I'm having some trouble with squid.
I wish i could config something like this:
Client(192.168.0.60)---Proxy(Squid+GreasySpoon)(2interface:192.168.0.50
and 196.254.19.30)---Server(Apache and Tomcat)(196.254.19.13).
I've read that i should config squid like reverse proxy, but i'm
having some trouble. I've config squid to take request from client to
the port 8080, send the message to the server tomcat 8080,modify the
response with greasySpoon,and back to the client. The request is a
http-soap-xml message to a service in axis. I'want to know if i'm
doing something wrong in the config of squid, o maybe greasyspoon
cannot edit message from 8080 port, or maybe i should config something
in tomcat? I don't know if you can understand my problem and i'm sorry
for my english. I post here my config of squid:
--------------------------------------------------------------
acl manager proto cache_object
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
acl localnet2 src 196.254.0.0/16 # RFC1918 possible internal network
acl localnet1 src 192.168.0.0/16 # RFC1918 possible internal network
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 8080 # http-apache
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
http_access allow localnet1
http_access allow localnet2
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
# Squid normally listens to port 3128
http_port 3128
# We recommend you to use at least the following line.
hierarchy_stoplist cgi-bin ?
# Add any of your own refresh_pattern entries above these.
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
icap_enable on
logformat icap_squid %ts.%03tu %6icap::tr %>a %icap::to/%03icap::Hs
%icap::<st %icap::rm %icap::ru -/%icap::<A -
icap_log /var/log/squid3/icap.log icap_squid
icap_preview_enable on
icap_service service_req reqmod_precache bypass=0 icap://127.0.0.1:1344/reqmod
adaptation_access service_req allow all
icap_service service_resp respmod_precache bypass=0
icap://127.0.0.1:1344/respmod
adaptation_access service_resp allow all
http_port 80 accel defaultsite=196.254.19.13
cache_peer 196.254.19.13 parent 80 0 no-query originserver name=myAccel
acl our_sites dst 196.254.19.13
http_access allow our_sites
cache_peer_access myAccel allow our_sites
http_access allow localnet2
http_access allow localnet1
cache_peer_access myAccel allow localnet1
cache_peer_access myAccel allow localnet2
cache deny all
------------------------------------------
I can see the home page of tomcat "it works" but i can't open /axis2.
Received on Tue Apr 05 2011 - 21:27:55 MDT
This archive was generated by hypermail 2.2.0 : Wed Apr 06 2011 - 12:00:03 MDT