Re: [squid-users] Problem to enter a site.

From: Michael Fernández M <michael_at_michael.cl>
Date: Thu, 31 Jul 2008 10:00:00 -0400

On Thu, 2008-07-31 at 12:07 +0200, F-D. Cami wrote:
> On Wed, 30 Jul 2008 12:56:46 -0400
> Michael Fernández M <michael_at_michael.cl> wrote:
>
> > I have squid server working and i cannot enter to a site with a form:
> > the thing is when i complete the form and press submit nothing
> > happend...
>
> (...)
>
> > If i try without proxy it works...
> >
> > The version of squid is: 2.5.9-10sarge5
>
> You are running an old version of squid on a distribution that's reached
> end of life status ( http://www.debian.org/News/2008/20080229 ).
> Please upgrade your distribution and squid version to Squid 2.7.STABLE3
> or 3.0.STABLE8 .
>

I know... but i am running other server squid with the same version and
the forms works well.... that's the think that i do not understand.....

Look.... this is the configuration of the squid that works....

****************
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
hosts_file /etc/hosts
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320

cache_mem 40 MB

cache_dir ufs /var/spool/squid 3950 16 256
cache_access_log /var/log/squid/access.log

#httpd_accel_port 80
#httpd_accel_single_host off
#httpd_accel_with_proxy on
#httpd_accel_uses_host_header on
#httpd_accel_host virtual

auth_param basic program /usr/lib/squid/ldap_auth -b
ou=domain.cl,ou=accounts,ou=postfix,dc=domain,dc=cl -f
(&(objectClass=VirtualMailAccount)(Active=TRUE)(mail=%s)) -u mail -s sub
-h 192.168.200.72 -v 3
auth_param basic children 30
auth_param basic realm Acceso a Proxy (Ingrese su direccion de correo@ y
clave)
auth_param basic credentialsttl 8 hours
authenticate_ttl 8 hour

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8

acl SSL_ports port 443 # https
#acl SSL_ports port 563 # snews
#acl SSL_ports port 873 # rsync

acl Citrix_ports port 1494 # ICA
acl Citrix_ports port 2598 # ???

acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 1494 # ICA
acl Safe_ports port 2598 # ???

acl purge method PURGE
acl CONNECT method CONNECT

acl admins src 191.9.200.22 #

acl top_ips src 191.9.200.102 #
acl top_ips src 191.9.200.96 #

acl top_users proxy_auth user_at_domain.cl
acl top_users proxy_auth user2_at_domain.cl

acl lan src 191.9.200.0/24
acl lan1 src x.x.x.x/x

acl hopster dstdomain .hopster.com

acl skype_web dstdomain .skype.com
acl skype_IPs url_regex ^[0-9]+\.[0-9]+\.[0-9]+\.[0-9]+:443

acl msn_user_agent browser MSN.Messenger
acl msn_mime req_mime_type ^application/x-msn-messenger$
acl msn_gateway urlpath_regex /gateway/gateway.dll?
acl msn_proxy dst 206.161.121.97
acl msn_proxy dst 206.161.121.2
acl msn_sites dstdomain .msn.com
acl msn_sites dstdomain .msn.net
acl msn_sites dstdomain .hotmail.com

http_access allow admins
http_access allow top_ips
http_access allow top_users

http_access deny !Safe_ports
http_access allow CONNECT SSL_ports
http_access allow CONNECT Citrix_ports
http_access deny CONNECT

http_access allow manager localhost
http_access allow manager admins
http_access deny manager

http_access allow purge localhost
http_access allow purge admins
http_access deny purge

http_access allow localhost
http_access allow lan
http_access allow lan1

http_access deny all

http_reply_access allow all

icp_access allow all
coredump_dir /var/spool/squid

See, just some acl`s change....

Thanks!!!!

> Best,
>
> François
Received on Thu Jul 31 2008 - 13:06:12 MDT

This archive was generated by hypermail 2.2.0 : Thu Jul 31 2008 - 12:00:05 MDT