ulisse informatica wrote:
> Thanks Amos for your attention and excuse me for my imprecision.
>
> I'll give you now more infos:
>
>>> missing direct information of what the parent proxy IP and port are
> (though we can assume from the attempts it's 172.20.127.20 port 801)
> unfortunately I don't know more about it.
>
>> Missing information about whether you even restarted squid to make it take
> effect.
> yes, of course.
>
>> Missing information about what version of squid this relates to (we have
> somewhere between a few dozen and 100 releases still in active use, across
> four quite different versions).
> Squid 2.6.STABLE5
>> Missing information about how you identify the problem (what the visible
> symptoms are).
> The client's browser returns:
> ERROR
> The requested URL could not be retrieved________________________________
> While trying to retrieve the URL: http://translate.google.it/?
> The following error was encountered:
> Connection to 74.125.43.101 Failed
> The system returned: (110) Connection timed out
> The remote host or network may be down. Please try the request again.
> Your cache administrator is webmaster.
> _______________________________
> Generated Wed, 25 Nov 2009 13:51:52 GMT by squid (squid/2.6.STABLE5)
>
>
>> Missing information about the rest of the config file. It's mostly related
> in one way or another, and order-specific to varying degrees. What needs to
> be seen depends on the problem symptoms and may differ from what you think
> needs changing.
>
> here the squid.conf:
>
> http_port 3128 transparent
> cache_peer 172.20.127.20 parent 801 7 proxy-only
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> cache deny QUERY
> acl apache rep_header Server ^Apache
> broken_vary_encoding allow apache
> access_log /var/log/squid/access.log squid
> hosts_file /etc/hosts
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern . 0 20% 4320
> acl all src 0.0.0.0/0.0.0.0
Please start using:
acl all src all
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443 # https
> acl SSL_ports port 563 # snews
> acl SSL_ports port 873 # rsync
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 # https
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl Safe_ports port 631 # cups
> acl Safe_ports port 873 # rsync
> acl Safe_ports port 901 # SWAT
> acl purge method PURGE
> acl CONNECT method CONNECT
> http_access allow manager localhost
> http_access deny manager
> http_access allow purge localhost
> http_access deny purge
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> acl our_networks src 172.20.63.0/24 192.168.2.0/24
> http_access allow our_networks
> http_access allow localhost
> http_access deny all
> http_reply_access allow all
> icp_access allow all
> cache_effective_group proxy
> visible_hostname squid
> httpd_accel_no_pmtu_disc off
> coredump_dir /var/spool/squid
>
> thank you very much
> bye
> Paolo
Which makes the answer to add these:
cache_peer 172.20.127.20 parent 801 0 no-query no-netdb-exchange default
cache_peer_access 172.20.127.20 allow all
never_direct allow all
and to erase the "hierarchy_stoplist" directive.
Amos
-- Please be using Current Stable Squid 2.7.STABLE7 or 3.0.STABLE20 Current Beta Squid 3.1.0.15Received on Wed Nov 25 2009 - 23:34:40 MST
This archive was generated by hypermail 2.2.0 : Thu Nov 26 2009 - 12:00:03 MST