RE: [squid-users] Squid failover between DIRECT connect and PARENT PROXY

From: Sébastien WENSKE <sebastien_at_wenske.fr>
Date: Mon, 12 Jan 2009 12:34:33 +0100

Hi Chris,

Many thanks for your reply,
I have try to set nonhierarchical_direct to off, but this have no effect.
I have comment "hierarchy_stoplist cgi-bin ?", this have solved google form, but google use GET method.
My problem whit POST method forms persist...

Best Regards,

Sébastien.
 

-----Message d'origine-----
De : crobertson_at_gci.net [mailto:crobertson_at_gci.net]
Envoyé : jeudi 8 janvier 2009 21:45
À : squid-users_at_squid-cache.org
Objet : Re: [squid-users] Squid failover between DIRECT connect and PARENT PROXY

Sébastien WENSKE wrote:
> Hi all,
>
> I've set a squid server to use direct connections by default and to use a parent proxy if direct is unavailable:
> -----------------------------------------------------------------------------------------------------------------
> http_port 8080
> acl manager proto cache_object
> acl localhost src 127.0.0.1
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443
> acl Safe_ports port 80 # http
> acl Safe_ports port 443 # https
> acl CONNECT method CONNECT
>
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access deny all
>
> icp_access deny all
> htcp_access deny all
>
> cache_peer 10.151.8.10 parent 3128 0 name=prod default
>
> prefer_direct on
> cache_peer_access prod allow all
>
> hierarchy_stoplist cgi-bin ?
> cache_mem 4000 MB
> maximum_object_size_in_memory 5000 KB
> cache_dir ufs /var/cache/squid 100000 64 512
> maximum_object_size 40960 KB
> access_log /var/log/squid/access.log squid
> cache_log /var/log/squid/cache.log
> cache_store_log /var/log/squid/store.log
> pid_filename /var/log/squid/squid.pid
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern (cgi-bin|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
> icp_port 0
> coredump_dir /var/cache
> --------------------------------------------------------------------------------------------------
>
>
> When I simulate an issue (DIRECT/ unavailable), this will work for GET, but POST try always DIRECT/
> -------------------------------------------------------------------------------------------------------
>
> 1231334419.908 292 127.0.0.1 TCP_MISS/200 2383 GET http://playlist.yacast.net/ - DEFAULT_PARENT/10.151.8.10 text/html
> 1231334427.526 0 127.0.0.1 TCP_MISS/503 2373 POST http://playlist.yacast.net/ - DIRECT/playlist.yacast.net text/html
> 1231334562.494 0 127.0.0.1 TCP_MISS/503 2373 POST http://playlist.yacast.net/ - DIRECT/playlist.yacast.net text/html
> 1231335100.244 311 127.0.0.1 TCP_MISS/200 7401 GET http://www.google.fr/ - DEFAULT_PARENT/10.151.8.10 text/html
> 1231335100.599 318 127.0.0.1 TCP_MISS/204 492 GET http://clients1.google.com/generate_204 - DEFAULT_PARENT/10.151.8.10 text/html
> 1231335158.319 311 127.0.0.1 TCP_MISS/200 2383 GET http://playlist.yacast.net/ - DEFAULT_PARENT/10.151.8.10 text/html
> 1231335159.585 0 127.0.0.1 TCP_MISS/503 2373 POST http://playlist.yacast.net/ - DIRECT/playlist.yacast.net text/html
> -------------------------------------------------------------------------------------------------------
>
> Any ideas ???
>

Change nonhierarchical_direct from the default of "on" to "off".

http://www.squid-cache.org/Doc/config/nonhierarchical_direct/

> Best Regards,
>
> Sébastien WENSKE
>

Chris
Received on Mon Jan 12 2009 - 11:34:47 MST

This archive was generated by hypermail 2.2.0 : Mon Jan 12 2009 - 12:00:02 MST