Squid 1.NOVM.20 to Squid 2.2STABLE4 problems

From: Stephane Marzloff <smarzloff@dont-contact.us>
Date: Fri, 24 Sep 1999 10:37:41 +0200

Hi.

I run Squid 1.NOVM.20 for several months. It run perfectly, but now, I have
computers who must upload files by ftp (via squid).

Also, ftp upload came with the Squid 2.x versions.

I try to pass on the Squid 2.2STABLE4, but I have a problem.

There is the configuration :

       ETH0 PC ETH1
LAN ---------- SQUID -------------- INTERNET

Well. In my LAN, I have a web server with an address with "10.x.x.x".
This is the main web server who is also known as "www.carif-idf.org" (as
192.98.158.80 on the net).

On the "PC SQUID", I have Squid and a redirector.
The "PC SQUID" real address on ETH1 is 194.98.158.66, and "www.carif-idf.org"
is an "alias" on the card on "194.98.158.80".

So, all people on the net, and all people inside the lan can target my web
server.

But, with Squid 2, now, the connexions :
LAN -> Web server (when request for "www.carif-idf.org") missed.

I have a "detected loop" in the cache.log, and the request is never passed.

So after several test, read archives mailing list... I'm really bloked.

I anybody see what is my error.. Thanks in advance..

PS : Excuse my poor english :(

There is my configuration for Squid 1 (just critical parameters):

redirect_program /usr/local/squid/bin/redirector

acl local src 10.0.0.0/255.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl all src 0.0.0.0/0.0.0.0
acl SSL_ports port 443 563
acl Safe_ports port 80 81 8080 21 443 563 70 210 2001 3000 8081 8000 8001 9000 12000 1025-65535
acl Intra_ports port 83
acl CONNECT method CONNECT

http_access deny all manager !localhost !local
http_access deny CONNECT !SSL_ports
http_access allow Intranet_port local
http_access deny !Safe_ports

miss_access allow all
httpd_accel virtual 80
httpd_accel_with_proxy on

And my configuration for Squid 2:
redirect_program /usr/local/squid2.2/bin/redirector

acl date time SMTWHFA 00:00-23:59

acl rafiki src 10.100.10.99/255.255.255.255
acl ns src 194.98.158.66/255.255.255.255

acl local src 10.0.0.0/255.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl all src 0.0.0.0/0.0.0.0
acl SSL_ports port 443 563
acl Safe_ports port 80 81 8080 21 443 563 70 210 3000 8081 8000 9000 1025-65535
acl Intranet_port port 83
acl CONNECT method CONNECT

http_access allow manager rafiki
http_access allow manager ns
http_access deny manager all
http_access deny CONNECT !SSL_ports
http_access allow Intranet_port local
http_access deny !Safe_ports

miss_access allow all

httpd_accel_host virtual
httpd_accel_port 80

httpd_accel_with_proxy on 

-- 
                  Stéphane Marzloff -> smarzloff@carif-idf.org
Received on Fri Sep 24 1999 - 02:47:06 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:48:32 MST