Re: [squid-users] Acl problems With Purge

Ah! There we have it. You are not doing a PURGE, your are issuing GET
requests with max-age=0, trying to force the cache to refresh it's
content.

PURGE is a HTTP method.

client -p 80 -m PURGE http://cache.securitylabs.com/index.cfm

Or in an accelerator without the patch:

client -p 80 -m PURGE -H "Host: cache.securitylabs.com" /index.cfm

(the -H "Host:..." thing can be ignored if you are not using
httpd_accel_uses_host_header)

Similarily, to issue the forced reload using the client program you need
to use

client -p 80 -s -r -H 'Cache-Control: max-age=0\nHost:
cache.securitylabs.com' /index.cfm

Regards
Henrik Nordström
Squid Hacker

AJ Lemke wrote:
>
> I have enabled the debug options in the squid.conf file. I have no idea
> what I am looking for in the cache.log file, any suggestions there? Could
> you give me a command line for the client command that would use the
> cache-control max-age=0 because that is the only way we are able to clear
> out the cache, this is the header that Netscape 6 sends.
>
> ./client -p 80 -s -r -H 'Cache-Control: max-age=0'
> http://cache.securitylabs.com/index.cfm is the command line I used before.
>
> This is a accel mode squid config.
>
> AJ
>
> -----Original Message-----
> From: henrik@filer.marasystems.com
> [mailto:henrik@filer.marasystems.com]On Behalf Of Henrik Nordstrom
> Sent: Wednesday, October 24, 2001 1:16 PM
> To: AJ Lemke
> Subject: Re: [squid-users] Acl problems With Purge
>
> Odd..
>
> anything in cache.log?
>
> What do you get if you enable
> debug_options ALL,1 33,2
>
> Regards
> Henrik Nordström
> Squid Hacker
>
> AJ Lemke wrote:
> >
> > I tried the patch you gave me patched the client_side.c file then:
> >
> > make distclean
> > ./configure --prefix=/usr/local/squid --disable-internal-dns --enable snmp
> > make all
> > make install
> >
> > The client command still gives me an access denied still.
> >
> > Here is a snippet from the access.log:
> >
> > 127.0.0.1 - - [24/Oct/2001:10:35:22 -0500] "GET
> > http://cache.securitylabs.com/index.cfm HTTP/1.0" 403 1085 TCP_DENIED:NONE
> > [Pragma: no-cache\r\nAccept: */*\r\n] [HTTP/1.0 403 Forbidden\r\nServer:
> > Squid/2.4.STABLE2\r\nMime-Version: 1.0\r\nDate: Wed, 24 Oct 2001 15:35:22
> > GMT\r\nContent-Type: text/html\r\nContent-Length: 783\r\nExpires: Wed, 24
> > Oct 2001 15:35:22 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
> > 127.0.0.1 - - [24/Oct/2001:10:36:43 -0500] "GET
> > http://cache.securitylabs.com/index.cfm HTTP/1.0" 403 1085 TCP_DENIED:NONE
> > [Pragma: no-cache\r\nAccept: */*\r\n] [HTTP/1.0 403 Forbidden\r\nServer:
> > Squid/2.4.STABLE2\r\nMime-Version: 1.0\r\nDate: Wed, 24 Oct 2001 15:36:43
> > GMT\r\nContent-Type: text/html\r\nContent-Length: 783\r\nExpires: Wed, 24
> > Oct 2001 15:36:43 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
> > 127.0.0.1 - - [24/Oct/2001:10:36:45 -0500] "GET
> > http://cache.securitylabs.com/index.cfm HTTP/1.0" 403 1085 TCP_DENIED:NONE
> > [Pragma: no-cache\r\nAccept: */*\r\n] [HTTP/1.0 403 Forbidden\r\nServer:
> > Squid/2.4.STABLE2\r\nMime-Version: 1.0\r\nDate: Wed, 24 Oct 2001 15:36:45
> > GMT\r\nContent-Type: text/html\r\nContent-Length: 783\r\nExpires: Wed, 24
> > Oct 2001 15:36:45 GMT\r\nX-Squid-Error: ERR_ACCESS_DENIED 0\r\n\r]
> >
> > Here is my ACL:
> >
> > # Access control List
> > acl localhost src 127.0.0.1
> > acl purge method purge
> > acl manager proto cache_object
> > acl all src 0.0.0.0/0.0.0.0
> > acl accelerated_servers dst 208.248.72.7 208.248.72.13 208.248.72.15
> >
> > # Access Area
> > http_access allow manager localhost
> > http_access allow purge localhost
> > http_access allow all
> > http_access allow accelerated_servers
> >
> > I am running accelerated mode.
> >
> > AJ
Received on Wed Oct 24 2001 - 17:25:18 MDT