[squid-users] Squid can't login to Stellent CMS

I've got Squid (squid-2.6.STABLE13-1.RHEL4) running on Red Hat EL 4,
pointing to a Solaris based Stellent CMS instance and it's working, but
when someone tries to login to the Stellent content contol page, they
get the following error page in their browser:

_____
ERROR
The requested URL could not be retrieved
While trying to retrieve the URL:
http://someserver.com:3128/ecmweb/idcplg?IdcService=LOGIN&Action=GetTemp
latePage&Page=HOME_PAGE&Auth=Internet
The following error was encountered:
* Access Denied.
        Access control configuration prevents your request from being
allowed at this time. Please contact your service provider if you feel
this is incorrect.
Your cache administrator is root.
Generated Thu, 04 Oct 2007 15:51:41 GMT by someserver.com
(squid/2.6.STABLE13)

I have very simple ACLs in place until I get everything working, I've
included the other lines so you can see the Ips in place:

http_port 192.168.120.225:3128 transparent
cache_peer 192.168.210.54 parent 80 0 no-query originserver login=PASS

acl all src 0.0.0.0/0.0.0.0
http_access allow all
icp_access allow all

# note, it failed with the following 3 lines in, and out of the config
#acl METHODLIST method post
#no_cache deny METHODLIST
#strip_query_terms off

Meanwhile squid logfiles show the following:

==> store.log <==
1191517193.010 RELEASE -1 FFFFFFFF 2131D03783AB4F076206943690EE6700 403
1191517193 0 1191517193 text/html 1280/1280 GET
http://someserver.com:3128/ecmweb/idcplg?IdcService=LOGIN&Action=GetTemp
latePage&Page=HOME_PAGE&Auth=Internet
1191517193.011 RELEASE -1 FFFFFFFF A9DF9CDAA1351F6EA2F1C92228F23202 403
1191517193 -1 1191517193 text/html 1280/1280 GET
http://someserver.com:3128/ecmweb/idcplg?IdcService=LOGIN&Action=GetTemp
latePage&Page=HOME_PAGE&Auth=Internet

==> cache.log <==
2007/10/04 10:51:41| WARNING: Forwarding loop detected for:
Client: 192.168.120.225 http_port: 192.168.120.225:3128
GET
http://someserver.com:3128/ecmweb/idcplg?IdcService=LOGIN&Action=GetTemp
latePage&Page=HOME_PAGE&Auth=Internet HTTP/1.0
Host: someserver.com:3128
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET
CLR 1.1.4322; .NET CLR 2.0.50727)
Accept:
text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plai
n;q=0.8,image/png,*/*;q=0.5
Accept-Language: en-us,en;q=0.5
Accept-Encoding: gzip,deflate
Accept-Charset: ISO-8859-1,utf-8;q=0.7,*;q=0.7
Referer: http://someserver.com:3128/ecmweb/
Cookie: BCSI-CSAC11A855=2
Authorization: Basic c3lzYWRtaW46c3RlbDJEdmw=
X-BlueCoat-Via: C0C9763E7BC80B55
Via: 1.1 someserver:3128 (squid/2.6.STABLE13)
X-Forwarded-For: user22.someserver.com
Cache-Control: max-age=259200, max-stale
Connection: keep-alive

So I get a WARNING for a Forwarding loop (that I haven't been able to
solve) and then if fails to Authenticate the user. I've been working on
this for awhile now, and I'm stumped. What am I missing/doing wrong?
Also, funny thing, when a department complained about how slow Stellent
was, Stellent told them that most of their clients run a reverse proxy
like Squid to speed it up! Since I've used Squid for sometime, I got
the task to integrate this.

Thanks

Phil
 
 If you are not the intended recipient of this message (including attachments), or if you have received this message in error, immediately notify us and delete it and any attachments. If you no longer wish to receive e-mail from Edward Jones, please send this request to messages@edwardjones.com. You must include the e-mail address that you wish not to receive e-mail communications. For important additional information related to this e-mail, visit www.edwardjones.com/US_email_disclosure
Received on Thu Oct 04 2007 - 11:12:07 MDT