mailing list
squid-users@lists.squid-c
Hey Vieri,
I think it's specific to your distro since... it exists in the netfilter
sources as you can see at:
https://github.com/torvalds/linux/blob/4ac4d584886a4f47f8ff3bca0f32ff9a2987d3e5/net/netfilter/xt_socket.c
Squid doesn't use it directly but the iptables rules for tproxy to work
requir
On what OS?(since it does supports it)
But if you just need a NAT proxy then it's another story.
Eliezer
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Sorry for the confusion.I finally found the XT_MATCH_SOCKET option even in
4.12.12.
Thanks,
Vieri
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
Hi,
My distro's Squid package checks for the presence of several kernel config
options. In particular, it checks for these:
NF_CONNTRACK
NETFILTER_XT_MATCH_SOCKET
NETFILTER_XT_TARGET_TPROXY
However, in recent kernels such as 4.12.12, it seems that the following option
is not available anymore:
If one were to assign a whole /64 block of IPv6 IPs to a NIC on Linux then
they would use the "ip route add local" method instead of adding each IP in
the /etc/network/interfaces file.
>From the testing I have done the IPs that were assigned with the "ip route
add local" don't work with Squid and
Not enough information.
Is token persistent from GET to GET? Or it changed from day to day (by
hash from date, for example?) If ir persistent, it can be stored by
store-ID. If not -no.
The other way here is not to blame. It is necessary to understand,
whether the token is really unique for unique
I have a question about caching URLs with an auth token embedded in the URL
parameter. For example:
https://www.example.com/path/page?token=xxx135ynjy93tqi
The page can be uniquely identified without the URL parameters. It appears
squid is using the full URL, including the URL parameters, as th
On 09/30/2017 10:15 PM, Amos Jeffries wrote:
> Please be aware that HTTP documents are protected by international
> copyright laws. Altering other peoples content is illegal in all
> countries signatory to the Berne Convention and many other countries
> individual copyright laws as well.
For the
On 10/02/2017 08:28 AM, Veiko Kukk wrote:
> I found it in the book by Duane Wessels
> Quoting: During each invocation of the rebuild function, Squid adds some
> percentage of the cache to the digest. Squid doesn't process user
> requests while this function runs.
The quoted statement is correct:
Anyone see anything useful?
--
Aaron Turner
https://synfin.net/ Twitter: @synfinatic
My father once told me that respect for the truth comes close to being
the basis for all morality. "Something cannot emerge from nothing,"
he said. This is profound thinking if you understand how unstable
Alex, thank you for your response!
2017-09-27 18:06 GMT+03:00 Alex Rousskov :
> On 09/27/2017 03:46 AM, Veiko Kukk wrote:
>
> > Siblings are configured with no-proxy keyword to achieve that they don't
> > cache what other siblings already have in their cache.
>
> I assume that by "no-proxy" you m
On 09/28/2017 06:10 PM, anwesh tiwari wrote:
> Ipv6 acl is not working as expected, if the ipv6 address of domain is
> unrouteable and it fallbacks to ipv4 even when its denied.
>
> Details : What I am trying to achieve : I want to disable all IPv4
> domain access from proxy and disable all ipv4
Hey,
Give try to give me some specs on what you need(maybe In pm) and I will see if
I might sketch you a tiny NAT proxy.
Take a peek at:
https://github.com/LiamHaworth/go-tproxy
It's a very nice library which you might be able to use.
Eliezer
* There are more then one vendor out there which mo
19 matches
Mail list logo
