NetSnake wrote:
> hi,all
> I want to use external_acl_type to distribute my user to different
> server, these user need NOT authentication.
> Squid start my application, but when I access to a special host, no
> data send to my program from Squid.
> my program is a very simple script, and when I use an existing
> application such as ip_user_check, still no actions.
> My squid configuration is:
> external_acl_type checkip concurrency=0 ttl=0 children=1 %SRC
> /usr/local/squid/libexec/
> checkip.pl
> http_port 80 accel vhost vport
> cache_peer www.myhost.com parent 80 0 no-query no-digest originserver name=host1
> acl ipaddress external checkip
> cache_peer_access www deny ipaddress
>
There is no cache_peer defined as "www". There is one defined as
"www.myhost.com". Perhaps that's a typo in the obfuscation of your
squid.conf. Are you sure the checkip.pl script is runnable by the
squid_effective_user? Does /tmp/squid.log exists? If so, is it
writeable by the squid_effective_user? Are you running SELinux or AppArmor?
> ...
>
> My program is very simple:
> cat checkip.pl
> #!/usr/bin/perl
> $| = 1;
> open(LOG, ">/tmp/squid.log");
> print LOG "RUNNING\n";
> close(LOG);
> while(defined($line = <STDIN>)){
> print "OK\n";
> open(LOG, ">>/tmp/squid.log");
> print LOG "Got: $line\n";
> close(LOG);
> }
>
>
> So, I think that, is external_acl_type must under authentication mode?
>
> thanks in advance.
>
Chris
Received on Tue Jan 13 2009 - 22:04:45 MST
This archive was generated by hypermail 2.2.0 : Wed Jan 14 2009 - 12:00:03 MST