srcdomain is somewhat unreliable in cache_peer_access. Squid can't wait
for DNS lookups to complete in cache_peer_access so the acl will fail if
the address isn't fresh in Squids internal DNS cache. This in
combination with never_direct makes random requests to fail.
If possible, use the src type ACLs instead for cache_peer_access or
don't use never_direct. If not you need a backup path which Squid may
use when it is uncertain what the domain name of the client is. This
backup path may actually be one of the existing parents under another
name. Squid counts cache_peer names, not physical boxes ;-)
A backup path is configured like this:
1. Mark the standard cache_peer lines with the default option
2. Add a cache_peer line with the backup path, with no default optin
cache_peer backup.parent.host 3128 0 no-query no-digest
-- Henrik Nordstrom Spare time Squid hacker Martin Svensson wrote: > > Hi Eveyone .. > > We get kind of alot of these errors: > > 1999/08/02 08:12:46| Failed to select source for > 'http://www.hotmail.com/' > 1999/08/02 08:12:46| always_direct = 0 > 1999/08/02 08:12:46| never_direct = 1 > 1999/08/02 08:12:46| timedout = 0 > > Usually, a refresh helps but it's kind of annoying. It can happen on > every site, not just hotmail. When this error occurs, squid displays > ERR_CANNOT_FORWARD. > > In squid.conf I use srcdomain to tell squid which way it should take > when connecting to the internet. > > acl lucache srcdomain mas.lu.se ltskane.se > acl sjvcache srcdomain sjv.malmo.se > cache_peer_access firewall_1 allow sjvcache > cache_peer_access firewall_2 allow lucache > > Thanks for the help .. > > -- > Martin Svensson > Dep. of Technology (AFI) > University Hospital of Malmoe > Email: martin@admin.mas.lu.seReceived on Mon Aug 02 1999 - 02:49:42 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:47:49 MST