Re: [squid-users] Direct access?

From: Henrik Nordstrom <[email protected]>
Date: Tue, 11 Mar 2003 10:07:20 +0100

How to make everyone go direct to the site without using Squid:

 * Configure their browser to not use the proxy for reaching this
site. If you are using a PAC script then it is no more than adding a
statement that this domain should be DIRECT, if manual configuration
then each browser needs to be reconfigured. If transparent
interception then an acl in your router is needed to not intercept
this site.

How to make Squid not cache the site when proxied by Squid:

 * See the no_cache directive. Also documented in the FAQ.

Regards
Henrik

On Tuesday 11 March 2003 02.35, Amy Anderson wrote:
> Hi All,
> I am running squid 2.5STABLE and I am having trouble with a
> specific web site. It is
> http://ea2.co.oakland.mi.us/eap/index.cfm?Ua_Id=TaPEN0GH&Token_Id=O
>OFRBG80 This is a county document database. I do not want it to be
> cached, and after about 6 hours of squid running it locks everyone
> out of the site because squid cannot find the URL cache. Is there
> any way I can allow everyone to have direct access without going
> thru squid? I am sure this question is a simple one, I have tried
> to look thru the 86 page online PDF and but I am not sure of the
> command I am looking for? Is there anyone that can help? Here is
> my squid.conf.
>
> # make sure you use rc.firewall
> http_port 3128
> icp_port 0
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
> cache_mem 8 MB
> cache_dir diskd /var/spool/squid 100 16 256
>
> cache_access_log /var/log/squid/access.log
> cache_log /var/log/squid/cache.log
> cache_store_log none
>
> #If ACLs are giving you problems and you don't know why they aren't
> working, # you can use this tip to debug them.
> #From now on, your cache.log should contain a line for every
> request that # explains if it was allowed, or denied, and which ACL
> was the last one that it matched.
>
> debug_options ALL,1 33,2
>
> #redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
> half_closed_clients off
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl mynetwork src 192.168.0.0/255.255.255.0
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access allow mynetwork
> http_access deny all
> icp_access allow all
> miss_access allow all
> #proxy_auth_realm MandrakeSoft Squid proxy-caching web server
> visible_hostname fmt-liv.firstmichigantitle.com
> httpd_accel_host virtual
> httpd_accel_with_proxy on
> httpd_accel_uses_host_header on
> append_domain .firstmichigantitle.com
> err_html_text webmaster@firstmichigantitle.com
> memory_pools off
> deny_info ERR_CUSTOM_ACCESS_DENIED all
>
>
> cache_effective_user squid
> cache_effective_group squid
>
> memory_pools_limit 8 MB
> #cache_mem_high 80
> #cache_mem_low 75
> cache_swap_high 80
> cache_swap_low 75
> maximum_object_size 2000 KB
> ipcache_high 80
> ipcache_low 75
> #reference_age 1 month
> #positive_dns_ttl 1 hour
> forwarded_for off
> cache_mgr root@firstmichigantitle.com
>
> Thank you very much!!
>
> Amy
Received on Tue Mar 11 2003 - 02:07:19 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:14:00 MST