Re: [squid-users] FTP connection hang at second try

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Thu, 08 Jul 2010 22:25:59 +1200

新宸 惠 wrote:
> Hi:
> after I configured MASQUERADE
> there nothing changed.
>
> that's the promble.
>
> I set up a squid-3.1.4 at a Linux named A, and listen to port 8337.
>
> then I use FlashFxp connect to a FTP server with HTTP Proxy(A:8337).
>
> first time , It works well,
>
> if I disconnect the connection and reconnect immediately, the FlashFxp hang after
> ouput puting "connected to **, welcome ...."....
>
> any help will be appreciated...
>

You can add " debug_options 9,2 " to squid.conf to get the FTP
transaction to appear in cache.log.

Or to watch the much deeper debug actions use 9,5.

Amos

>
> 惠新宸 laruenceSenior PHP Engineerlaruence at yahoo.com.cnhttp://www.laruence.com
>
> --- 10年7月8日,周四, Malik Madni <m4madnimalik_at_hotmail.com> 写道:
>
> 发件人: Malik Madni <m4madnimalik_at_hotmail.com>
> 主题: RE: [squid-users] FTP connection hang at second try
> 收件人: laruence_at_yahoo.com.cn, squid-users_at_squid-cache.org
> 日期: 2010年7月8日,周四,下午1:08
>
>
>
>
>
>
> you should configure masqurading
>
>
>
> iptables -t nat -A POSTROUTING -i eth0 -j MASQUERADE
>
>
>
> assuming eth0 with live ip address or interface that is connected with Internet.
>
>
>
> regards,
>
> Madni Malik.
>
>
>
> Date: Wed, 7 Jul 2010 22:44:38 +0800
> From: laruence_at_yahoo.com.cn
> Subject: RE: [squid-users] FTP connection hang at second try
> To: squid-users_at_squid-cache.org; m4madnimalik_at_hotmail.com
>
>
>
>
>
> No...
>
> 惠新宸 laruence
> Senior PHP Engineer
> laruence at yahoo.com.cn
> http://www.laruence.com
>
> --- 10年7月7日,周三, Malik Madni <m4madnimalik_at_hotmail.com> 写道:
>
>
> 发件人: Malik Madni <m4madnimalik_at_hotmail.com>
> 主题: RE: [squid-users] FTP connection hang at second try
> 收件人: laruence_at_yahoo.com.cn, squid-users_at_squid-cache.org
> 日期: 2010年7月7日,周三,下午7:05
>
>
>
>
> #yiv1059887742 .ExternalClass #ecxyiv1749461824 .ecxhmmessage P
> {padding:0px;}
> #yiv1059887742 .ExternalClass #ecxyiv1749461824 .ecxhmmessage
> {font-size:10pt;font-family:Verdana;}
>
> have you configured masquerading???
>
>
>> Date: Wed, 7 Jul 2010 19:01:52 +0800
>> From: laruence_at_yahoo.com.cn
>> To: squid-users_at_squid-cache.org
>> Subject: [squid-users] FTP connection hang at second try
>>
>> Hi:
>> I set up a ftp proxy with squid-3.1.4
>> but there is a promble I can't figure out why .
>>
>> when I first connect to a ftp server , it works fine , but if I disconnected and reconnect immediately , it hang up , then timeout....
>>
>> sorry for my poor english , anyone knows why?
>>
>>
>> my squid.conf:
>>
>> acl all src all
>> acl manager proto cache_object
>> acl FTP proto FTP
>> acl localhost src 127.0.0.1/32
>> acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
>> acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
>> acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
>> acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
>> acl SSL_ports port 443
>> acl Safe_ports port 80 # http
>> acl Safe_ports port 21 # ftp
>> acl Safe_ports port 443 # https
>> acl Safe_ports port 70 # gopher
>> acl Safe_ports port 210 # wais
>> acl Safe_ports port 1025-65535 # unregistered ports
>> acl Safe_ports port 280 # http-mgmt
>> acl Safe_ports port 488 # gss-http
>> acl Safe_ports port 591 # filemaker
>> acl Safe_ports port 777 # multiling http
>> acl CONNECT method CONNECT
>> http_access allow manager localhost
>> http_access deny manager
>> http_access deny !Safe_ports
>> http_access allow FTP
>> http_access allow localnet
>> http_access deny all
>> icp_access allow all
>> http_port 8337
>> hierarchy_stoplist cgi-bin ?
>> access_log /home/huixc/local/squid/var/logs/access.log squid
>> debug_options ALL, 1
>> ftp_passive on
>> ftp_epsv_all on
>> refresh_pattern ^ftp: 0 0% 0
>> refresh_pattern ^gopher: 1440 0% 1440
>> refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
>> refresh_pattern . 0 20% 4320
>> forward_timeout 4 minutes
>> connect_timeout 1 minute
>> peer_connect_timeout 30 seconds
>> read_timeout 5 minutes
>> request_timeout 1 minute
>> persistent_request_timeout 1 minute
>> client_lifetime 1 day
>> half_closed_clients on
>> pconn_timeout 10 seconds
>> ident_timeout 10 seconds
>> shutdown_lifetime 30 seconds
>> forwarded_for on
>> coredump_dir /home/huixc/local/squid/var/cache
>> useragent_log /home/huixc/local/squid/var/logs/useragent.log
>> cache_mem 0
>> no_cache deny FTP
>> hosts_file /etc/hosts
>>

-- 
Please be using
   Current Stable Squid 2.7.STABLE9 or 3.1.5
Received on Thu Jul 08 2010 - 10:26:14 MDT

This archive was generated by hypermail 2.2.0 : Thu Jul 08 2010 - 12:00:04 MDT