Re: [squid-users] Fwd: Re: Authentification LDAP Exception for IP adresse

> Date: Friday 26 February 2016 10:17:18 > From: Jérôme Seuniac > > Sorry for my squid.conf, want those two IP addresses to be > allowed access without authentication. In that case simply define an ACL for those two addresses and add an http_access line for them before anything else. You curre

Re: [squid-users] Writing a squid plugin

On Friday 26 February 2016 at 12:52:46, Avraham Serour wrote: > Hi, > > I would like to write a plugin for squid, if it at all possible, I'm > inspired by the idea of a squid prefetch package I saw once (and can't find > the link again right now), the script was in perl and basically tail -f the

Re: [squid-users] http host rewrite for origin (reverse proxy)

On Wednesday 09 March 2016 at 15:29:48, Tomas Mozes wrote: > the origin server has multiple virtual hosts configured, so if it does not > receive the Host: header by which it is configured (like > storage.example.com), it will emit a 404. > > Currently, this does the following. The clients reques

Re: [squid-users] http host rewrite for origin (reverse proxy)

On Wednesday 09 March 2016 at 15:53:24, Amos Jeffries wrote: > On 10/03/2016 3:33 a.m., Antony Stone wrote: > > > > 2. Have you considered using Apache in reverse-proxy mode instead of > > Squid? It will happily re-write headers for you, and also supports load > >

Re: [squid-users] ssl + stunnel and cache peer

On Tuesday 29 Mar 2016 at 20:11, Baselsayeh wrote: > my setup is > my pc with squid(as stunnel client) -> stunnel and proxy(normal non > https) > ive got these errors: > 2-i cant surf any https site What do you mean by the remote proxy being "normal non https"? Is that perhaps the reason yo

Re: [squid-users] squid and hotmail problems

On Wednesday 06 April 2016 at 23:55:56, iba...@ith.mx wrote: > From about 10 days ago hotmail and yahoo stopped working on my data > networks using squid. Do you have any error messages / logfile entries / configuration information / etc you might be able to share with us? > Apparently there is

Re: [squid-users] New to proxies

On Wednesday 20 April 2016 at 14:34:07, cjwengler wrote: > I use the proxies for my sneaker program and I need one proxy per account > for that. Why? > Sometimes I run up to 1000 accounts. Do you have 1000 IP addresses? > The proxies are used for purchasing sneakers and clothing on sites such

[squid-users] Extraneous question regarding SSL interception

Hi. Forgive me if this is answered in the documentation somewhere (but please point me at it if so, because I haven't been able to find it), but where do the terms "bump", "peek", "splice" and "stare" come from? Personally I don't find them particularly intuitive to comprehend, in terms of wha

Re: [squid-users] Is it possible to log request's proxy hostname in the access log?

On Thursday 21 April 2016 at 22:21:15, Ser de Bronce wrote: > I have a squid server that can be accessed from multiple subdomains. > For example, user A does a proxy request on "aaa.myproxy.com" and user B on > "bbb.myproxy.com" > Is it possible to log which subdomain was requested by the user? N

Re: [squid-users] Extraneous question regarding SSL interception

On Thursday 21 April 2016 at 22:53:35, Alex Rousskov wrote a good explanation of SSL bumping. > On 04/21/2016 02:22 PM, Antony Stone wrote: > > Forgive me if this is answered in the documentation somewhere (but please > > point me at it if so, because I haven't been able to

Re: [squid-users] Using Squid with 1 NIC

On Saturday 23 April 2016 at 19:12:56, Yuri Voinov wrote: > http://wiki.squid-cache.org/ConfigExamples/Intercept Surely there's no reason to have to set up intercept mode (unless the OP can't configure the applications to use an explicit proxy)? I'm assuming the gateway 192.168.1.1 does outboun

Re: [squid-users] what it means by publishing ?

On Monday 02 May 2016 at 16:51:51, asad wrote: > I want to know accurate understanding of term "publishing" means , > Microsoft TMG confuses me. I need this info to reply a proposal for a bank > which is requesting publishing support. > > stating "to make avaiable a web request over net through a

Re: [squid-users] Squid and AD => That' s don't work !

On Wednesday 11 May 2016 at 10:08:30, Olivier CALVANO wrote: > Hi > > is that someone has actually used squid with ntlm AD authentication? Yes. > because it don't works really well It would be helpful if you could give us a clearer error report. Useful information for someone to be able to he

Re: [squid-users] Windows Squid with AD authentication

On Thursday 12 May 2016 at 18:46:36, Nilesh Gavali wrote: > Team; > we have squid running on Windows and need to integrate it with Windows AD > .can anyone help me with steps to be perform to get this done. This specific question has appeared a few times on this list only recently. Have you so f

Re: [squid-users] DNS lookup fails initially for FQDN in squid

On Friday 27 May 2016 at 16:12:47, Aashima Madaan wrote: > Hi, > > In my squid configuration file, I am adding a Fully Qualified Domain Name > instead of an IP address for my ICAP server but it is not able to resolve > that name initially Please define "initially" - do you mean: - when the squ

Re: [squid-users] DNS lookup fails initially for FQDN in squid

On Friday 27 May 2016 at 17:10:48, Aashima Madaan wrote: > > Please define "initially" - do you mean: > > > > - when the squid server is booted up > > - when the squid service is started on an already-running server > > - something else? > > > initially here means when I start squid service So

Re: [squid-users] DNS lookup fails initially for FQDN in squid

On Friday 27 May 2016 at 17:51:36, Aashima Madaan wrote: > > So, does the problem exist if you: > > > > 1. Stop Squid > > 2. Type "host short.domain.name" to resolve the ICAP server manually > > 3. Start Squid > > > > (The last two commands in as quick succession as possible - preferably on > >

Re: [squid-users] Establishing secure conection problems (Chrome)

On Thursday 02 June 2016 at 14:03:33, William Ivanski wrote: > I've started experiencing some problems with Google Chrome after installing > Squid in my Network. > Any suggestions? Yes - tell us how you installed squid, which version you installed, which platform (O/S and version) you installed

Re: [squid-users] Establishing secure conection problems (Chrome)

On Thursday 02 June 2016 at 15:35:10, William Ivanski wrote: > Thank you for your quick response. > > First of all forgive me for the lack of information in the first > email. I've tried to disable QUIC a few minutes ago and the problem > persists. Follow the information requested: > > -> Compil

Re: [squid-users] Redirect after sslbump teminate

On Monday 13 June 2016 at 10:51:35, Eng Hooda wrote: > Thank You for your response. > Using the certificate is something I want to avoid. > So I think it's acceptable as it is now. > > I searched again and found an explanation , copied below FYI. > > "To serve an HTTP error to an SSL client, Squ

Re: [squid-users] Squid high memory usage

On Monday 06 June 2016 at 13:23:17, FredB wrote: > Capture with swap full > Tasks: 2740 total, 3 running, 2737 sleeping, 0 stopped, 0 zombie Hm, isn't 2740 tasks rather a lot? What are most of them? With a load average of 0.81 it looks like maybe you have a very large number of child process

Re: [squid-users] Redirect after sslbump teminate

icate is something I want to avoid." :) Antony. > 13.06.2016 15:01, Antony Stone пишет: > > On Monday 13 June 2016 at 10:51:35, Eng Hooda wrote: > >> Thank You for your response. > >> Using the certificate is something I want to avoid. > >> So I think it&#x

Re: [squid-users] Squid not allowing HTTPS access

On Monday 13 June 2016 at 15:01:02, Nilesh Gavali wrote: > Facing issue while accessing HTTPS via squid, normal http traffic working > fine. Please define "issue", with as much detail as possible: - what exactly are you trying to do when a problem occurs? - have you previously been able to do

Re: [squid-users] Squid not allowing HTTPS access

On Tuesday 14 June 2016 at 12:36:30, Nilesh Gavali wrote: > Team; > kindly help on below issue. Nilesh: kindly respond to my reply below. On Monday 13 June 2016 at 15:26:22, Antony Stone wrote: > On Monday 13 June 2016 at 15:01:02, Nilesh Gavali wrote: > > Facing issue while

Re: [squid-users] Regex optimization

On Thursday 16 June 2016 at 21:11:50, Alfredo Rezinovsky wrote: > Well.. I tried. > I need to ban 8613 URLs. Because a law. Have you considered https://www.urlfilterdb.com/products/ufdbguard.html ? > If I put one per line in a file and set the filename for an url_regex acl > it works. But when t

Re: [squid-users] dead gateway, not dead peer..

On Monday 20 June 2016 at 21:53:04, B. Cook wrote: > Looking for a second opinion.. > > I think this is beyond the scope of squid, but I figured I would ask > anyway.. Maybe it is, maybe it isn't - I don't think you've given anything like enough information for us to know. > VZW FiOS link in o

Re: [squid-users] Squid3 error: CHILD: hello write test failed logrotate

On Wednesday 22 June 2016 at 14:53:23, Roberto Carna wrote: > everything was OK until the /var/log/squid3/access.log rotate to > access.log.1. From this moment, the access.log file is not present, and the > squid3 daemon doesn't respond...I'm not sure the cause. Show us your log rotation script.

Re: [squid-users] Squid3 error: CHILD: hello write test failed logrotate

On Wednesday 22 June 2016 at 15:49:57, Roberto Carna wrote: > Also I see in cache.log: > > pinger: Initialising ICMP pinger ... > 2016/06/22 09:58:51| pinger: ICMP socket opened. > 2016/06/22 09:58:51| icmp_sock: (97) Address family not supported by > protocol 2016/06/22 09:58:51| pinger: Unabl

Re: [squid-users] Squid3 error: CHILD: hello write test failed logrotate

On Wednesday 22 June 2016 at 15:44:42, Roberto Carna wrote: > Dear Antony, thanks for your help..below is the > /etc/logrotate.d/squid3 filebut before I have to say I've seen in > the web that this problem is solved by enabling IPv6, and was reported > by a ticket (https://forum.opnsense.org/i

Re: [squid-users] Squid won't listen to ipv4

On Wednesday 22 June 2016 at 16:21:08, Pavel Lint wrote: > After compiling and launching squid 3.5.12 on my Red Had Linux > (3.10.0-327.13.1.el7.x86_64), I face the problem of Squid listening to > ipv6 only. How have you determined this? Have you tried connecting to its IPv4 address and encount

Re: [squid-users] Squid3 error: CHILD: hello write test failed logrotate

On Wednesday 22 June 2016 at 23:28:56, Roberto Carna wrote: > My squid.conf from Squid3 has this line: > > #Default: > # logfile_rotate 0 > > So the parameter you mentiones it's just setup. You do realise that # at the start of a line means it is a comment and has no effect, right? Antony.

Re: [squid-users] Squid3: icmp_sock: (97) Address family not supported by protocol / pinger: Unable to start ICMPv6 pinger

On Thursday 23 June 2016 at 01:08:33, Alejandro Cabrera Obed wrote: > 2016/06/22 19:56:35| pinger: Unable to start ICMPv6 pinger. > > But after that the squid3 daemon runs OK. What's the output from "ifconfig" on that machine? Antony. -- It may not seem obvious, but (6 x 5 + 5) x 5 - 55 equal

Re: [squid-users] Squid3: icmp_sock: (97) Address family not supported by protocol / pinger: Unable to start ICMPv6 pinger

On Thursday 23 June 2016 at 01:22:45, Alejandro Cabrera Obed wrote: > #ifconfig > > eth0 Link encap:Ethernet HWaddr 00:50:53:b2:6e:88 > inet addr:10.17.133.114 Bcast:10.17.135.255 Mask:255.255.252.0 > > loLink encap:Local Loopback > inet addr:127.0.0.1 Mask:2

Re: [squid-users] Good Home Cable Modem Blacklist

On Monday 27 June 2016 at 19:06:17, Michael Pelletier wrote: > Does anyone know of a good blacklist of home cable modems? I don't think you'll get any list of *home* cable modems, which excludes small business connections as well. Also, with a lot of ISPs, I don't think you'll get a list of *ca

Re: [squid-users] Running squid on a machine with only one network interface.

On Monday 27 June 2016 at 22:45:19, Ataro wrote: > Hi there, > > I've set up a FreeBSD machine inside a VirtualBox machine and used IPFW to > forward all the requests to the internet through a squid server running on > the same machine in port 3128 in intercept mode. Please show us your IPFW rul

Re: [squid-users] Squid's cache management

On Tuesday 28 June 2016 at 13:58:14, Eduardo Carneiro wrote: > I'm using squid 3.5.19 with dynamic cache content with url rewrite. My > cache directory is 90% full. I noticed that it doesn't exceed the value > set in cache_dir. This is a good thing. > > My doubt is: How squid manages that? What i

Re: [squid-users] Squid Proxy SSL Bump Certificates

On Thursday 30 June 2016 at 10:53:57, i...@comunicacionesman.com wrote: > What I'm trying to do now is to use an external certificate from a > trusted certificate authority (in this case I'm using a free SSL > certificate from comodo), but I can't see my certificate in the > certificates list when

Re: [squid-users] static caching for specific website for specific time

On Thursday 30 June 2016 at 17:38:32, Henry7 wrote: > Sometimes a WiFi Blocker Jammer > is > all you need. People are so obnoxious these days. They do whatever they > want without caring about what others feels and that's not

Re: [squid-users] Force DNS queries over TCP?

On Friday 01 July 2016 at 17:25:49, Yuri Voinov wrote: > DNScrypt is offtopic here. ... says the man who has posted 11 of the 22 (now 23) emails in this thread... Antony. -- "Black holes are where God divided by zero." - Steven Wright Plea

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 15:04:57, james82 wrote: > http://i.stack.imgur.com/DEVbl.png > > my /etc/squid3/squid.conf file: > https://ghostbin.com/paste/cwrdw You have just copied the sample configuration from the commented-out lines in squid.conf, without adapting them to where you want your c

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 15:27:05, james82 wrote: > the file in paste bin is that I copied from my squid error file. what you > tell me should do? Well, you should correct the mistakes so that the lines which are not commented match the documentation (hint: "..." is not a valid part of any lin

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 15:47:35, james82 wrote: > what do you mean? don't you see i use ubuntu 16.04 desktop? Yes, what difference does that make? > i installed webmin and virtualmin for easy control to use. i use OS on > virtualbox. then I install by "sudo apt-get install squid". that it. A

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 16:50:25, Jok Thuau wrote: > > On Jul 3, 2016, at 6:47 AM, james82 wrote: > > > > what do you mean? don't you see i use ubuntu 16.04 desktop? i installed > > webmin and virtualmin for easy control to use. i use OS on virtualbox. > > then I install by "sudo apt-get insta

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 16:13:06, james82 wrote: > can you edit the squid.conf file and paste for me in ghostbin? :) Because > talk by word i still can't get it right. No, I can't, because I do not know what the correct configuration is for: a) *your* machine b) *your* network c) what *you*

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 16:34:54, james82 wrote: > What you gonna tell me if you see this: http://imgur.com/a/esjJY . I say "I don't understand what you're trying to tell me with that screenshot". > I can't fix like you said if it was like that. You have six lines in your squid.conf:

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Sunday 03 July 2016 at 20:06:37, james82 wrote: > i am really serious and i need help. please,please, someone answer my > question. We have provided answers. We have also asked some questions, to help us understand what you are trying to do, and how best to help you further, but you have not

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Monday 04 July 2016 at 07:50:23, james82 wrote: > please see it picture: http://imgur.com/a/TU5w6 . Can you tell me what > problem is here now? The problem looks like something virtualmin has done. > And your own help, is your turn now. how i gonna fix this? Try asking on a virtualmin suppor

Re: [squid-users] how to fix proxy squid on virtualmin (ubuntu 16, 04)?

On Wednesday 06 July 2016 at 09:19:19, james82 wrote: > can somebody kindly help me my question? thank you. You said: > If that was not a problem, so where is cache dictionaries squid proxy basic > on? I'm sorry, but I did not understand this. Please let us know: 1. What is the current proble

Re: [squid-users] how to connect machine linux to squid proxy, not in browser?

On Thursday 07 July 2016 at 10:11:14, admin wrote: > It is transparent (intercept) mode See http://wiki.squid-cache.org/SquidFaq/InterceptionProxy for details. Note that: - getting intercept mode to work is more complex than standard (browser- configured) mode; you are recommended to make sure

Re: [squid-users] using squid3 without certificate

On Monday 11 July 2016 at 23:07:06, HackXBack wrote: > Is there any news for using squid3 for caching https connections without > install certificates in client browser manually ? Yes, it's impossible. The client needs to see a server certificate signed by a trusted CA. If Squid is going to int

Re: [squid-users] This is first time I use squid, i don't know how to edit file squid.conf for start using squid

On Monday 18 July 2016 at 11:04:16, james82 wrote: > I am beginner. I'm not know so much about squid proxy . this is first time > i use it. Please tell us what you are trying to use it for - what do you want to get squid to do for you? > I follow step by step ( some tutorial blog ) Please tell

Re: [squid-users] This is first time I use squid, i don't know how to edit file squid.conf for start using squid

On Monday 18 July 2016 at 11:33:52, james82 wrote: > No,no, you understand wrong. I mean where should I edit and edit what? Not > text problem,sir. 1. Find the section in your configuration file containing the line: #acl localnet src 192.168.0.0/16 # RFC1918 possible internal network 2. Add

Re: [squid-users] how to change public IP to access website on proxy squid?

On Wednesday 20 July 2016 at 08:53:47, james82 wrote: > I want to change my public iP to access website. change out going package > to capture it. how to change it in squid? 1. Show us the output of /sbin/ifconfig on your Squid machine. 2. Tell us the IP address you want Squid to use. Antony.

Re: [squid-users] how to change public IP to access website on proxy squid?

On Wednesday 20 July 2016 at 09:24:21, james82 wrote: > i don't know how to find that ip you ask me. how to find it in terminal? You said "I want to change my public iP to access website." What do you want to change it to? Antony. -- Tax inspectors are just accountants who work for the evil d

Re: [squid-users] how to change public IP to access website on proxy squid?

On Wednesday 20 July 2016 at 16:06:22, james82 wrote: > i'm sorry. using for what is my secret. .i just want to know, can i use > squid as a proxy server to connect to internet? normal i search whatmyip > and my ip appear on that website. i want to change that ip. is it > possible? how to do it.

Re: [squid-users] Squid Intercept - From inside LAN with DNAT on router and docker on host

On Wednesday 20 July 2016 at 21:42:27, Guilherme Scaglia wrote: > I'm aiming for a transparent proxy - with squid in intercept mode. > > In my network setup, the squid server is inside the LAN together with its > clients, and not siting between the clients and the router/modem That will be a pro

Re: [squid-users] Squid Intercept - From inside LAN with DNAT on router and docker on host

On Wednesday 20 July 2016 at 22:44:46, Bruno de Paula Larini wrote: > Em 20/07/2016 17:10, Antony Stone escreveu: > > > > You *must* perform the DNAT on the machine running Squid, which means that > > the packets from your clients must pass through the Squid server, either

Re: [squid-users] Problem site

On Wednesday 20 July 2016 at 23:38:03, Joseph L. Casale wrote: > Hi, > Recently our users can no longer connect Care to add any detail to "can no longer connect"? eg: 1. They used to be able to - when did this change? 2. What error message or response do users now see in their browser? 3. Wha

Re: [squid-users] Problem site

On Thursday 21 July 2016 at 00:24:58, Joseph L. Casale wrote: > The squid server runs on centos 7.2, Okay. > all corporate desktops all use IE 11, Oh dear :( > they simply get a non-descriptive error in IE saying "This page can’t be > displayed" however chrome works Oh good :) > for example

Re: [squid-users] Problem site

On Thursday 21 July 2016 at 00:25:38, brendan kearney wrote: > An error occurred during a connection to e-vista.scsolutionsinc.com. SSL > received a weak ephemeral Diffie-Hellman key in Server Key Exchange > handshake message. Error code: SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY That looks helpful.

Re: [squid-users] Problem site

On Thursday 21 July 2016 at 01:07:51, brendan kearney wrote: > I would use developer tools (press f12 in your browser) That sounds quite browser-specific - thanks for mentioning previously that you're using Firefox. > or maybe run fiddler to dig into the details. I assume you mean http://www.t

Re: [squid-users] protect squid.conf file

On Thursday 21 July 2016 at 16:06:29, --Ahmad-- wrote: > say that i worked on squid with very private work and i want to protect my > squid.conf to be read from others who login ssh . > > is it possible to encrypt squid.conf file ? No, but you can make it readable to the squid user only (and t

Re: [squid-users] protect squid.conf file

On Thursday 21 July 2016 at 16:59:29, Ahmed Alzaeem wrote: > h > > what about if i insert a directive inside squid and this directive not > being shown in squid.conf ?? > > say i want to add line to the current squid.conf but i don’t want to add > that line in squid.conf An interesting sent

Re: [squid-users] protect squid.conf file

On Friday 22 July 2016 at 21:53:31, Yuri Voinov wrote: > The simplest way I see is: > > - Write you own custom squid's startup script (with bash/any shell you > want). > > - This script will decrypt squid.conf before any > startup/shutdown/reconfigure operation then encrypt config again. > > -

Re: [squid-users] protect squid.conf file

On Friday 22 July 2016 at 22:14:36, Yuri Voinov wrote: > 23.07.2016 2:04, Antony Stone пишет: > > > > How does this help? > > Yes, this is idiotic idea :) Hehe :) > > If you do not trust people with root access to your machine: > > > > a) you have los

Re: [squid-users] How can I complete this tutorial?

On Thursday 11 August 2016 at 19:15:08, james82 wrote: > I want to do this tutorial : > https://www.linode.com/docs/networking/squid/squid-http-proxy-ubuntu-12-04, > but these are something I don't understand so much, please help me. If you find this tutorial difficult to follow, I would suggest

Re: [squid-users] Inconsistent Cache Peer Selection in Accelerator mode - Squid 3.3.8

On Thursday 11 August 2016 at 20:25:04, Adam Vollrath wrote: > Good afternoon! I'm configuring Squid 3.3.8 on Ubuntu 14.04.5 LTS. It's > in reverse proxy mode and has some explicit peers specified. My issue > is that sometimes requests get forwarded to that specified peer, but > sometimes squid

Re: [squid-users] Transparent proxy and non-transparent proxy on the same squid.

On Thursday 11 August 2016 at 22:15:12, Daniel Reif wrote: > There is any way to run squid in transparent mode and non-transparent > mode in the same squid? Yes - you define one listener on port 80 for the intercept traffic (which *must* be redirected on the Squid box, so it must either be in t

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 05:48:35, james82 wrote: > i'm really sorry. can you check the link in my post again. I can't find > that line,really. If you mean the link https://ghostbin/paste/kw7pp in your original question, it does not work - it has no valid domain. If the line: # INSERT YOUR

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 11:42:23, james82 wrote: > I'm sorry. I just fix my link squid.conf file. PLease check. And I install > squid by type" apt-get install squid". I use kali linux. I also asked "where are you looking for the file squid.conf?" I remember in some of your previous postings,

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 13:16:01, james82 wrote: > where? these have a example and I don't know where truly it. here is it: > # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS Please answer all four questions from my previous email as requested. You ask questions and expect

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 13:53:10, james82 wrote: > Yes, if you see in my post. It have the line: This is the documentation for > the Squid configuration file In that case you are editing the wrong file. Please answer my question "Where on your system is the squid.conf file which you are usi

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 16:25:26, james82 wrote: > SORRY. I want to start squid service success. but it show a failed problem. Yes - it tells you that the problem is on line 1193 of squid.conf If you cannot work out for yourself what is wrong with that line, please post it here (do NOT send

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 16:32:25, james82 wrote: > my squid.conf file come from /etc/squid/squid.conf, is that right? Yes, that is correct, however Amos has pointed out that the package maintainer for Kali Linux appears to have put the wrong file in that location. It will work, but that fil

Re: [squid-users] How can I complete this tutorial?

On Friday 12 August 2016 at 17:14:43, james82 wrote: > i try to do this tutorial: > https://www.linode.com/docs/networking/squid/squid-http-proxy-ubuntu-12-04. > And here is my squid.conf file: pastebin.com/MnhK0ewx . can you tell me > what line number for i add : acl client src 12.34.56.78, and w

Re: [squid-users] How can I complete this tutorial?

On Saturday 13 August 2016 at 08:37:15, james82 wrote: > ok, this is last. Is i add this right: > #acl homepc src 12.34.56.78 The # symbol at the start of a line means it is a comment, and therefore ignored by squid. The tutorial you are trying to follow does not have a # at the start of that

Re: [squid-users] How can I complete this tutorial?

On Saturday 13 August 2016 at 10:56:12, james82 wrote: > is i have to do anything out like iptables? No. > i have start squid with service squid start, Good. I trust that no errors were reported this time. > but how to gonna use it? 1. Configure your browser to use the proxy - that means tel

Re: [squid-users] Squid cpu usage 100% from few days ago !!

On Saturday 13 August 2016 at 09:18:24, Omid Kosari wrote: > Hello, > > Recently 2 different squid boxes grows from ~40% cpu usage to 100% without > any changes to config/banwidth/number of clients/etc What are your bandwidth and number of clients? > The problems forced me to bypass squid until

Re: [squid-users] Squid cpu usage 100% from few days ago !!

On Saturday 13 August 2016 at 13:40:18, Omid Kosari wrote: > debug_options ALL,1 I would not recommend having debugging turned on for a production server. In the first instance, to check whether this is what is causing your problems, turn this option off and see whether your CPU load comes back

Re: [squid-users] How can I complete this tutorial?

On Saturday 13 August 2016 at 14:33:58, james82 wrote: > where is the line that for use port in squid.conf? The following two lines exit in your squid.conf: # Squid normally listens to port 3128 http_port 3128 > where is port 3128 come from? That is the standard port number which squid uses fo

Re: [squid-users] How can I complete this tutorial?

On Saturday 13 August 2016 at 16:29:55, james82 wrote: > what about i want to add more port, not only 3128? how to do this? Why do you think you need to do that? Antony. -- This email was created using 100% recycled electrons. Please reply to

Re: [squid-users] How can I complete this tutorial?

On Saturday 13 August 2016 at 16:41:14, james82 wrote: > like port 80, 443? how to add this to http_port? i try configure my ip > address and port 3128 in browser, but seem like not work? say > "connecting..." but seem like never connect. how to fix this? Firstly tell us what IP address you have

Re: [squid-users] Is I can change my public ip-address by use squid proxy?

so just wanted to point out: On Wednesday 20 July 2016 at 17:32:43, Antony Stone wrote: > On Wednesday 20 July 2016 at 16:06:22, james82 wrote: > > i'm sorry. using for what is my secret. .i just want to know, can i use > > squid as a proxy server to connect to internet? normal i

Re: [squid-users] Squid cpu usage 100% from few days ago !!

On Saturday 13 August 2016 at 20:51:40, Alex Rousskov wrote: > On 08/13/2016 06:09 AM, Antony Stone wrote: > > On Saturday 13 August 2016 at 13:40:18, Omid Kosari wrote: > >> debug_options ALL,1 > > > > I would not recommend having debugging turned on for a producti

Re: [squid-users] Is I can change my public ip-address by use squid proxy?

On Sunday 14 August 2016 at 04:32:48, james82 wrote: > Dear Athony, I assume you mean me (my name is Antony)? > in that tutorial multi ip addess, just all only local ip , not > public ip, what is this mean? It means the private IPs which are purely local to your network (and, frankly, of no in

Re: [squid-users] Squid cpu usage 100% from few days ago !!

On Sunday 14 August 2016 at 14:03:44, Omid Kosari wrote: > I've found that a kind of request makes a loop in squid . Wireshark shows > infinite loop of > > X-Squid-Error: ERR_INVALID_REQ 0 > > and > > X-Squid-Error: ERR_INVALID_URL 0 > > which makes high cpu usage. What is the URL / request w

Re: [squid-users] Squid cpu usage 100% from few days ago !!

On Sunday 14 August 2016 at 14:25:38, Omid Kosari wrote: > Still could not find the app or url but the 2 server ip addresses are > 149.202.92.139 and 173.236.187.17 . The first does not respond on port 80 for me, and the second simply tells me that it doesn't know which Dreamhost website I'm try

Re: [squid-users] Squid cpu usage 100% from few days ago !!

On Wednesday 17 August 2016 at 11:01:40, Eliezer Croitoru wrote: > Hey Omid, > > Just to understand, are you intercepting traffic? From the original report: "Squid is in tproxy mode with routing" Antony. > -Original Message- > From: squid-users [mailto:squid-users-boun...@lists.squid-

Re: [squid-users] DENIED and ALLOWED at once?

On Friday 19 August 2016 at 20:41:11, Jok Thuau wrote: > On Fri, Aug 19, 2016 at 9:33 AM, Sergio Belkin wrote: > > /var/log/squid/access.log > > 192.168.50.41 - - [19/Aug/2016:12:19:45 -0300] "CONNECT > > beap-bc.yahoo.com:443 HTTP/1.1" 407 4634 "-" "Mozilla/5.0 (Windows NT > > 6.1; WOW64; rv:41.

Re: [squid-users] best way to have randomized outgoing per each new connection

On Monday 22 August 2016 at 20:01:14, --Ahmad-- wrote: > I’m wondering here … what is the best method so that i give randomized tcp > outgoing address per new session. How do you define a "session" (in terms that mean something to Squid)? > say that i have 100 ips on squid . > > i want each ne

Re: [squid-users] Https_port with "official" certificate

On Wednesday 24 August 2016 at 13:09:52, Samuraiii wrote: > Hello, > I am trying to setup squid as SSL protected proxy for few users without > any intention to use ssl-bumping or any other MITM technique. > I just want to have SSL secured connection between browser and proxy. > Proxy will not be "

Re: [squid-users] Https_port with "official" certificate

On Wednesday 24 August 2016 at 13:42:16, Samuraiii wrote: > On 24.8.2016 13:18, Antony Stone wrote: > > > > See "Encrypted browser-Squid connection" at the bottom of > > http://wiki.squid-cache.org/Features/HTTPS > > I have seen that, it is the cause of my s

Re: [squid-users] Https_port with "official" certificate

On Wednesday 24 August 2016 at 14:02:43, Samuraiii wrote: > Squid fails to start for me with: > FATAL: No valid signing SSL certificate configured for HTTPS_port [::]:8443 > > I have found that this is related to missing self signed certificate, > and since I do not want to use self signed certifi

Re: [squid-users] Https_port with "official" certificate

ne merely needs a valid signED certificate, same as you would put on a web server to set up secure connections to it? OP is not intercepting secure traffic, nor making HTTP sites look to the browser like HTTPS ones. Antony. > 24.08.2016 18:15, Antony Stone пишет: > > On Wednesday 24 Au

Re: [squid-users] Https_port with "official" certificate

On Wednesday 24 August 2016 at 14:22:18, Samuraiii wrote: > On 24.8.2016 14:18, Yuri Voinov wrote: > > No one CA do not issue signing CA for subject, which is not CA itself. > > > > So, op wants impossible thing. > > I have tried to drop clientca option, to add generate-host-certificates=off >

Re: [squid-users] Https_port with "official" certificate

On Wednesday 24 August 2016 at 14:26:48, Yuri Voinov wrote: > 24.08.2016 18:23, Antony Stone пишет: > > On Wednesday 24 August 2016 at 14:18:46, Yuri Voinov wrote: > >> No one CA do not issue signing CA for subject, which is not CA itself. > >> > >> So, op

Re: [squid-users] Https_port with "official" certificate

On Wednesday 24 August 2016 at 14:35:03, Yuri Voinov wrote: > >> Then I do not understand what he wants op. > > http://wiki.squid-cache.org/Features/HTTPS#Encrypted_browser-Squid_connecti > on > > > Secure connection to squid proxy without need for anything else (on > > client side) than configu

Re: [squid-users] squid and files cache between multiple pc

On Tuesday 06 September 2016 at 14:58:40, Marco Calegari wrote: > hi all > I've a strange problem with squid v3.1.20 That is over four years old. You should upgrade. > Using squid also to cache "big" files (for big I mean >20Mb), happens that > if a pc download a file, first time file has downl

Re: [squid-users] Transparent Proxy

On Wednesday 07 September 2016 at 10:23:02, John Sayce wrote: > I'm trying to set up a transparent proxy but I'm fairly sure I'm missing > something. > > I've followed the instructions on the juniper website along with a couple > of other blogs as per: > https://damn.technology/using-squid-junipe

Re: [squid-users] Transparent Proxy

On Wednesday 07 September 2016 at 10:51:49, John Sayce wrote: > I believe so. The specific command I used was: > > iptables -t nat -A PREROUTING -i ens33 -p tcp --dport 80 -j REDIRECT > --to-port 3128 > > (For some reason my adapter is ens33, I have no idea why it's not eth0. > Squid is set to

<    1   2   3   4   5   6   >