I've got squid 3.4.12 on centos 7, running with ssl bumping.
options for ssl_crtd in squid.conf: -s /etc/ssl/certs/cache/ -M 4MB -b 4096
After a while ssl stops working.
How can I make squid or ssl_crtd actually log errors?
Any hints as to what I can investigate to figure out what is happening h
Dear all,
I have to build a proxy server by using the squid.
The number of clients is 400 people.
I do not know the cause of the error message that appears in the cache.log.
In the weekday, I have come up with an error every few hours 8:00 to 18:00.
Access concentration I look like does not matte
Hi ,
A developed guy developed a script that convert Links of sommon sites like
youtube to other Links
The sciprt connecto to proxy and transfer the Link.
The script works well for some websites and give response like :
https://www.youtube.com/watch?v=zYBgFeLCp3E
response on cache.log
==
I am trying to configure transparent squid proxy on ubuntu 14.04 Server and
squid 3.3 version I am using
My Lan and Wan settings
eth0 Link encap:Ethernet HWaddr 00:1e:67:cf:59:74
inet addr:116.72.*.* Bcast:116.72.155.255 Mask:255.255.252.0
inet6 addr: fe80::21e:67ff:fe
I have this in my squid server for it to work:
*mangle
:PREROUTING ACCEPT [190:618576]
:INPUT ACCEPT [190:618576]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [163:41506]
:POSTROUTING ACCEPT [166:42334]
-A PREROUTING -d $myip/32 -p tcp -m multiport --dports 3129 -m comment
--comment "002 drop squid direc
On 2/06/2015 8:33 p.m., Klavs Klavsen wrote:
> I've got squid 3.4.12 on centos 7, running with ssl bumping.
> options for ssl_crtd in squid.conf: -s /etc/ssl/certs/cache/ -M 4MB -b 4096
>
> After a while ssl stops working.
This would be one (or two) of the bugs fixed in the 3.4.13 release.
NOTE:
Thank you Amos.
I'll build 3.5.5 then..
any config changes I need to be aware of?
Amos Jeffries wrote on 06/02/2015 03:38 PM:
On 2/06/2015 8:33 p.m., Klavs Klavsen wrote:
I've got squid 3.4.12 on centos 7, running with ssl bumping.
options for ssl_crtd in squid.conf: -s /etc/ssl/certs/cache/
On 3/06/2015 1:45 a.m., Klavs Klavsen wrote:
> Thank you Amos.
>
> I'll build 3.5.5 then..
>
> any config changes I need to be aware of?
--with-openssl instead of --enable-ssl is the only one that comes to
mind right now. The release notes for 3.4 and 3.5 have the lists.
Amos
>
> Amos Jeffrie
On 2/06/2015 9:15 p.m., Irimajiri keisuke wrote:
> Dear all,
>
> I have to build a proxy server by using the squid.
> The number of clients is 400 people.
>
> I do not know the cause of the error message that appears in the cache.log.
> In the weekday, I have come up with an error every few hours
On 3/06/2015 1:20 a.m., Klavs Klavsen wrote:
> I have this in my squid server for it to work:
The key words there are ... *in my Squid server*
Reet did it on the router. Which was the first mistake.
The router needs routing rules (not NAT) to deliver the clients packets
to Squid machine where th
Amos Jeffries wrote on 06/02/2015 04:34 PM:
On 3/06/2015 1:20 a.m., Klavs Klavsen wrote:
I have this in my squid server for it to work:
The key words there are ... *in my Squid server*
indeed :)
NOTE to Klavs:
loading the "multiport" kernel module seems overkill for a single-port
match
Amos Jeffries wrote on 06/02/2015 04:10 PM:
On 3/06/2015 1:45 a.m., Klavs Klavsen wrote:
Thank you Amos.
I'll build 3.5.5 then..
any config changes I need to be aware of?
--with-openssl instead of --enable-ssl is the only one that comes to
mind right now. The release notes for 3.4 and 3.5 ha
On 3/06/2015 2:46 a.m., Klavs Klavsen wrote:
> Amos Jeffries wrote on 06/02/2015 04:10 PM:
>> On 3/06/2015 1:45 a.m., Klavs Klavsen wrote:
>>> Thank you Amos.
>>>
>>> I'll build 3.5.5 then..
>>>
>>> any config changes I need to be aware of?
>>
>> --with-openssl instead of --enable-ssl is the only o
Hello everyone.. I have been a squid user for a very long time.
Currently I set it up as transparent proxy at a small LAN, proxying http
and https as best as I can.
I get the
(squid-1): The ssl_crtd helpers are crashing too rapidly, need help!
error.. selinux is disabled, and that ssl_db folder
On 1/06/2015 1:19 p.m., Marcel Fossua wrote:
> No luck
> Still not getting result at all I think the issue could be with my Mikrotik
> box
>
> # Marking packets with DSCP (for Mikrotik 6.x) for cache hit content coming
> from SQUID Proxy
>
> /ip firewall mangle
> add action=mark-packet chain=p
Hello!
Just tried to install 3.5.5 on production proxy, users complained about
slow https connections,
I see errors in cache.log like
2015/06/03 09:00:34 kid1| local=192.168.42.130:32922
remote=213.180.193.119:443 FD 964 flags=1: read/write failure: (32)
Broken pipe
2015/06/03 09:00:46 kid1|
On 30/05/2015 8:34 p.m., Henri Wahl wrote:
>
>> Thanks for any hint and best regards
>>
>
> Is there really nobody else using this combo of OpenBSD + Squid workers?
Quite possible. OpenBSD support was broken for a while during 3.3/3.4
lifecycles and most Squid installs are using Linux.
The work
On 3/06/2015 5:06 p.m., Dmitry Melekhov wrote:
> Hello!
>
> Just tried to install 3.5.5 on production proxy, users complained about
> slow https connections,
> I see errors in cache.log like
> 2015/06/03 09:00:34 kid1| local=192.168.42.130:32922
> remote=213.180.193.119:443 FD 964 flags=1: read/wr
I just wrote with the same issue.. According to Amos this is fixed in
later version, and you should run latest (currently 3.5.5) if you want
transparent proxy'ing with https to work.
I haven't gotten 3.5.5 to work yet in my end.
turgut kalfaoğlu wrote on 06/02/2015 05:58 PM:
Hello everyone..
Hi
Thanks for reply. As of now we don't have router I have directly connected
my machine to internet and other to LAN and I have configured client
machine ubuntu to test squid which is in switch where other users are
connected using gateway of router 192.168.0.1.
I read your valuable suggestions,
20 matches
Mail list logo
