, 2017 6:06 PM
To: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] A bunch of SSL errors I am not sure why
On 19/01/2017 3:29 a.m., Sameh Onaissi wrote:
Hello Eliezer, all
Sorry for the late reply.
When I configure the browser to access a non intercept port, the errors do not
show
ech.co.il/lmgtfy/>
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il<mailto:elie...@ngtech.co.il>
From: Sameh Onaissi [mailto:sameh.onai...@solcv.com]
Sent: Wednesday, January 18, 2017 4:32 PM
To: Eliezer Croitoru mailto:elie...@ngtech.co.il>>
Subject: Fw
urity -Wall'
'LDFLAGS=-Wl,-Bsymbolic-functions -fPIE -pie -Wl,-z,relro -Wl,-z,now
-Wl,--as-needed' 'CPPFLAGS=-Wdate-time -D_FORTIFY_SOURCE=2' 'CXXFLAGS=-g -O2
-fPIE -fstack-protector-strong -Wformat -Werror=format-security'
@Amos:
* Check that the set of "
p line and see what happens.
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of Sameh Onaissi
Sent: Thursday, January 12, 2017 11:10 PM
To: squid-users@l
System info:
Squid Cache: Version 3.5.22
Ubuntu linux 16.04
Hello,
Last couple of days I have started seeing SSL errors in my cache.log which I
don’t really understand: http://pastebin.com/mDHVm7cQ
My SSL bump configs:
http_port 3127 intercept
http_port 3128
https_port 3129 intercept ssl-bump
ezer Croitoru
> Linux System Administrator
> Mobile: +972-5-28704261
> Email: elie...@ngtech.co.il
>
>
> -----Original Message-
> From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On
> Behalf Of Sameh Onaissi
> Sent: Friday, December 23, 2016 2:03 AM
>
Thursday 22 December 2016 at 22:50:33, Sameh Onaissi wrote:
>
>> The user has hotspot shield installed on his PC, which I believe is a
>> similar extension to the one you mentioned.
>
>> He is getting by squid with some sort of VPN, I thought squid can be
>> configured aga
tems, do you allow urls specified
by IP as well as hostnames?
Paul
NOTE: This email contains my personal opinions and comments which do not
necessarily represent those of my employer.
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of Sameh Onaissi
Sent: Friday, 23
g fine, but that blue shield extension seems to be the reason behind
“fooling” squid.
Both the chrome extension and the Desktop client are installed on the machine.
I tried replicating that, but I couldn’t even connect the client.
What should I be looking for in cache.log?
Thanks again!
S
see if there is a
hole in the setup you don’t see yet.
Eliezer
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On
Behalf Of Sameh Onaissi
Sent: Wednesday, Decem
Hello all,
I got a transparent squid installed on Ubuntu 16.04
Using squid guard, I am blocking certain websites, including youtube.
Anytime a user tries accessing it, he/she is redirected to an access denied
page.
Except for ONE user!
One user is somehow, able to access you tube through squi
bile: +972-5-28704261
> Email: elie...@ngtech.co.il
>
>
> -Original Message-
> From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On
> Behalf Of Sameh Onaissi
> Sent: Tuesday, December 20, 2016 6:16 PM
> Cc: squid-users@lists.squid-cache.org
> Subject: Re: [squi
Antony is right….
I have that line in my config file. That is my config that Antony posted
(http://pastebin.com/TQ8H6bRp), except I excluded the SMTP port as Amos
recommended.
> On Dec 20, 2016, at 11:11 AM, Antony Stone
> wrote:
>
> On Tuesday 20 December 2016 at 16:59:11, Eliezer Croitoru
Hi Eliezer,
Thanks for the reply.
changing /etc/hosts made no difference, the new log just showed the ipv4
localhost:
verbosity level set to 2
Request:
GET cache_object://localhost/info HTTP/1.0
Host: localhost
User-Agent: squidclient/3.5.22
Accept: */*
Connection: close
.
Transport detected:
On Dec 19, 2016, at 11:55 PM, Amos Jeffries
mailto:squ...@treenet.co.nz>> wrote:
On 20/12/2016 9:52 a.m., Sameh Onaissi wrote:
On Dec 19, 2016, at 1:31 PM, Antony Stone wrote:
On Monday 19 December 2016 at 17:44:11, Sameh Onaissi wrote:
Hello,
I was using squid client to get cache
> On Dec 19, 2016, at 1:31 PM, Antony Stone
> wrote:
>
> On Monday 19 December 2016 at 17:44:11, Sameh Onaissi wrote:
>
>> Hello,
>>
>> I was using squid client to get cache stats, however this morning it
>> completely stopped working.
>
>>
Hello,
I was using squid client to get cache stats, however this morning it completely
stopped working.
When I run squidclient mgr:info I get the following
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2016 16:33:44 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 25 Nov 2016 16:55:22 GMT
ETag: "bd-5
Hello,
I was using squid client to get cache stats, however this morning it completely
stopped working.
When I run squidclient mgr:info I get the following
HTTP/1.1 200 OK
Date: Mon, 19 Dec 2016 16:33:44 GMT
Server: Apache/2.4.7 (Ubuntu)
Last-Modified: Fri, 25 Nov 2016 16:55:22 GMT
ETag: "bd-5
FD1C3AB-E45C-49F0-84AB-0F8AC658BD11@routerb408e2.com]Piensa en el medio
ambiente antes de imprimir este email.
On Dec 14, 2016, at 2:11 PM, Antony Stone
mailto:antony.st...@squid.open.source.it>>
wrote:
On Wednesday 14 December 2016 at 17:26:34, Sameh Onaissi wrote:
Thanks for your reply.
He
este email.
On Dec 14, 2016, at 10:25 AM, Antony Stone
mailto:antony.st...@squid.open.source.it>>
wrote:
On Wednesday 14 December 2016 at 16:16:17, Sameh Onaissi wrote:
Looking at access.log, to find the Skype IPs, I noticed a LOT of unknown
source IPs. All those IPs seem to be originate
Hello,
I have a functional transparent squid with ssl-bump on Ubuntu 16.04
With Eliezer’s great help, I added a bypass pool to bypass Skype for Business
IPs and allow the Skype for Business client to log in successfully. I notices
that personal Skype is not logging in however, so I wanted to a
e: +972-5-28704261
Email: elie...@ngtech.co.il
From: Sameh Onaissi [mailto:sameh.onai...@solcv.com]
Sent: Wednesday, December 7, 2016 10:11 PM
To: Eliezer Croitoru
Cc: squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Skype for Business behind a transparent squid
(TProxy) HTTP/S
iptabl
resolve most of the issues.
Eliezer
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
From: Sameh Onaissi [mailto:sameh.onai...@solcv.com]
Sent: Wednesday, December 7, 2016 6:09 PM
To: Eliezer Croitoru
Cc: squid-users@lists.squid-cac
bn1.gstatic.com/images?q=tbn:ANd9GcQfU2bXCBPGhd5da40t2NysagP5_TdzOv6NOC14r3PXrn5b8k8cog]
Piensa en el medio ambiente antes de imprimir este email.
From: Eliezer Croitoru
Sent: Wednesday, December 7, 2016 10:58:18 AM
To: Sameh Onaissi
Cc: squid-users@lists.squid-cache.org
Subject: RE: [squid-users] Skype for Busin
.
On Dec 7, 2016, at 9:50 AM, Eliezer Croitoru
mailto:elie...@ngtech.co.il>> wrote:
Was there any progress with the script and the issues?
Eliezer
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
From: Sameh O
outerb408e2.com]Piensa en el medio
ambiente antes de imprimir este email.
On Dec 6, 2016, at 6:31 PM, Eliezer Croitoru
mailto:elie...@ngtech.co.il>> wrote:
You should try to think about adding more ip addresses\cirds and domains
such as that are in the logs.
Eliezer
http://ngtech.co.il/
m/images?q=tbn:ANd9GcQfU2bXCBPGhd5da40t2NysagP5_TdzOv6NOC14r3PXrn5b8k8cog]
Piensa en el medio ambiente antes de imprimir este email.
From: Eliezer Croitoru
Sent: Tuesday, December 6, 2016 4:36:56 PM
To: Sameh Onaissi
Cc: 'Amos Jeffries'; squid-users@lists.squid-cache.org
Subject: RE: [sq
-
http://ngtech.co.il/lmgtfy/
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il
From: Sameh Onaissi [mailto:sameh.onai...@solcv.com]
Sent: Tuesday, December 6, 2016 7:29 PM
To: Eliezer Croitoru
Cc: Amos Jeffries ; squid-users@lists.squid-cache.org
Subject: Re: [squid-users] Sky
first IP and got:
NetRange: 132.245.0.0 - 132.245.255.255
CIDR: 132.245.0.0/16
NetName:MICROSOFT
Same with the 134.170. address. Can we slice that range?
[cid:DA9A1E3F-3876-4EF2-BBA2-D3942A06ACE1@routerb408e2.com]
Sameh Onaissi
Ingeniero de Soporte
Sol Cable Visión
Ce
addresses to bypass it works fine.
Eliezer
Eliezer Croitoru<http://ngtech.co.il/lmgtfy/>
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il<mailto:elie...@ngtech.co.il>
From: Sameh Onaissi [mailto:sameh.onai...@solcv.com]
Sent: Tuesday, December 6,
should work to begin with.
Eliezer
Eliezer Croitoru<http://ngtech.co.il/lmgtfy/>
Linux System Administrator
Mobile: +972-5-28704261
Email: elie...@ngtech.co.il<mailto:elie...@ngtech.co.il>
From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf
Of
I have a Ubuntu 16.04 server with Squid 3.5.22 installed. It acts as a gateway
in a LAN.
It is configured to intercept HTTP and HTTPS traffic (Transparent). So iptables
redirects were used for ports 80 and 443.
The server runs two scripts:
nat.sh to bridge the two network cards, allowing LAN co
32 matches
Mail list logo
