RE: [squid-users] Squid has ident, not sending to redirector

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Thu, 24 Oct 2002 00:37:50 +0200

Regarding your question on ident and redirectors:

Squid does not wait for ident to complete unless you enforce this in
http_access.

Redirectors is called very early in the request processing, and it is
very unlikely ident has completed by that time unless required in
http_access (http_access runs before redirection).

access.log is written when the request as a whole has finished.
Usually by this time ident lookups have completed, but it is not too
uncommon cache hits and other very quick requests ends before the
ident lookup has finished. In such case no ident will be logged.

To force Squid to wait for the ident lookup without actually using
ident for access control purposes you can insert the following
http_access rule trick before the rule that allows your users access
to the proxy:

acl do_ident ident REQUIRED
http_access deny do_ident !all

The do_ident requires the ident lookup to be completed, and is
followed by !all to ensure the http_access line as a whole can never
match any requests.

Regards
Henrik Nordström
Squid Developer
Received on Wed Oct 23 2002 - 17:00:22 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:53 MST