similar to: Use of cache_peer login=username:password

I'm having issues getting squid to send traffic through a specific upstream gateway. I need for a MS WSUS server and a Symantec Endpoint Protection Manager to get through a squid proxy to get out to Microsoft and Symantec respectively to get MS patches and Symantec DAT files. The traffic needs to go through the squid proxy, through a firewall, and through an upstream McAfee gateway

Hi Friends, Same question has been asked on the Squid mailing list but so far no reply on the mailing list so posting it here also. We are trying to cache some files from apple.com like .dmg, .pkg, .ipa etc.. so that local clients can fetch the data from the cache. The problem we are facing is that we have download restrictions for every client to 25 MB during work hours except for a particular

Hi asa, You can make a script to ping your internet gateway every 5 minutes and if it´s down it automatically switch the default route do gateway 2. You set a script to run x time with cron job. []´s Anderson > hi all, > > i''m using squid as a proxy server, and have 2 gateway f or internet access, > currently i''m using 1 gateway for the internet access, if

Hi, I set up Squid 4.6 on Debian 10 and I'm having problems with browser authentication on a Windows station. I did the tests on the command line and apparently it's OK. root at proxy:/etc/squid/acls# /usr/bin/ntlm_auth --helper-protocol=squid-2.5-basic Registered MSG_REQ_POOL_USAGE Registered MSG_REQ_DMALLOC_MARK and LOG_CHANGED lp_load_ex: refreshing parameters Initialising global

Hello there. I'm try to configure squid3 with samba4-alpha-10 autentication. My samba4 pdc work fine with a simple smb.conf: [globals] netbios name = PANTRO workgroup = MYDOMAIN realm = MYDOMAIN.LAN server role = domain controller [netlogon] path = /usr/local/samba/var/locks/sysvol/mydomain.lan/scripts read only = no

Hello, I've got a centos5 box that is now behind a what was transparent squid proxy. The proxy now has it's own dedicated ip and uses proxy basic authentication. I've got a firewall that redirects all outgoing port 80 traffic to that ip so anyone wishing access goes proxied. The problem is yum on my centos5 can't retrieve the .xml files for the various yum repositories. In

Hi, I have a box running with iptables and iproute2. it has 3 ethernet cards. One for the internet. another for LAN and yet another for DMZ. @ DMZ ZONE I have 3 web servers. But I have only one real ip on my firewall. Now , I want to forward port 80 to theese 3 web servers. How can I do it? I searched a lot from google. But, still no luck. -- Thank you Indunil Jayasooriya

Hey Marek, I´know that i must to works whith the INGRESS (instead of EGRESS), i´ve well formed my kernel. My others TC rules for source IP address (not for MAC address) does work fine...!!!, the problem is whith the MAC because is a not "IP PROTOCOL" and for that i must to use the "u32/u16 match" to solve it, and if i make an analogy from my others INGRESS rules applied to Src

Am 05.03.2018 um 13:04 schrieb Nicolas Kovacs <info at microlinux.fr>: > > Le 28/02/2018 ? 22:23, Nicolas Kovacs a ?crit : >> So far, I've only been able to filter HTTP. >> >> Do any of you do transparent HTTPS filtering ? Any suggestions, >> advice, caveats, do's and don'ts ? > > After a week of trial and error, transparent HTTPS filtering

Hi List, I want to bind an ip address to a username with squid by using squid password file. I am using ncsa_auth programme. Below are line that I have added to squid.conf file. auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/squid_passwd auth_param basic children 5 auth_param basic realm Squid proxy-caching web server auth_param basic credentialsttl 2 hours auth_param basic

Hi, I've setup a transparent HTTP+HTTPS proxy on my server running CentOS 7, using Squid. Here's my configuration file. --8<---------------------------------------------------------------- # /etc/squid/squid.conf # D?finitions acl localnet src 192.168.2.0/24 acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port

Hi, Another idea - but this gets complicated and with that, prone to faults - use a simple shell script to resolve the desired domains and keep their IPs in an ipset, then use the ipset in your firewall rules, this way you can keep your iptables rules static, your squid config static and simply add or remove IPs from the ipset. -- Sent from the Delta quadrant using Borg technology! Nux!

Hi, I am trying to help my friend on this ------------------------------------------------------------------------ -- Hi, I have an application deployed on tomcat 5.5 with java 1.6.0_07. Occasionally the application needs to connect through our proxy to the outside to collect patches. I've added the following options to the JAVA_OPTS and restarted tomcat. -Dhttp.proxyUser

Hi, I'm currently facing a quite tricky problem. Here goes. I have setup Squid as a transparent HTTP+HTTPS proxy in my local network. All web traffic gets handed over to Squid by an iptables script on the server. Here's the relevant section in /etc/squid/squid.conf: --8<------------------------------------------------------------- # Ports du proxy http_port 3130 http_port 3128

Hello, I have a problem here with: [root at ablprx01 squid]# cat /etc/*release CentOS release 5.2 (Final) [root at ablprx01 squid]# rpm -qa|grep -i squid squid-2.6.STABLE6-5.el5_1.3 The web proxy process (used by 300-400 users) seems to run ok: [root at ablprx01 squid]# ps uawwwx|grep squid root 2304 0.0 0.0 7792 1268 ? Ss 08:45 0:00 squid -D squid 3082 27.7 0.9

Hi ALL, I am running squid with ncsa support. Each user has a username and passowrd to access Internet. Now the probles is that user now can access Internet with his username and password from all the workstations. I do not need it. So, I think if I bind username to ip address, user can access Internet from that particular pc having that ip address. How to do it? -- Thank you Indunil

2020-01-08 09:59, Marvin Scholz wrote: > > On 6 Jan 2020, at 22:56, user wrote: > > > 2020-01-06 17:50, Philipp Schafft wrote: > >> Good evening, > >> > >> On Mon, 2020-01-06 at 10:24 +0000, user wrote: > >>> Hello. > >>> Is it possible to bind admin console on different port? > >>> > >>> icecast 2.4.4 >

Hi all, I am trying to configure squid as a interception HTTPS proxy under CentOS 7. At every https request, I am receiving a certificate error. My current config for squid is: # My localnet acl localnet src 172.22.55.0/28 acl localnet src 172.22.58.0/29 acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70

Hello, I'm having a little problem after logging into domain via samba, after a few minutes the squid no longer authenticates the users through single sign on and keeps asking for authentication in the browser without stopping. below is my settings and error logs. smb.conf [global]workgroup = SALEnetbios name = utmadmserver string = PROXY SERVERload printers = nolog file =

Hello Everyone! I am using shorewall-3.0.5 on suse linux. Recently we have implemented dansguardian running on 8080 and squid on port 3128. Previously (before dans guardian) masquerading was working fine but after the implementation of dansguardian masquerading is not working. My rules file has entry Previous entry was ACCEPT loc:192.192.192.3 net REDIRECT loc 8080 tcp