nager http request count
and access.log entries
On 23/03/22 09:04, admin wrote:
> Hi!
>
> I’ve recently stumbled across all the information that is returned
> from the squid cache manager. Now after analysing the request count
> data a bit on the cache manager information responses
Hi!
I’ve recently stumbled across all the information that is returned from the
squid cache manager. Now after analysing the request count data a bit on the
cache manager information responses I noticed that they do not match up with
the amount of logs in access.log. There might be 300 reque
It is transparent (intercept) mode
james82 писал 2016-07-07 12:26:
> In normal, people away connect squid proxy with browser. But I want method
> work with whole computer, like VPN, is mean connect machine linux, window or
> Mac to squid proxy installed on it? How to do that?
>
> --
> View this
241 276758 192.168.0.11 TCP_TUNNEL/200 1451680 CONNECT
> 216.58.199.165:443 [24] - ORIGINAL_DST/216.58.199.16 [38]
>
> On Tue, May 17, 2016 at 3:33 PM, Reet Vyas wrote:
>
> Here is my txt file, as of now its working but I am getting secure connection
> failed, I want to know
get your blocked_https.txt
Reet Vyas писал 2016-05-17 14:47:
> Hi
>
> Below is my squid configuration
>
> Squid : 3.5.13
> OS ubuntu 14.04
>
> http_port 3128
> http_port 3127 intercept
> https_port 3129 intercept ssl-bump generate-host-certificates=on
> dynamic_cert_mem_cache_size=4MB
Thanks for answer, Alex!
Alex Rousskov писал 2016-05-17 00:24:
> When access is prohibited via http_access deny, Squid needs to send an
> "Access Denied" error response to the user (this is how http_access
> works). To send that error to the user, Squid needs to establish a
> secure connection w
Amos Jeffries писал 2016-05-16 13:34:
> Please upgrade to 3.5.19.
Upgrade to 3.5.19
>> acl blocked_https ssl::server_name "/etc/squid/urls/block-url"
>> https_port 3129 intercept ssl-bump options=ALL:NO_SSLv3:NO_SSLv2
>> connection-auth=off cert=/etc/squid/squidCA.pem
>> acl step1 at_step SslBu
https://itcrowd72.ru/cloud/index.php/s/W4Sv8ojnf5dVKvc
squid 3.5.19 with SSL. Compiled and build deb in Debian 8. Enjoy :)
Amos Jeffries писал 2016-05-16 14:25:
Please update those to 3.5.19. A dozen CVE's went out these past few
months. :-(
___
s
Yes
Can send to email if needed
Matus UHLAR - fantomas писал 2016-05-16 11:55:
> On 16.05.16 10:36, admin wrote:
>
>> I make deb's compiled squid in Debian 8:
>>
>> 3.5.8
>>
>> 3.5.17
>>
>> 4.0.10
>
> OpenSSL?
>
> Tim Ba
Hi!
Squid 3.5.17 with SSL, intercept.
I use SSL-Bump only step1 that get SNI and terminate HTTPS sites by
domain name. The certificate's is not replaced !
acl blocked_https ssl::server_name "/etc/squid/urls/block-url"
https_port 3129 intercept ssl-bump options=ALL:NO_SSLv3:NO_SSLv2
connecti
I make deb's compiled squid in Debian 8:
3.5.8
3.5.17
4.0.10
Tim Bates писал 2016-05-14 14:36:
> Are there any Linux distros with pre-compiled versions of Squid with SSL Bump
> support compiled in?
>
> Alternatively, does anyone reputable do a 3rd party repo for Debian/Ubuntu
> that incl
I create cert:
openssl req -new -newkey rsa:1024 -days 365 -nodes -x509 -keyout
squidCA.pem -out squidCA.pem
And export it:
openssl x509 -in squidCA.pem -outform DER -out squidCA.crt
Wrong?
Amos Jeffries писал 2016-05-11 17:18:
On 11/05/2016 11:59 p.m., admin wrote:
I just thought! I
Try adding
acl step1 at_step SslBump1
ssl_bump peek step1 bump_sites
This worked for me. Just a suggestion:)
On Thu, Feb 11, 2016 at 3:59 AM, Amos Jeffries wrote:
> On 11/02/2016 1:05 p.m., Victor Hugo wrote:
> > Hi,
> >
> > I was wondering if it is possible to filter HTTPS URLs using squid (
Feb 9, 2016 at 3:50 PM, Rafael Akchurin <
rafael.akchu...@diladele.com> wrote:
> Hello Panda Admin,
>
>
>
> If you do not mind looking at ICAP filtering instead of only URL filtering
> please take a look at our qlproxy (ICAP web filter for Squid).
>
> The shalla list forma
The acl files are up to 16M in size. The RAM on the machine is 4G.
Allocating swap space 8G for the OS has fixed the crashing issue. The only
issue now is startup time. Squid is taking several minutes to start up. Is
there a better solution that I'm missing?
Thanks!
On Tue, Feb 9, 2016 at 12:42
Adding a swap directory fixed it for now. I think it's because my ACL
files are so large.
On Tue, Feb 9, 2016 at 11:00 AM, Panda Admin
wrote:
> I see that, but that's not possible. I still have system memory available.
> I just did a top while running squid, never went over
all in the logs you posted:
>
> ipcCreate: fork: (12) Cannot allocate memory
> WARNING: Cannot run '/lib/squid3/ssl_crtd' process.
> ...
> FATAL: Failed to create unlinkd subprocess
>
> You've run of system memory during startup.
>
>
> On Tue, Feb 9, 2
Hello,
I am running squid 3.5.13 and it crashes with these errors:
2016/02/09 15:43:24 kid1| Set Current Directory to /var/spool/squid3
2016/02/09 15:43:24 kid1| Starting Squid Cache version 3.5.13 for
x86_64-pc-linux-gnu...
2016/02/09 15:43:24 kid1| Service Name: squid
2016/02/09 15:43:24 kid1|
I'm running squid3.5.13 and running the command 'squid -z" says it creates
the directories but doesn't exit. Ever.
Any idea what's going on with that?
Thanks!
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/li
Hello,
I attempting to terminate https traffic based on ACLs using ssl_bumping
WITHOUT de-crypting the traffic in intercept/transparent mode. Has anyone
got this to work before? I have copied my configuration and what my
iptables nat rules look like.
I am using squid 3.5.13 with the following c
Can anyone please tell me how to cache youtube videos.??
___
squid-users mailing list
squid-users@lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
.1.19.81: Flags [P.], seq
73880:73919, ack 1, win 229, options [nop,nop,TS val 105105689 ecr
1399346971], length 39
12:10:16.350870 IP 10.1.1.210.49388 > 10.1.1.19.81: Flags [P.], seq
73919:75328, ack 1, win 229, options [nop,nop,TS val 105105689 ecr
1399346971], length 1409
Zitat von A
k 1, win 229, options [nop,nop,TS val 104477843 ecr
1398719125], length 1448
11:28:24.967816 IP 10.1.1.210.49321 > 10.1.1.19.81: Flags [.], seq
100163:101611, ack 1, win 229, options [nop,nop,TS val 104477843 ecr
1398719125], length 1448
Today I will test also 3.5.10 with patch.
BR, Toni
Zitat
Dear squid team,
first of all thanks for developing such a great product!
Unfortunately on uploading a big test file (unencrypted POST) to
apache webserver using a squid proxy (V 3.5.10 or 4.0.1) the upstream
pakets get slized into thousands of small 39 byte sized pakets.
Excerpt from cach
24 matches
Mail list logo
