bharathvn wrote:
> Hi,
>
> I am trying to implement 2 squid server with sibling and parent as mentioned
> below.
>
> Scenario
>
> INTERNET
> |
> |
> USER(a.a.a.a) ----->Squid 1(Sibling)(a.a.a.a) ----> Squid
> 2(Parent)(b.b.b)--> INTERNET
sibling relationship means this:
Internet
|
-> parent<-
| |
child<--->child
where child's are sibling to each other.
I think you want to kill the cache_peer entry in parent squid.
>
> Please find my squid configs
>
> Sibling Server
>
> http_port 8080
> cache_peer squid1 parent 8080 0 no-query default originserver
> prefer_direct on
> #never_direct allow all
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> cache deny QUERY
> acl apache rep_header Server ^Apache
> broken_vary_encoding allow apache
> cache_mem 100 MB
> cache_swap_low 90
> cache_swap_high 95
> access_log /var/log/squid/access.log squid
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 # https
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> acl Eng src a.a.a.a
> acl US src b.b.b.b
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access allow Eng
> http_access allow US
> http_access deny all
> http_reply_access allow all
> icp_access allow all
> cache_effective_user squid
> cache_effective_group squid
> icp_port 0
> always_direct deny all
> prefer_direct on
> coredump_dir /var/spool/squid
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern (cgi-bin|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
> #https_port 8080
>
> Parent Config:
>
> http_port 8080
> cache_peer squid1 sibling 8080 0 default originserver
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> cache deny QUERY
> acl apache rep_header Server ^Apache
> broken_vary_encoding allow apache
> cache_mem 100 MB
> cache_swap_low 90
> cache_swap_high 95
> access_log /var/log/squid/access.log squid
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 # https
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> acl US src b.b.b.b
> acl eng src a.a.a.a
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access allow eng
> http_access allow US
> http_access deny all
> http_reply_access allow all
> icp_access allow all
> cache_effective_user squid
> cache_effective_group squid
> icp_port 0
> #always_direct deny all
> #prefer_direct on
> coredump_dir /var/spool/squid
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern (cgi-bin|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
> #https_port 8080
>
> When i browse from a.a.a.a subnet i get the following error after disabling
> local internet
>
> The following error was encountered:
>
> Invalid Request
> Some aspect of the HTTP Request is invalid. Possible problems:
>
> Missing or unknown request method
> Missing URL
> Missing HTTP Identifier (HTTP/1.0)
> Request is too large
> Content-Length missing for POST or PUT requests
> Illegal character in hostname; underscores are not allowed
> Your cache administrator is root.
>
> --------------------------------------------------------------------------------
> Generated Tue, 31 Mar 2009 19:51:19 GMT by squid2 (squid/2.6.STABLE6)
>
> and also i see error on squid 2(parent) in access.log as TCP_DENIED/400 1499
> GET error:invalid-request - NONE/- text/html
>
> Please help me and thanks in advance.
>
>
Amos
-- Please be using Current Stable Squid 2.7.STABLE6 or 3.0.STABLE13 Current Beta Squid 3.1.0.6Received on Thu Apr 02 2009 - 10:17:35 MDT
This archive was generated by hypermail 2.2.0 : Thu Apr 02 2009 - 12:00:02 MDT