Understood. The weird thing is that I have that one android device that is
working correctly. IE: The online services are showing it's correct squid
proxy. No other android or windows vm will do that. Very odd.
___
squid-users mailing list
squid-users@lis
The squid logs show traffic going to the expected destinations.
If I look at wireshark on one of the client systems I do see some http
entries going to those destinations through the squid server. However most
of the traffic (UDP / TCP) doesn't seem to be going through the squid
server.
I'm not su
> What protocol do those external services use in problematic use cases?
Does Squid see the corresponding requests from VMs? Squid can only proxy
HTTP and FTP...
http and https only
The weird thing is I have an android test phone that also goes through
squid and that device shows the correct IP o
My lab is setup as such:
Hypervisor host
Squid VM
Test VM 1 (windows)
Test VM 2 (windows)
Test VM 3 (windows)
I have my proxies setup in the squid config. On the test vms I have the
windows proxy settings pointing to the squid IP and port. If I check the
public IP on that vm it shows up as the pro
> On 7/16/23 08:03, Scott wrote:
> > Hi all,
> >
> > I have four IPv4s that I use for outgoing source addresses to origin
> > servers.
> > I currently have them used randomly, but this sometimes causes issues for
> > certain sites that get conf
while maintaining consistency
per-source?
Follow-up: can I do the same for IPv6 clients?
Thanks,
Scott
PS: As an aside, the following ACL generated the following warning:
acl tm_src_11 src 0.0.0.3 0.0.0.3
Configuration for squid passes.
2023/07/15 23:38:40| WARNING: (B) '0.0.0.3' is a
On Sat, Oct 31, 2020 at 12:49:16AM +1300, Amos Jeffries wrote:
> On 30/10/20 3:27 pm, Scott wrote:
> > On Thu, Oct 29, 2020 at 10:08:42PM +1300, Amos Jeffries wrote:
> >> On 29/10/20 12:06 pm, Scott wrote:
> >>> On Wed, Oct 28, 2020 at 12:00:01PM +, squid-users-
On Thu, Oct 29, 2020 at 10:08:42PM +1300, Amos Jeffries wrote:
> On 29/10/20 12:06 pm, Scott wrote:
> > On Wed, Oct 28, 2020 at 12:00:01PM +, squid-users-reques wrote:
> >> Date: Thu, 29 Oct 2020 00:08:34 +1300
> >> From: Amos Jeffries
> >>
&
g - not working on IE/Chrome
>
> On 28/10/20 5:25 pm, Scott wrote:
> >
> > Here are the logs (first not working, followed by working).
> >
> > Note this is the login attempt, not the loading of the initial page. You'll
> > see in the NOT WORKING sect
g - not working on IE/Chrome
>
> On 28/10/20 5:25 pm, Scott wrote:
> >
> > Here are the logs (first not working, followed by working).
> >
> > Note this is the login attempt, not the loading of the initial page. You'll
> > see in the NOT WORKING sect
On Tue, Oct 27, 2020 at 09:30:16PM +0200, Eliezer Croitor wrote:
> Hey Scott,
>
> Can you attach any example cookie with and without the secure value?
> (replace sensitive data)
>
> Thanks,
> Eliezer
>
>
> Eliezer Croitoru
> Tech Support
> Mobi
o get
squid to add the "secure" attribute to cookies? At least for testing it
clarify what's going on.
Thanks,
Scott
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
Hi,
some iOS requests to gateway.icloud.com via squid (explicit) throw the
following error in the logs:
2020-07-23T15:31:08+10:00 00.11.22.68 (squid-1): ABCD::17 (iphoneXs.domain.com)
- via -:- - - [23/Jul/2020:15:31:08 +1000] "- error:invalid-request HTTP/1.1"
400 3739 "-" "-" NONE_NONE:HIER
On Mon, May 25, 2020 at 06:34:19PM +1200, Amos Jeffries wrote:
> On 25/05/20 12:56 am, Scott wrote:
> > Hi,
> >
> > Can someone recommend an ICAP application that will allow me to dump the
> > HTTP
> > of a client-server conversation?
> >
> >
ere a dump option for c-icap? I couldn't find one.
Thanks,
Scott
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
On Thu, Apr 30, 2020 at 04:05:43PM -0400, Alex Rousskov wrote:
> On 4/30/20 12:10 PM, Scott wrote:
>
> >> * For http_port configured with an ssl-bump flag, HTTP CONNECT tunnels
> >> are sent to the SslBump code.
> >>
> >> * For https_port configured
> Date: Mon, 27 Apr 2020 15:09:03 -0400
> From: Alex Rousskov
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] Best way to prevent squid from bumping CONNECTs
>
> On 4/27/20 12:21 PM, Scott wrote:
>
> > my experience with ssl_bump is that it tr
of bumping?
My workaround has been to simply add `!CONNECT' to the `ssl_bump host_acl'
statements. Squid will happily bump the SSL sessions and proxy the CONNECT
sessions.
Thanks,
Scott
___
squid-users mailing list
squid-users@lists.squid-cac
> Date: Mon, 2 Mar 2020 01:18:58 +1300
> From: Amos Jeffries
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] Invalid URL when trying to access cachemgr
>
> On 29/02/20 4:11 pm, Scott wrote:
> > Hi all,
> >
> > I have three squid proxi
uld not be retrieved
The following error was encountered while trying to retrieve the
URL: cache_object://localhost/info
I have tried replacing `localhost' with the visible_hostname to no avail.
Does anyone have any clues as to why this may be?
> Date: Sun, 16 Feb 2020 01:50:19 +1300
> From: Amos Jeffries
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] squid-users Digest, Vol 66, Issue 17
>
> On 16/02/20 12:42 am, Scott wrote:
> >> Date: Fri, 14 Feb 2020 11:03:50 -0500
> >> From
> Date: Fri, 14 Feb 2020 11:03:50 -0500
> From: Alex Rousskov
> To: squid-users@lists.squid-cache.org
> Subject: Re: [squid-users] [Feature request] add IP version to logformat
> format codes
>
> On 2/14/20 10:36 AM, Scott wrote:
>
> > I know it's derivable b
Hi,
I know it's derivable by other means, but it would be nice to have a
logformat format code that provided the client and server IP version numbers.
eg: >v for Client IP version (4 or 6) and http://lists.squid-cache.org/listinfo/squid-users
Hi,
I just noticed that ssl::server_name matches against the Host: header of
non-TLS connections, which is handy, but it's not documented thusly in
http://www.squid-cache.org/Doc/config/acl/
Is that behaviour expected? I'm running 4.9 btw.
Tha
> On 12/12/19 1:49 am, Scott wrote:
> >> On 11/12/19 8:51 pm, Scott wrote:
> >>> Hi,
> >>>
> >>> I understand that squid does some security checking that the SNI of an
> >>> intercepted/WCCP HTTPS requests matches the reverse DNS
> On 11/12/19 8:51 pm, Scott wrote:
> > Hi,
> >
> > I understand that squid does some security checking that the SNI of an
> > intercepted/WCCP HTTPS requests matches the reverse DNS of the IP of the
> > connection. Or something like that.
>
> Not be
Hi,
I understand that squid does some security checking that the SNI of an
intercepted/WCCP HTTPS requests matches the reverse DNS of the IP of the
connection. Or something like that.
However with the prevalence of CDNs and badly configured DNSs and geographic
DNSs, this breaks lots of connec
Greetings,
Checking in to see how the new Squid for Windows build is coming along, is
there an update? Is there a tentative release date?
*Subject is incorrect---ignore 'splunk'
Scott Kumpf
Sr. Network Engineer-EMS (Contractor)
Orlando Utilities Commission
Office: (407) 434-4305 /
ssing.
Any and all feedback, guidance, and assistance is greatly appreciated.
Thanks,
Scott
Scott Kumpf
Sr. Network Engineer (Contractor)
Orlando Utilities Commission
Office: (407) 434-4305 / Cell: (386) 547-2698
Email: sku...@ouc.com
DISCLAIMER:
Florida
30 matches
Mail list logo
