jason bronson wrote:
> I've got an issue where I have multiple ports one webserver is on port
> 80 and one is on 21080
> anyhow 21080 works fine
> port 80 from the outside world doesnt work at all i get a blank
> index.php file returned from the browser to download?
>
> So i run tcpdump on port 80 and i see connections coming in but squid
> is not writing anything to the logs even with full debugging?
>
> I run wget from my squid server to see if it can talk with the
> webserver and it returns the 21080 webserver page???
>
> what bothers me is I'd think at this point the outside world would at
> least see the 21080 server not a blank index file returned? and I'd
> think something would write in squids logs?
>
> Please if anyone knows what im doing shoot me a hint !
>
> Im running
> /usr/local/squid/sbin/squid -v
> Squid Cache: Version 2.7.STABLE3
> configure options:
>
>
> heres my configuration
>
> acl all src all
> acl manager proto cache_object
> acl localhost src 127.0.0.1/32
> acl to_localhost dst 127.0.0.0/8
> acl localnet src 10.108.0.0/24 # RFC1918 possible internal network
> acl SSL_ports port 443
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 # https
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl Safe_ports port 3128
> acl Safe_ports port 21080
> acl CONNECT method CONNECT
> http_access allow all
Absent any limits on the peers or direct access. This proxy is open for
abuse by anyone on the web.
> http_access allow manager localhost
> http_access deny manager
> http_access allow localnet
> http_access deny all
> icp_access allow localnet
> icp_access deny all
> http_port 80 accel defaultsite=64.132.59.237
> http_port 21080 accel defaultsite=64.132.59.237
defautsite= does not mean what you think.
It is the full domain name to be used of client omits the required Host:
header.
Unless you expect clients to access your website by
http://64.132.59.237/index.php that setting is incorrect.
DNS should be pointing your domain name at Squid.
> hierarchy_stoplist cgi-bin ?
> access_log /usr/local/squidserver/var/logs/access.log squid
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
> negative_ttl 0 seconds
> acl apache rep_header Server ^Apache
> broken_vary_encoding allow apache
> visible_hostname 127.0.0.1
> coredump_dir /usr/local/squidserver/var/cache
> cache_peer 10.108.50.39 parent 21080 0 no-query originserver name=mybox
> cache_peer 10.108.30.82 parent 80 0 no-query originserver name=webapps
> cache_peer_access webapps allow all
> cache_peer_access mybox allow all
> cache_peer_access webapps deny all
> cache_peer_access mybox deny all
These last two cache_peer_access lines are irrelevant given the ones above.
Given the order of peer defines, both having "allow all":
* 10.108.50.39 will see nearly all requests arriving on its port 21080.
* 10.108.30.82 will see few if any.
* Squid will have requests arriving at both ports.
Amos
-- Please use Squid 2.7.STABLE4 or 3.0.STABLE9Received on Sat Sep 27 2008 - 07:06:02 MDT
This archive was generated by hypermail 2.2.0 : Sat Sep 27 2008 - 12:00:03 MDT