Hi,
I'm having trouble posting files through squid.
Files below around the Meg mark work ok.
Files bigger, seem to timeout or break midstream.
Most of the problems seem to be uploading photo's to sites like facebook and
megaupload.
I can post to these sites fine if I bypass the proxy and Nat a connection
out directly from the client.
Squid log shows
TCP_MISS/502 2511 POST http://www617.megaupload.com/upload_done.php? -
DIRECT/174.140.129.22 text/html
Tcpdump
14:53:11.841579 IP (tos 0x0, ttl 127, id 40440, offset 0, flags [DF], proto:
TCP (6), length: 40) bit00004.xx.xxx.au.1120 > proxytest.svr.afc.3128: .,
cksum 0x0ed8 (correct), 1368140:1368140(0) ack 4245 win 64484
14:53:11.841605 IP (tos 0x0, ttl 127, id 40442, offset 0, flags [DF], proto:
TCP (6), length: 40) bit00004.xx.xxx.au.1120 > proxytest.svr.afc.3128: F,
cksum 0x0ed7 (correct), 1368140:1368140(0) ack 4245 win 64484
14:53:11.841642 IP (tos 0x0, ttl 64, id 62880, offset 0, flags [DF], proto:
TCP (6), length: 40) proxytest.svr.afc.3128 > bit00004.xx.xxx.au.1120: .,
cksum 0xe0f8 (incorrect (-> 0x0abd), 4245:4245(0) ack 1368141 win 65534
FreeBSD proxytest.svr.afc 6.4-RELEASE-p5
squid-3.0.19
I've been messing around with these 3 settings to try and get it working.
chunked_request_body_max_size 0
maximum_object_size 500024 KB
request_body_max_size 0 K
Any ideas what I've done wrong?
Squid conf below.
Cheers
Steve
Squid conf
#listen port
http_port 3128
hierarchy_stoplist cgi-bin ?
cache_mem 16 MB
cache_dir ufs /data/squid/cache 5000 24 256
cache_access_log /data/squid/logs/squid-access.log
cache_log /data/squid/logs/squid-cache.log
cache_store_log /data/squid/logs/squid-store.log
forwarded_for transparent
pid_filename /data/squid/logs/squid.pid
auth_param ntlm program /usr/local/bin/ntlm_auth
--helper-protocol=squid-2.5-ntlmssp
auth_param ntlm children 20
auth_param ntlm keep_alive on
auth_param basic program /usr/local/bin/ntlm_auth
--helper-protocol=squid-2.5-basic
auth_param basic children 20
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
acl QUERY urlpath_regex cgi-bin \?
acl passwordexception src "/usr/local/etc/squid/PasswordByPass"
acl safesites url_regex -i "/usr/local/etc/squid/SafeSites"
acl Authenticated proxy_auth REQUIRED
no_cache deny QUERY
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow passwordexception
http_access allow safesites
http_access allow Authenticated
http_access deny !Authenticated
http_access deny all
http_reply_access allow all
acl FTP proto FTP
always_direct allow FTP
chunked_request_body_max_size 0
maximum_object_size 500024 KB
request_body_max_size 0 K
cache_mgr admin_at_xx.xxx.au
coredump_dir /data/squid/cache
debug_options ALL,1
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
Confidentiality: This e-mail is from the Adelaide Festival Centre.
The contents are intended only for the named recipient of this e-mail.
If the reader of this e-mail is not the intended recipient you are hereby
notified that any use, reproduction, disclosure or distribution of the
information contained in the e-mail is prohibited. If you have received
this e-mail in error, please reply to us immediately and delete the document
from your system. Any personal views expressed in this communication are those of
the individual sender unless the sender expressly states them to be the views
of the Adelaide Festival Centre. No liability will be accepted for any loss
or damage whatsoever (whether direct or consequential) resulting from the
use of the email or any attached files.
Received on Mon Oct 19 2009 - 03:14:26 MDT
This archive was generated by hypermail 2.2.0 : Mon Oct 19 2009 - 12:00:04 MDT