[squid-users] squid 2.7 on windows 2008 and ntlm authentication

From: Bob_P <bpowell_at_redemtech.com>
Date: Fri, 30 Jul 2010 10:17:47 -0700 (PDT)

I have installed squid 2.7 on windows 2008 r2 server. any time I try to
access an external site I get a credentials log in box and I'm unable to get
past it. Eventually it errors out with "Cache Access Denied. Sorry, you are
not currently allowed to request." Below is my squid.conf. If anyone can
tell me what I'm doing wrong I would greatly appreciate it.

Thanks
Bob

# WELCOME TO SQUID 2.7.STABLE8
# ----------------------------

#Recommended minimum configuration:
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32

auth_param ntlm program c:/squid/libexec/mswin_ntlm_auth.exe
auth_param ntlm children 5

acl localnet proxy_auth REQUIRED src 10.0.0.0/8

http_access allow localnet

acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager

# Deny requests to unknown ports
http_access deny !Safe_ports

# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
http_access allow localnet

#http_access deny all

icp_access allow localnet
icp_access deny all

http_port 3128

refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320

acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast

acl apache rep_header Server ^Apache
broken_vary_encoding allow apache

-- 
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/squid-2-7-on-windows-2008-and-ntlm-authentication-tp2308249p2308249.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Received on Fri Jul 30 2010 - 17:17:48 MDT

This archive was generated by hypermail 2.2.0 : Sat Jul 31 2010 - 12:00:05 MDT