Re: [squid-users] FTP Confusion

From: Hendrik Voigtländer <hendrik@dont-contact.us>
Date: Mon, 07 Jun 2004 22:00:08 +0200

http://www.squid-cache.org/Doc/FAQ/FAQ-12.html#ss12.17

Any browser can connect to ftp-sites via squid but not many ordinary
ftp-clients support this feature.

You have to tweak IE a bit to work with squid. Mozilla works fine.
Wget works as well if you are careful.

If you need to support ftp on the client side try frox (sort of squid
addon) or use a 'real' ftp proxy beside or instead of squid.

Regards, Hendrik

Norman Zhang wrote:
> Hi,
>
> http://squid.visolve.com/squid/faq.htm says Squid support FTP caching
> but on the archives users said Squid is no FTP proxy. May I ask how can
> I redirect FTP traffic through Squid?
>
> Regards,
> Norman
>
> cache_mgr web.master@arkonnetworks.com
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
> cache_mem 16 MB
> cache_dir ufs /var/spool/squid 200 16 256
> cache_peer 127.0.0.1 parent 80 7 default no-query
> acl binaries urlpath_regex -i \.exe$ \.zip$ \.vbs$ \.gz$
> cache_peer_access 127.0.0.1 allow binaries
> never_direct allow binaries
>
> ftp_user squid@test.com
> auth_param ntlm program /usr/lib/squid/wb_ntlmauth
> auth_param ntlm children 5
> auth_param ntlm max_challenge_reuses 0
> auth_param ntlm max_challenge_lifetime 2 minutes
>
> external_acl_type NT_global_group %LOGIN /usr/lib/squid/wb_group
>
> acl ProxyUsers external NT_global_group ProxyUsers
> acl authusrs proxy_auth REQUIRED
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl webmin port 10000 20000 # webmin, usermin
> acl CONNECT method CONNECT
> acl localnet dst 192.168.11.0/26 192.168.22.0/25
> acl arkonweb dst 207.34.136.4 207.34.136.5 207.34.136.7
> acl pdfgrab browser WebCapture
> acl realplay browser RealMedia
> acl ssread browser SSDOWNLOAD
> acl ssread browser SSREADER
>
> http_access allow manager localhost
> http_access deny manager
> http_access allow CONNECT webmin
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localnet
> http_access allow arkonweb
> http_access allow pdfgrab
> http_access allow realplay
> http_access allow ssread
> http_access allow authusrs ProxyUsers
> http_access allow localhost
> http_access deny all
>
> icp_access allow all
Received on Mon Jun 07 2004 - 14:01:04 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT