Re: [squid-users] Error tcp_negative on web server in DMZ

From: sasa <[email protected]>
Date: Wed, 23 Nov 2005 15:47:51 +0100

Hi,
also with:

acl internalsite dstdomain www.mysite.com
no_cache deny internalsite

.. in the log file I have:

tcp_miss/403 4174 get http://www.mysite.com direct /10.0.0.121
tcp_negative_hit/403 GET http://www.mysite.com

..but with parameter no_cache I not use the squid cache or no ??
thanks again.

------
Salvatore.

----- Original Message -----
From: "sasa" <sasa@shoponweb.it>
To: <squid-users@squid-cache.org>
Sent: Wednesday, November 23, 2005 1:48 PM
Subject: Re: [squid-users] Error tcp_negative on web server in DMZ

> Hi,
> the same configuration with old proxy server machine is ok but with new
> machine (always the same version of Fedora, Squid and SquidGuard) not
> functionally !!
> thanks again.
>
> ------
> Salvatore.
>
> ----- Original Message -----
> From: "sasa" <sasa@shoponweb.it>
> To: <squid-users@squid-cache.org>
> Sent: Tuesday, November 22, 2005 1:15 PM
> Subject: Re: [squid-users] Error tcp_negative on web server in DMZ
>
>
>> ..sorry but I have forget in squid.conf:
>>
>> redirect_program /usr/bin/squidGuard
>>
>> ..thanks again.
>>
>> ------
>> Salvatore.
>>
>>
>> ----- Original Message -----
>> From: "sasa" <sasa@shoponweb.it>
>> To: <squid-users@squid-cache.org>
>> Sent: Tuesday, November 22, 2005 1:12 PM
>> Subject: [squid-users] Error tcp_negative on web server in DMZ
>>
>>
>>> Hi, I use squid on Fedora Core 1:
>>>
>>> squid-2.5.STABLE3-2
>>> squidguard-1.2.0-2
>>>
>>> .. my squid.conf is:
>>>
>>> http_port 10.0.0.121:3128
>>> acl QUERY urlpath_regex cgi-bin \?
>>> no_cache deny QUERY
>>> acl windowsupdate dstdomain .windowsupdate.microsoft.com
>>> no_cache deny windowsupdate
>>> acl all src 0.0.0.0/0.0.0.0
>>> acl manager proto cache_object
>>> acl Safe_ports port 80 # http
>>> acl CONNECT method CONNECT
>>> acl local_net src 10.0.0.0/255.255.255.0
>>> http_access deny !Safe_ports
>>> http_access deny CONNECT !SSL_ports
>>> http_access deny to_localhost
>>> acl our_networks src 10.0.0.0/24
>>> http_access allow our_networks
>>> http_access allow local_net
>>> http_access allow localhost
>>> http_access deny all
>>> http_reply_access allow all
>>>
>>> ..but on internal client of my LAN when I try in the web browser (IE):
>>> http://www.mysite.com
>>> ..the dns resolutions is ok and the ip address of my webserver is:
>>> 10.0.1.2
>>> ..and I visualize only Fedora Core Test Page.
>>>
>>> In the log I have:
>>>
>>> tcp_negative_hit/403 GET http://www.mysite.com
>>>
>>> ..where is my error ?
>>> thanks.
>>>
>>> ------
>>> Salvatore.
>>>
>>
>
>
Received on Wed Nov 23 2005 - 07:48:09 MST

This archive was generated by hypermail pre-2.1.9 : Thu Dec 01 2005 - 12:00:10 MST