Re: [squid-users] Secure site access blocked?

From: Neil A. Hillard <hillardn@dont-contact.us>
Date: Tue, 19 Apr 2005 13:19:26 +0100

Neil Loffhagen wrote:
>> From: Kashif Ali Bukhari [mailto:kbukhari@gmail.com]
>> Sent: 19 April 2005 10:24
>> To: Neil Loffhagen
>> Subject: Re: [squid-users] Secure site access blocked?
>>
>> it means u are working behind a firewall / blocking 443 port use cacge
>> peer like
>>
>> cache_peer www-cache.server.co.uk parent 80 0 default no-query
>> acl all src 0.0.0.0/0.0.0.0
>> never_direct allow all
> Thanks, that worked okay. But now I get the following on staring
> Squid:
>
> Shutting down WWW-proxy squid 2005/04/19 10:41:32| WARNING:
> '0.0.0.0/0.0.0.0' is a subnetwork of '0.0.0.0/0.0.0.0'
> 2005/04/19 10:41:32| WARNING: because of this '0.0.0.0/0.0.0.0' is
> ignored to keep splay tree searching predictable
> 2005/04/19 10:41:32| WARNING: You should probably remove
> '0.0.0.0/0.0.0.0' from the ACL named 'all'
>
> This seems to mean I should not have the acl all src 0.0.0.0/0.0.0.0
> line?
>
> Could I put our local LAN IP range there or would that not be correct?
I reckon that you already have the 'all' ACL already declared (it's part
of the stock .conf file so you're duplicating an entry which squid isn't
happy about. Remove the following line:

acl all src 0.0.0.0/0.0.0.0

that you just added and fingers crossed.

HTH,

                                Neil.

-- 
Neil Hillard                    hillardn@whl.co.uk
Westland Helicopters Ltd.       http://www.whl.co.uk/
Disclaimer: This message does not necessarily reflect the
             views of Westland Helicopters Ltd.
Received on Tue Apr 19 2005 - 06:19:43 MDT

This archive was generated by hypermail pre-2.1.9 : Sun May 01 2005 - 12:00:04 MDT