Re: [squid-users] Posting Files

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Mon, 19 Oct 2009 17:00:47 +1300

Steve Allen wrote:
> Hi,
>
> I'm having trouble posting files through squid.
>
> Files below around the Meg mark work ok.
>
> Files bigger, seem to timeout or break midstream.
>
> Most of the problems seem to be uploading photo's to sites like facebook and
> megaupload.
>
> I can post to these sites fine if I bypass the proxy and Nat a connection
> out directly from the client.
>
> Squid log shows
>
> TCP_MISS/502 2511 POST http://www617.megaupload.com/upload_done.php? -
> DIRECT/174.140.129.22 text/html
>
> Tcpdump
>
> 14:53:11.841579 IP (tos 0x0, ttl 127, id 40440, offset 0, flags [DF], proto:
> TCP (6), length: 40) bit00004.xx.xxx.au.1120 > proxytest.svr.afc.3128: .,
> cksum 0x0ed8 (correct), 1368140:1368140(0) ack 4245 win 64484
> 14:53:11.841605 IP (tos 0x0, ttl 127, id 40442, offset 0, flags [DF], proto:
> TCP (6), length: 40) bit00004.xx.xxx.au.1120 > proxytest.svr.afc.3128: F,
> cksum 0x0ed7 (correct), 1368140:1368140(0) ack 4245 win 64484
> 14:53:11.841642 IP (tos 0x0, ttl 64, id 62880, offset 0, flags [DF], proto:
> TCP (6), length: 40) proxytest.svr.afc.3128 > bit00004.xx.xxx.au.1120: .,
> cksum 0xe0f8 (incorrect (-> 0x0abd), 4245:4245(0) ack 1368141 win 65534
>
> FreeBSD proxytest.svr.afc 6.4-RELEASE-p5
> squid-3.0.19
>
> I've been messing around with these 3 settings to try and get it working.
>
> chunked_request_body_max_size 0
> maximum_object_size 500024 KB
> request_body_max_size 0 K
>
> Any ideas what I've done wrong?
>
> Squid conf below.
>
> Cheers
> Steve
>
> Squid conf
> #listen port
> http_port 3128
>
> hierarchy_stoplist cgi-bin ?
>
> cache_mem 16 MB
> cache_dir ufs /data/squid/cache 5000 24 256
> cache_access_log /data/squid/logs/squid-access.log
> cache_log /data/squid/logs/squid-cache.log
> cache_store_log /data/squid/logs/squid-store.log
>
> forwarded_for transparent
>
> pid_filename /data/squid/logs/squid.pid
>
> auth_param ntlm program /usr/local/bin/ntlm_auth
> --helper-protocol=squid-2.5-ntlmssp
> auth_param ntlm children 20
> auth_param ntlm keep_alive on
> auth_param basic program /usr/local/bin/ntlm_auth
> --helper-protocol=squid-2.5-basic
> auth_param basic children 20
> auth_param basic realm Squid proxy-caching web server
> auth_param basic credentialsttl 2 hours
>
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443 563
> acl Safe_ports port 80
> acl Safe_ports port 21
> acl Safe_ports port 443 563
> acl Safe_ports port 70
> acl Safe_ports port 210
> acl Safe_ports port 1025-65535
> acl Safe_ports port 280
> acl Safe_ports port 488
> acl Safe_ports port 591
> acl Safe_ports port 777
> acl CONNECT method CONNECT
> acl QUERY urlpath_regex cgi-bin \?
> acl passwordexception src "/usr/local/etc/squid/PasswordByPass"
> acl safesites url_regex -i "/usr/local/etc/squid/SafeSites"
> acl Authenticated proxy_auth REQUIRED
>
> no_cache deny QUERY
>
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access allow passwordexception
> http_access allow safesites
> http_access allow Authenticated
> http_access deny !Authenticated
> http_access deny all
>
> http_reply_access allow all
>
> acl FTP proto FTP
> always_direct allow FTP
>
> chunked_request_body_max_size 0
> maximum_object_size 500024 KB
> request_body_max_size 0 K
> cache_mgr admin_at_xx.xxx.au
>
> coredump_dir /data/squid/cache
> debug_options ALL,1
>

If its a timeout on sow connection you may also need:
http://www.squid-cache.org/Doc/config/request_timeout/

chunked_request_body_max_size being a buffer size must be >0. Only
relevant if your browser is sending chunked requests to Squid.

Amos

-- 
Please be using
   Current Stable Squid 2.7.STABLE7 or 3.0.STABLE19
   Current Beta Squid 3.1.0.14
Received on Mon Oct 19 2009 - 04:00:55 MDT

This archive was generated by hypermail 2.2.0 : Mon Oct 19 2009 - 12:00:04 MDT