Re: [squid-users] squid 2.7 with windowsupdate :(

Hm, squid shouldn't eb crashing. stuff your config file and the crash output
into a bugzilla ticket so it doesn't get lost.

Adrian

On Sun, Jun 08, 2008, pokeman wrote:
>
> hi Adrian
> i am glad happy with this you make posible to cache CDN objects so i make
> changes in my conf but the squid was crash here is my conf i think i
> forgotten some tag in my squid conf .and please add changes in below
> store_url_rewrite script for windowsupdate caches and highlight what i am
> getting wrong
>
> squid.conf
> ###############3
>
> http_port 3128 transparent
> range_offset_limit 0 KB
> cache_mem 512 MB
> pipeline_prefetch on
> shutdown_lifetime 2 seconds
> coredump_dir /var/log/squid
> ignore_unknown_nameservers on
>
> acl all src 0.0.0.0/0.0.0.0
> acl ourusers src 192.168.0.0/24
> hierarchy_stoplist cgi-bin ?
>
> storeurl_rewrite_program /extra/store_url_rewrite
>
> maximum_object_size 20 MB
> minimum_object_size 0 KB
> maximum_object_size_in_memory 64 KB
> cache_replacement_policy heap LFUDA
> memory_replacement_policy heap GDSF
>
> cache_dir aufs /cache1 70000 16 256
> cache_dir aufs /cache2 70000 16 256
> cache_dir aufs /cache3 70000 16 256
> cache_dir aufs /cache4 70000 16 256
>
> cache_access_log /var/log/squid/access.log
> cache_log /var/log/squid/cache.log
> cache_store_log none
> dns_nameservers 127.0.0.1
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
>
> refresh_pattern cgi-bin 0 0% 0
> refresh_pattern \? 0 0% 0
> refresh_pattern . 0 20% 4320
>
> negative_ttl 1 minutes
> positive_dns_ttl 24 hours
> negative_dns_ttl 1 minutes
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl store_rewrite_list dstdomain mt.google.com mt0.google.com mt1.google.com
> mt2.google.com
> acl store_rewrite_list dstdomain mt3.google.com
> acl store_rewrite_list dstdomain kh.google.com kh0.google.com kh1.google.com
> kh2.google.com
> acl store_rewrite_list dstdomain kh3.google.com
> acl store_rewrite_list dstdomain kh.google.com.au kh0.google.com.au
> kh1.google.com.au
> acl store_rewrite_list dstdomain kh2.google.com.au kh3.google.com.au
>
> # This needs to be narrowed down quite a bit!
> acl store_rewrite_list dstdomain .youtube.com
> acl store_rewrite_list dstdomain .windowsupdate.com
>
>
>
> acl windowsupdate dstdomain windowsupdate.microsoft.com
> acl windowsupdate dstdomain .update.microsoft.com
> acl windowsupdate dstdomain download.windowsupdate.com
> acl windowsupdate dstdomain redir.metaservices.microsoft.com
> acl windowsupdate dstdomain images.metaservices.microsoft.com
> acl windowsupdate dstdomain c.microsoft.com
> acl windowsupdate dstdomain www.download.windowsupdate.com
> acl windowsupdate dstdomain wustat.windows.com
> acl windowsupdate dstdomain crl.microsoft.com
> acl CONNECT method CONNECT
> acl wuCONNECT dstdomain www.update.microsoft.com
>
> acl SSL_ports port 443 563
> acl Safe_ports port 1195 1107 1174 1212 1000
> acl Safe_ports port 80 # http
> acl Safe_ports port 82 # http
> acl Safe_ports port 81 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
>
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow ourusers
> http_access allow CONNECT wuCONNECT ourusers
> http_access allow windowsupdate ourusers
> http_access deny all
> http_reply_access allow all
> cache allow all
>
> storeurl_access allow store_rewrite_list
> storeurl_access deny all
>
> icp_access allow ourusers
> icp_access deny all
> cache_mgr info@
> visible_hostname CE-
> dns_testnames localhost
> reload_into_ims on
> quick_abort_min 0 KB
> quick_abort_max 0 KB
> log_fqdn off
> half_closed_clients off
> client_db off
> ipcache_size 16384
> ipcache_low 90
> ipcache_high 95
> fqdncache_size 8129
> log_icp_queries off
> strip_query_terms off
> store_dir_select_algorithm round-robin
> client_persistent_connections off
> server_persistent_connections on
> persistent_request_timeout 1 minute
> client_lifetime 60 minutes
> pconn_timeout 10 seconds
>
> tcp_outgoing_tos 0x30 ourusers
> zph_mode tos
> zph_local 0x30
> zph_parent 0
>
> ###
>
> [root_at_localhost ~]# cat /extra/store_url_rewrite
> $| = 1;
>
> while (<>) {
> chomp;
> # print STDERR $_ . "\n";
> if (m/kh(.*?)\.google\.com(.*?)\/(.*?) /) {
> print "http://keyhole-srv.google.com" . $2 .
> ".SQUIDINTERNAL/" . $3 . "\n";
> # print STDERR "KEYHOLE\n";
> } elsif (m/mt(.*?)\.google\.com(.*?)\/(.*?) /) {
> print "http://map-srv.google.com" . $2 . ".SQUIDINTERNAL/" .
> $3 . "\n";
> # print STDERR "MAPSRV\n";
> } elsif
> (m/^http:\/\/([A-Za-z]*?)-(.*?)\.(.*)\.youtube\.com\/get_video\?video_id=(.*)
> /) {
> #
> http://lax-v290.lax.youtube.com/get_video?video_id=jqx1ZmzX0k0
> print
> "http://video-srv.youtube.com.SQUIDINTERNAL/get_video?video_id=" . $4 .
> "\n";
> } else {
> print $_ . "\n";
> }
> }
>
>
> --
> View this message in context: http://www.nabble.com/squid-2.7-with-windowsupdate-%3A%28-tp17716285p17716285.html
> Sent from the Squid - Users mailing list archive at Nabble.com.

-- 
- Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid Support -
- $25/pm entry-level VPSes w/ capped bandwidth charges available in WA -