[squid-users] Re: FTP Confusion

From: Norman Zhang <norman.zhang@dont-contact.us>
Date: Mon, 07 Jun 2004 13:48:02 -0700

Hendrik Voigtländer wrote:
> http://www.squid-cache.org/Doc/FAQ/FAQ-12.html#ss12.17
>
> Any browser can connect to ftp-sites via squid but not many ordinary
> ftp-clients support this feature.

Thanks. I specified IE to use Squid with port 3128. But that seems to
have no effect. May I ask what kind of tweaking are you referring to? Do
I need to add other options to my squid.conf?

Regards,
Norman

> You have to tweak IE a bit to work with squid. Mozilla works fine.
> Wget works as well if you are careful.
>
> If you need to support ftp on the client side try frox (sort of squid
> addon) or use a 'real' ftp proxy beside or instead of squid.
>
> Norman Zhang wrote:
>> http://squid.visolve.com/squid/faq.htm says Squid support FTP caching
>> but on the archives users said Squid is no FTP proxy. May I ask how
>> can I redirect FTP traffic through Squid?
>>
>> cache_mgr web.master@arkonnetworks.com
>> hierarchy_stoplist cgi-bin ?
>> acl QUERY urlpath_regex cgi-bin \?
>> no_cache deny QUERY
>> cache_mem 16 MB
>> cache_dir ufs /var/spool/squid 200 16 256
>> cache_peer 127.0.0.1 parent 80 7 default no-query
>> acl binaries urlpath_regex -i \.exe$ \.zip$ \.vbs$ \.gz$
>> cache_peer_access 127.0.0.1 allow binaries
>> never_direct allow binaries
>>
>> ftp_user squid@test.com
>> auth_param ntlm program /usr/lib/squid/wb_ntlmauth
>> auth_param ntlm children 5
>> auth_param ntlm max_challenge_reuses 0
>> auth_param ntlm max_challenge_lifetime 2 minutes
>>
>> external_acl_type NT_global_group %LOGIN /usr/lib/squid/wb_group
>>
>> acl ProxyUsers external NT_global_group ProxyUsers
>> acl authusrs proxy_auth REQUIRED
>> acl all src 0.0.0.0/0.0.0.0
>> acl manager proto cache_object
>> acl localhost src 127.0.0.1/255.255.255.255
>> acl SSL_ports port 443 563
>> acl Safe_ports port 80 # http
>> acl Safe_ports port 21 # ftp
>> acl Safe_ports port 443 563 # https, snews
>> acl Safe_ports port 70 # gopher
>> acl Safe_ports port 210 # wais
>> acl Safe_ports port 1025-65535 # unregistered ports
>> acl Safe_ports port 280 # http-mgmt
>> acl Safe_ports port 488 # gss-http
>> acl Safe_ports port 591 # filemaker
>> acl Safe_ports port 777 # multiling http
>> acl webmin port 10000 20000 # webmin, usermin
>> acl CONNECT method CONNECT
>> acl localnet dst 192.168.11.0/26 192.168.22.0/25
>> acl arkonweb dst 207.34.136.4 207.34.136.5 207.34.136.7
>> acl pdfgrab browser WebCapture
>> acl realplay browser RealMedia
>> acl ssread browser SSDOWNLOAD
>> acl ssread browser SSREADER
>>
>> http_access allow manager localhost
>> http_access deny manager
>> http_access allow CONNECT webmin
>> http_access deny !Safe_ports
>> http_access deny CONNECT !SSL_ports
>> http_access allow localnet
>> http_access allow arkonweb
>> http_access allow pdfgrab
>> http_access allow realplay
>> http_access allow ssread
>> http_access allow authusrs ProxyUsers
>> http_access allow localhost
>> http_access deny all
>>
>> icp_access allow all
Received on Mon Jun 07 2004 - 14:48:06 MDT

This archive was generated by hypermail pre-2.1.9 : Thu Jul 01 2004 - 12:00:02 MDT