RE: AW: AW: [squid-users] max_user_ip not working in squid-2.6S4

From: Marco Berizzi <[email protected]>
Date: Thu, 05 Oct 2006 12:16:50 +0200

This message is from cache.log:

2006/10/05 12:05:50| The reply for GET http://blabla/css/css06a.css is
ALLOWED, because it matched 'concurrent_browsing'

Very tricky isn't it?

Marco Berizzi wrote:

>I was forgotting...
>I have tested squid2.6STABLE{1,2,3,4}: same behaviour
>
>Werner.Rost@zf.com wrote:
>
>>Please send all http_access statements of your squid.conf
>
>This is my full squid.conf
>
>http_port 7777
>icp_port 0
>
>cache_mem 64 MB
>
>maximum_object_size 32 MB
>
>cache_replacement_policy heap LFUDA
>memory_replacement_policy heap GDSF
>
>cache_dir ufs /var/spool/squid/cache 2047 16 256
>
>access_log /var/spool/squid/logs/access.log
>cache_log /var/spool/squid/logs/cache.log
>cache_store_log none
>logfile_rotate 3
>
>pid_filename /var/run/squid.pid
>coredump_dir /var/spool/squid/cache
>
>debug_options ALL,9
>
>auth_param ntlm program /usr/libexec/squid/ntlm_auth domain/ntexve
>auth_param ntlm children 5
>auth_param ntlm keep_alive on
>
>#authenticate_ip_ttl 10800 seconds
>authenticate_ip_ttl 600 seconds
>
>acl all src 0.0.0.0/0.0.0.0
>acl mynet src 172.16.0.0/23
>acl concurrent_browsing max_user_ip -s 1
>acl password proxy_auth_regex "/etc/squid/allowusers"
>
>#http_access deny !password all
>http_access deny concurrent_browsing
>http_access deny !password all
>http_access allow password
>http_access deny all
>
>And this is my build script:
>
>CFLAGS="-O2" ./configure \
> --prefix=/usr \
> --sysconfdir=/etc/squid \
> --localstatedir=/var/spool/squid \
> --libexecdir=/usr/libexec/squid \
> --datadir=/usr/share/squid \
> --enable-removal-policies="heap" \
> --enable-delay-pools \
> --enable-useragent-log \
> --disable-wccp \
> --disable-wccpv2 \
> --enable-ssl \
> --enable-default-err-language=Italian \
> --enable-err-languages="English Italian" \
> --enable-epoll \
> --enable-http-violations \
> --disable-ident-lookups \
> --enable-auth="basic ntlm" \
> --enable-basic-auth-helpers="MSNT" \
> --enable-ntlm-auth-helpers="SMB" \
> i486-slackware-linux
>
>CFLAGS="-O2" make all
>
>My env: squid-2.6s4, slackware linux 11.0 + linux 2.6.18
>I'm able to simultaneously browse the internet from two
>different workstation.
>
>
Received on Thu Oct 05 2006 - 04:16:58 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Nov 01 2006 - 12:00:04 MST