Hi all,
Our upstream proxy (cloud based) requires a PAC file to be deployed on each
workstation. Is there a way to have a PAC file on a squid servers and then
have users use the local squid servers instead.
Thanks
Monah
___
squid-users mailing list
squ
Hi all,
./configure '--prefix=/usr/local/squid' '--enable-pf-transparent'
'--enable-follow-x-forwarded-for' '--with-large-files' '--enable-ssl'
'--disable-ipv6' '--enable-esi' '--enable-kill-parent-hack' '--enable-snmp'
'--with-pthreads' '--with-filedescriptors=65535'
$ make
Making all in co
Hi All,
How can I have 2 servers (parent/sibling) separated geographically, where
the parent does not cache requests, but the sibling does.
Certain sites will block the sibling due to its origin country, but I do
not want the server in the U.S (parent) to cache anything.
Thanks
Monah
__
Hi all,
I need to monitor squid 3.5.2 using MRTG and can't seem to find any
examples on how to do that.
I found the following but nothing happens.Clueless on how to do this.
Thanks
Target[proxy-hit]: cacheHttpHits&cacheServerRequests:pub...@proxy.sg.private
:3401
# If you are using Squid 2.6
Hi all,
I have client who has his Policy Based Routing as:
interface GigabitEthernet0/0/1.1 (route policy on the LAN interface)
ip policy route-map CFLOW
ip access-list extended REDIRECT (Redirect of my IP www)
deny tcp host 10.0.0.24 any eq www
permit tcp host 10.0.0.23 any eq www
r
Hi all, can anyone verify if this is correct, need to make ure that users
will be able to access the internet via the squid.
Running FreeBSD with a single interface with Squid-3.5.2
Policy based routing on Cisco with the following:
interface GigabitEthernet0/0/1.1
encapsulation dot1Q 1 native
; Show complete pf.conf, please.
>
> 05.03.15 19:45, Monah Baki пишет:
> > In my squid.conf
> >
> > http_port 3128 http_port 3129 intercept
> >
> > Thanks
> >
> > On Thu, Mar 5, 2015 at 8:44 AM, Yuri Voinov
> > wrote:
> >
> > Squid access
> Subject: Re: [squid-users] squid intercept config
> >
> >
> http://wiki.squid-cache.org/ConfigExamples/Intercept/Cisco2501PolicyRoute
> >
> >
> http://wiki.squid-cache.org/ConfigExamples/Intercept/FreeBsdPf
> >
> > 05.03.15 18:19, Monah Baki пишет:
> >>
E-
> Hash: SHA1
>
> Looking good.
>
> Can I take look onto your squid.conf? Without comment lines and
> sensitive info?
>
> 05.03.15 19:51, Monah Baki пишет:
> > rdr pass inet proto tcp from 10.0.0.0/8 to any port 80 -> 10.0.0.24
> > port 3129
> >
>
te:
> -BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> This looking good too.
>
> Stupid question:
>
> With witch interception option squid builed?
>
> I.e, squid -v?
>
> 05.03.15 18:19, Monah Baki пишет:
> > Hi all, can anyone verify if this is correct
03.15 20:25, Monah Baki пишет:
> > Yes, correct
> >
> > On Thu, Mar 5, 2015 at 9:23 AM, Yuri Voinov
> > wrote:
> >
> > 10.0.0.23 is your host? And 10.0.0.24 is proxy box?
> >
> > 05.03.15 20:15, Monah Baki пишет:
> >>>> '--prefix=/ca
ique iOS?! Current is 15.4
>
> 05.03.15 21:09, Monah Baki пишет:
> > PORT STATE SERVICE VERSION 23/tcp open telnet Cisco IOS
> > telnetd MAC Address: 88:5A:92:63:77:81 (Cisco) Device type: router
> > Running: Cisco IOS 12.X OS CPE: cpe:/h:cisco:7600_router
> > cpe
sackOK], length 0
On Thu, Mar 5, 2015 at 10:20 AM, Yuri Voinov wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Hm. No.
>
> We not checked only OS.
>
> Does your BSD really loads PF module?
>
> 05.03.15 21:16, Monah Baki пишет:
> > Not sure wh
How can I confirm, I have access only to the BSD box
Thanks
On Thu, Mar 5, 2015 at 11:12 AM, Yuri Voinov wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Does 80 port outside BSD-box listens?
>
> 05.03.15 21:25, Monah Baki пишет:
> > root@ISN-PHC-CACHE:/cach
ers.
>
> Need to check it externally.
>
> 05.03.15 23:59, Monah Baki пишет:
> > On 10.0.0.24
> >
> > root@ISN-PHC-CACHE:/home/support # netstat -an Active Internet
> > connections (including servers) Proto Recv-Q Send-Q Local Address
> >
ash: SHA1
>
> Can you run pfctl -s nat state on proxy box?
>
> 06.03.15 0:05, Monah Baki пишет:
> > Ok let me ask the client tomorrow to run telnet 10.0.0.24 80 from
> > a workstation
> >
> > Thanks for he help Yuri
> >
> > On Thu, Mar 5, 2015 at 1:02 P
So from my proxy server, everything looks good?
On Thu, Mar 5, 2015 at 1:12 PM, Yuri Voinov wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> Looks good too.
>
> Damn.
>
> Will think.
>
> Need to run some external checks.
>
> 06.03.15 0:10, Mona
q=0.8,ar;q=0.6
Via: 1.1 ISN-PHC-CACHE (squid/3.5.2)
X-Forwarded-For: 10.0.0.23
Cache-Control: max-age=259200
Connection: keep-alive
Any ideas?
-- Forwarded message --
From: Monah Baki
Date: Thu, Mar 5, 2015 at 7:19 AM
Subject: squid intercept config
To: Squid Users
Hi all
I went and changed the 10.0.0.0/8 to 10.0.0.23, which is the client station
we are testing on, same results. Forward loop detected
Thanks
On Fri, Mar 6, 2015 at 8:14 AM, Antony Stone <
antony.st...@squid.open.source.it> wrote:
> On Friday 06 March 2015 at 14:03:28 (EU time), Monah B
box?
>
> I.e., web-server?
>
> 06.03.15 19:26, Monah Baki пишет:
>
> I went and changed the 10.0.0.0/8 to 10.0.0.23, which is the client
> station we are testing on, same results. Forward loop detected
>
> Thanks
>
> On Fri, Mar 6, 2015 at 8:14 AM, Antony Ston
BlackBerry 10 smartphone on the Verizon Wireless 4G LTE
> network.
>*From: *Yuri Voinov
> *Sent: *Friday, March 6, 2015 8:44 AM
> *To: *Monah Baki
> *Cc: *squid-users@lists.squid-cache.org
> *Subject: *Re: [squid-users] Fwd: squid intercept config
>
> Ok.
>
> In this
32, Len: 0
On Fri, Mar 6, 2015 at 8:57 AM, Antony Stone <
antony.st...@squid.open.source.it> wrote:
> On Friday 06 March 2015 at 14:50:50 (EU time), Monah Baki wrote:
>
> > http://wiki.squid-cache.org/ConfigExamples/Intercept/FreeBsdPf
> >
> > So something else is m
ar 6, 2015 at 11:26 PM, Amos Jeffries wrote:
> On 6/03/2015 1:19 a.m., Monah Baki wrote:
> > Hi all, can anyone verify if this is correct, need to make ure that users
> > will be able to access the internet via the squid.
> >
> > Running FreeBSD with a single interface
at, 07 Mar 2015 12:08:21 GMT
Via: 1.1 varnish
Connection: close
X-Served-By: cache-lhr6328-LHR
X-Cache: MISS
X-Cache-Hits: 0
Thanks
Monah
On Fri, Mar 6, 2015 at 11:26 PM, Amos Jeffries wrote:
> On 6/03/2015 1:19 a.m., Monah Baki wrote:
> > Hi all, can anyone verify if this is correc
Thanks Amos and everyone who helped me,
Will revert to client to check his Cisco device, I been banging my head for
days now troubleshooting the proxy.
He's running an old cisco hardware and IOS too.
On Sat, Mar 7, 2015 at 8:24 AM, Amos Jeffries wrote:
> On 8/03/2015 1:09 a.m., Mo
port 3128
# block in
pass in log quick on bge0
pass out log quick on bge0
pass out keep state
On Sat, Mar 7, 2015 at 8:24 AM, Amos Jeffries wrote:
> On 8/03/2015 1:09 a.m., Monah Baki wrote:
> > Forgot to paste my test.
> >
> > Basically from my squid server:
> >
ssing something in IPTables that it is not caching?
Thanks
Monah
On Fri, Mar 6, 2015 at 11:26 PM, Amos Jeffries wrote:
> On 6/03/2015 1:19 a.m., Monah Baki wrote:
> > Hi all, can anyone verify if this is correct, need to make ure that users
> > will be able to access the in
10.0.0.23 TCP_REFRESH_UNMODIFIED/304 329 GET
http://js.moatads.com/turner763610601596/moatad.js - ORIGINAL_DST/
80.239.148.9 application/x-javascript
On Fri, Mar 13, 2015 at 12:18 PM, Yuri Voinov wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
>
>
> 13.03.15 21:58,
te to self, something I do not know, don't add it.
On Fri, Mar 13, 2015 at 1:23 PM, Amos Jeffries wrote:
> On 14/03/2015 6:15 a.m., Antony Stone wrote:
> > On Friday 13 March 2015 at 17:47:44 (EU time), Monah Baki wrote:
> >>
> >> http_access allow local
Hi all,
I am running CentOS 6.6 64 bit, and need to get some information from the
command line.
Compiled squid as:
./configure --prefix=/home/cache --enable-follow-x-forwarded-for
--with-large-files --enable-ssl --disable-ipv6 --enable-esi
--enable-kill-parent-hack --enable-snmp --with-pthreads
-
0close%0D%0A%0D%0A%0D%0A">webmaster.
Generated Fri, 20 Mar 2015 17:29:54 GMT by isn-phc-cache
(squid/3.5.2)
On Fri, Mar 20, 2015 at 12:13 PM, Amos Jeffries
wrote:
> On 20/03/2015 11:04 p.m., Monah Baki wrote:
> > Hi all,
> >
> > I am running CentOS 6.6 64 b
Regarding DNS lookup, if I type nslookup 10.0.0.24 or nslookup
isn-phc-cache,
Our nameservers in /etc/resolv.conf are google's name server
Do I need to resolve first to use squidclient???
[root@ISN-PHC-Cache bin]# ./squidclient -vv -j isn-phc-cache mgr:info
verbosity level set to 2
Request:
GET
2Finfo%20HTTP%2F1.0%0AHost%3A%20isn-phc-cache%3A3128%0D%0AUser-Agent%3A%20squidclient%2F3.5.2%0D%0AAccept%3A%20*%2F*%0D%0AConnection%3A%20close%0D%0A%0D%0A%0D%0A">webmaster.
Generated Fri, 20 Mar 2015 19:48:05 GMT by isn-phc-cache
(squid/3.5.2)
On Fri, Mar 20, 2015 at 2:25 PM, Amos Jef
Running squid 3.5.2 on Centos 6.6
./configure --prefix=/home/cache --enable-follow-x-forwarded-for
--with-large-files --enable-ssl --disable-ipv6 --enable-esi
--enable-kill-parent-hack --enable-snmp --with-pthreads
--with-filedescriptors=65535 --enable-cachemgr-hostname=hostname
--enable-storeio=u
to fix his computer.
Thanks
Monah
On Tue, Mar 24, 2015 at 3:24 PM, Yuri Voinov wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA256
>
> Feel free fo look at this:
>
> http://wiki.squid-cache.org/KnowledgeBase/HostHeaderForgery
>
>
> 25.03.15 1:18, Monah B
uid with higher value of corresponding parameter.
>
>
> 25.03.15 2:05, Monah Baki пишет:
>> Thanks Yuri for the URL. The company is a small ISP using policy
>> based routing, so using WPAD or GPO isn't feasible.
>>
>> If the cause of the server running out of
squid server started
complaining about running out of file descriptors, and stopped
working.
Thanks
On Tue, Mar 24, 2015 at 8:58 PM, Amos Jeffries wrote:
> On 25/03/2015 9:05 a.m., Monah Baki wrote:
>> Thanks Yuri for the URL. The company is a small ISP using policy based
>> routing
12:12 PM, Yuri Voinov wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> - From your PC run telnet 10.0.0.24 80. You've seen if TCP socket opens.
>
> 05.03.15 23:10, Monah Baki пишет:
> > How can I confirm, I have access only to the BSD box
> >
> &
57 AM, Antony Stone <
antony.st...@squid.open.source.it> wrote:
> On Friday 06 March 2015 at 14:50:50 (EU time), Monah Baki wrote:
>
> > http://wiki.squid-cache.org/ConfigExamples/Intercept/FreeBsdPf
> >
> > So something else is missing?
>
> Can you run a packet sn
Hi all,
Compiled squid 3.5.2 on CentOS 6.6 as follows:
$ ./configure --prefix=/home/cache --enable-follow-x-forwarded-for
--with-large-files --enable-ssl --disable-ipv6 --enable-esi
--enable-kill-parent-hack --enable-snmp --with-pthreads
--with-filedescriptors=65535 --enable-cachemgr-hostname=host
40 matches
Mail list logo
