Re: [squid-users] Re: WARNING: Forwarding loop detected for:

From: Dipjyoti Bharali <dipjyoti_at_skanray.com>
Date: Tue, 08 Apr 2014 15:51:43 +0530

squid.conf is as follows,
############################################################################################

https_port 192.168.1.1:3129 cert=/etc/pki/myCA/private/server-key-cert.pem transparent

http_port 192.168.1.1:3128 transparent

acl QUERY urlpath_regex cgi-bin \?
acl apache rep_header Server ^Apache
access_log /var/log/squid/access.log squid
hosts_file /etc/hosts

refresh_pattern ^ftp:// 480 60% 22160
refresh_pattern ^gopher:// 30 20% 120
refresh_pattern . 480 50% 22160

forwarded_for on

cache_dir ufs /var/spool/squid 10000 16 256

acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32

acl nocache dst 192.168.0.0/24
acl lan src 192.168.1.0/24 fe80::/10
acl SSL_ports port 443 # https
acl Safe_ports port 80 443 # http, https
acl Safe_ports port 21 # ftp
acl Safe_ports port 995 # SSL/TLS
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl Safe_ports port 2082 # CPANEL
acl Safe_ports port 2083 # CPANEL
acl Safe_ports port 2078 # Webdav
acl purge method PURGE
acl CONNECT method CONNECT

acl BadSite ssl_error SQUID_X509_V_ERR_DOMAIN_MISMATCH
acl banned_sites url_regex -i who.is whois cricket resolver lyrics songs bollywood porn xxx livetv
acl ads dstdom_regex "/var/squidGuard/ad_block.txt"
#acl local src 192.168.1.1
acl numeric_IPs dstdom_regex ^(([0-9]+\.[0-9]+\.[0-9]+\.[0-9]+)|(\[([0-9af]+)?:([0-9af:]+)?:([0-9af]+)?\])):443

acl blockfiles urlpath_regex "/var/squidGuard/blocks.files.acl"

deny_info ERR_BLOCKED_FILES blockfiles
http_access deny blockfiles

http_access deny banned_sites
http_access deny skype_access
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow lan
http_access deny numeric_IPS
http_access deny all
http_reply_access allow all
icp_access allow all

visible_hostname hindenberg
coredump_dir /var/spool/squid

cache_peer hindenberg parent 3128 3129
acl PEERS src 192.168.1.1
cache_peer_access hindenberg allow !PEERS

sslproxy_cert_error allow lan
sslproxy_flags DONT_VERIFY_PEER

cache_effective_user squid
cache_effective_group squid
cache_mem 2048 MB
memory_replacement_policy lru
cache_replacement_policy heap LFUDA
cache deny nocache

redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
err_html_text Blocked !!
dns_nameservers 127.0.0.1
url_rewrite_children 30
url_rewrite_concurrency 0
httpd_suppress_version_string on

########################################################################################

*Dipjyoti Bharali*

*Please consider the environment before printing this email. *
On 08-04-2014 15:05, babajaga wrote:
> Pls, post squid.conf, without comments.
> And, wich URL exactly results in the forward loop ?
>
>
>
> --
> View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/WARNING-Forwarding-loop-detected-for-tp4665487p4665491.html
> Sent from the Squid - Users mailing list archive at Nabble.com.
>
>
> ---
> avast! Antivirus: Inbound message clean.
> Virus Database (VPS): 140407-0, 07-04-2014
> Tested on: 08-04-2014 15:14:59
> avast! - copyright (c) 1988-2014 AVAST Software.
> http://www.avast.com
>
>
>
>

---
avast! Antivirus: Outbound message clean.
Virus Database (VPS): 140407-0, 07-04-2014
Tested on: 08-04-2014 15:51:48
avast! - copyright (c) 1988-2014 AVAST Software.
http://www.avast.com
Received on Tue Apr 08 2014 - 10:22:07 MDT

This archive was generated by hypermail 2.2.0 : Tue Apr 08 2014 - 12:00:05 MDT