RE: [squid-users] Parent Proxy Help

From: Chris Robertson <[email protected]>
Date: Fri, 15 Jul 2005 10:04:41 -0800

>>>From: Nathan Whittacre [mailto:nwhit@stimulustech.com]
>>>Sent: Thursday, July 14, 2005 6:56 AM
>>>To: Chris Robertson
>>>Subject: Re: [squid-users] Parent Proxy Help
>>>
>>>
>>>-----Original Message-----
>>>
>>>Still no luck.... I am getting this (and I even downgraded to v2.4.STABLE6)
>>>
>>>This is what happens.
>>>
>>>1121352791.339 62 10.2.0.111 TCP_MISS/302 751 GET
>>>http://dealer.toyota.com/FormsLogin.asp? - FIRST_UP_PARENT/10.2.0.253
>>>text/html
>>>1121352791.399 44 10.2.0.111 TCP_MISS/302 750 GET
>>>http://dealer.toyota.com/logout.asp? - FIRST_UP_PARENT/10.2.0.253 text/html
>>>1121352791.456 53 10.2.0.111 TCP_MISS/200 888 GET
>>>http://dealer.toyota.com/logout.html? - FIRST_UP_PARENT/10.2.0.253 text/html
>>>1121352791.705 60 10.2.0.111 TCP_MISS/302 1069 GET
>>>http://dealer.toyota.com/ - FIRST_UP_PARENT/10.2.0.253 text/html
>>>1121352791.897 185 10.2.0.111 TCP_MISS/200 4532 GET
>>>http://dealer.toyota.com/login.asp? - FIRST_UP_PARENT/10.2.0.253 text/html
>>>1121352791.992 54 10.2.0.111 TCP_MISS/304 523 GET
>>>http://dealer.toyota.com/Portal/Utility/Public/glb_login.jpg -
>>>FIRST_UP_PARENT/10.2.0.253 text/plain
>>>1121352842.001 239159 10.2.0.111 TCP_MISS/504 1054 GET
>>>http://dealer.toyota.com/FormsLogin.asp? - NONE/- -
>>>
>>>Thanks,
>>>Nathan
>>>
>>>
>>>
>>>
>>
>>
>> Chris Robertson wrote:
>>
>>Perhaps I'm misunderstanding what you are actually trying to do...
>>
>>The log snippet above shows that all connections to dealer.toyota.com
>>are going through the proxy 10.2.0.253, and none of them are being
>>cached locally. The last line is a Server Error, and that has been
>>cached. I need a bit more explanation of what problems you are seeing.
>>
>>Chris
>>
>>
> -----Original Message-----
> From: Nathan Whittacre [mailto:nwhit@stimulustech.com]
> Sent: Thursday, July 14, 2005 10:38 PM
> To: Chris Robertson
> Cc: squid-users@squid-cache.org
> Subject: Re: [squid-users] Parent Proxy Help
>
> Thanks for helping me out. What I want to happen is that this server
> acts as the direct proxy for everything except .toyota.com, for which
> the server goes to 10.2.0.253 for the request. If this server tries to
> get the request directly through the public internet, the request is
> denied. dealer.toyota.com can only be accessed through the proxy server
> at 10.2.0.253.
>
> This was working fine before the upgrade from rh7.3 to fc3. I am using
> the exact same config file as before, which used to work. All i needed
> before was:
>
> cache_peer 10.2.0.253 parent 80 7 no-query proxy-only
> cache_peer_domain 10.2.0.253 .toyota.com
>
> Thanks,
> Nathan
>

I must admit a bit of confusion... The log snippet that you included shows the proxy server using a parent (10.2.0.253) for the dealer.toyota.com domain. Was something else broken at that time? In any case, adding the following...

acl toyota-dealer dstdomain .dealer.toyota.com
never_direct allow toyota-dealer
always_direct allow all

...to your squid.conf will guarantee that Squid will never try to hit the dealer.toyota.com domain directly, but will use the parent proxy.

Chris
Received on Fri Jul 15 2005 - 12:04:46 MDT

This archive was generated by hypermail pre-2.1.9 : Mon Aug 01 2005 - 12:00:02 MDT