RE: [squid-users] Can't run cachemgr.cgi...

Well, I found my own error. The problem is that I'm ONLY using port 80.
Squid is bound to the external interface, and Apache is bound to localhost.
The URL I was running wouldn't even access squid, since it was trying to
get at localhost port 80 (which is Apache). When I tried to get at
the FQDN of the local machine, I got a ACL error, which led me to add
the FQDN to the acl list for manager. This fixed the problem...

        - Matt Goheen

"Fixing something is just a matter of understanding it...."

> -----Original Message-----
> From: Matthew Goheen [mailto:mgoheen@iname.com]
> Sent: Monday, May 14, 2001 3:46 PM
> To: squid-users@squid-cache.org
> Subject: [squid-users] Can't run cachemgr.cgi...
>
>
> We run only as an accelerator, and I'm having trouble getting access to cachemgr.cgi
> after an upgrade from 2.3.2 to 2.4.1.
>
> This is under Solaris 2.7. Here are what I think are the relevent configuration
> entries:
>
> http_port full.host.name.com:80
> httpd_accel_host 127.0.0.1
> httpd_accel_port 80
> httpd_accel_single_host on
> httpd_accel_uses_host_header on
> redirect_rewrites_host_header off
>
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 81 21 443 563 70 210 1025-65535
> acl CONNECT method CONNECT
>
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow all
>
> I get the following error:
>
> Forbidden
>
> You don't have permission to access cache_object://localhost/ on this server.
>
> I'm using "host=localhost" and "port=80".
>
> I obviously don't understand something....
>
> Thanks,
> Matt Goheen
>
>
Received on Mon May 14 2001 - 19:23:17 MDT