RE: [squid-users] https analyze, squid rpc proxy to rpc proxy ii6 exchange2007 with ntlm

Hello,

In my cache.log I have (windows7 client) :

--------------------------
2012/05/11 13:37:42.493| HTTP Client local=ip_squid:443
remote=ip_wan_client:60465 FD 11 flags=1
2012/05/11 13:37:42.493| HTTP Client REQUEST:
---------
RPC_OUT_DATA /rpc/rpcproxy.dll?fqdn_exchange_server:6002 HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: SessionId=d3deb408-a810-4e85-b3df-1e50e0fe11f7
Accept: application/rpc
Cookie: OutlookSession="{B14448C4-3BB4-454E-A09F-CA4705810688}
Outlook=14.0.6117.5001 OS=6.1.7601"
User-Agent: MSRPC
Content-Length: 0
Host: mail.xx.fr
Authorization: NTLM TlRMTVNTUAABAAAAB4IIogAAAAAAAAAAAAAAAAAAAAAGAbEdAAAADw==
--------------------------

The difference between xp client is Pragma header, no-cache value for xp,
and Cookie header doesn’t exist in xp.

So I want to "disable" Cookie header and replace value for pragma, in my
squid.conf I've added this lines :

request_header_access Cookie deny all
request_header_replace Pragma no-cache

But that doesn't work, header cookie is still there, and pragma isn’t
changed.

I've configured squid with --enable-http-violations

How I can do that ?

Thx

Clem

-----Message d'origine-----
De : Guido Serassio [mailto:guido.serassio_at_acmeconsulting.it]
Envoyé : vendredi 6 avril 2012 16:20
À : Clem; squid-users_at_squid-cache.org
Objet : R: [squid-users] https analyze, squid rpc proxy to rpc proxy ii6
exchange2007 with ntlm

Hi Clem,

As I know there is something different in the WinHttp API used by Outlook,
but I cannot be able to find any detail about ...

Regards

Guido Serassio
Acme Consulting S.r.l.
Microsoft Silver Certified Partner
VMware Professional Partner
Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
Tel. : +39.011.9530135 Fax. : +39.011.9781115
Email: guido.serassio_at_acmeconsulting.it
WWW: http://www.acmeconsulting.it

> -----Messaggio originale-----
> Da: Clem [mailto:clemfree_at_free.fr]
> Inviato: giovedì 5 aprile 2012 9.30
> A: Guido Serassio; squid-users_at_squid-cache.org
> Oggetto: RE: [squid-users] https analyze, squid rpc proxy to rpc proxy
> ii6
> exchange2007 with ntlm
>
> Hi Guido,
>
> Thanks for this link but I've already read it, and already set that
> parameter (EXPR), and no change, I've made more tests yesterday :
>
> ..:::: WinXP -> squid -> exchange 2007
>
> With lan manager parameters (secpol.msc) AND with msstd option checked
> in outlook http proxy parameters :
>
> . LM et NTLM only : working
> . NTLM only : working
> . NTLMv2 only : working
>
> ..:::: Windows7 -> squid -> exchange 2007
>
> With lan manager parameters (secpol.msc) AND with msstd option checked
> in outlook http proxy parameters :
>
> . LM et NTLM only : NOT working
> . NTLM only : NOT working
> . NTLMv2 only : NOT working
>
> With lan manager parameters (secpol.msc) AND with msstd option NOT
> checked in outlook http proxy parameters :
>
> . LM et NTLM only : working
> . NTLM only : NOT working
> . NTLMv2 only : NOT working
>
> Without squid, so outlook connected directly to exchange via outlook
> anywhere, that works with any parameters, for XP and 7.
>
> I'm so confused ... Why with XP that works with any parameters and
> Windows7
> only with 2 parameters on ?
> What is the thing that do the difference between these two OS ?
>
> Regards,
>
> Clem
>
>
> -----Message d'origine-----
> De : Guido Serassio [mailto:guido.serassio_at_acmeconsulting.it]
> Envoyé : mercredi 4 avril 2012 19:32
> À : Clem; squid-users_at_squid-cache.org
> Objet : R: [squid-users] https analyze, squid rpc proxy to rpc proxy
> ii6
> exchange2007 with ntlm
>
> Hi Clem,
>
> Try reading this:
> http://blogs.technet.com/b/exchange/archive/2008/09/29/3406352.aspx
>
> Regards
>
> Guido Serassio
> Acme Consulting S.r.l.
> Microsoft Silver Certified Partner
> VMware Professional Partner
> Via Lucia Savarino, 1 10098 - Rivoli (TO) - ITALY
> Tel. : +39.011.9530135 Fax. : +39.011.9781115
> Email: guido.serassio_at_acmeconsulting.it
> WWW: http://www.acmeconsulting.it
>
>
> > -----Messaggio originale-----
> > Da: Clem [mailto:clemfree_at_free.fr]
> > Inviato: lunedì 2 aprile 2012 15.34
> > A: squid-users_at_squid-cache.org
> > Oggetto: RE: [squid-users] https analyze, squid rpc proxy to rpc
> > proxy
> > ii6
> > exchange2007 with ntlm
> >
> > Re,
> >
> > I've found the option that generate issue only with windows7, in
> > outlook proxy http settings window, we have this checked
> > automatically
> > : connect only to server proxy certificate that use this principal
> (common) name :
> > Msstd : externalfqdn
> >
> > When I uncheck this option, my outlook (2007/2010) can connect
> > trough squid with ntlm in my Exchange via outlook anywhere, If it's
> > checked I've got a : server is unavailable.
> > In windows XP, checked or not, that works.
> >
> > By the way, after connection to exchange succeed in w7, that option
> > rechecks itself automatically ...
> >
> > The point is, why ? Maybe windows7 is more paranoid with certificate ??
> >
> > Have you an idea ?
> >
> > Regards
> >
> > Clem
> >
> > -----Message d'origine-----
> > De : Amos Jeffries [mailto:squid3_at_treenet.co.nz] Envoyé : mardi 27
> > mars 2012 23:27 À : squid-users_at_squid-cache.org Objet : RE:
> > [squid-users] https analyze, squid rpc proxy to rpc proxy ii6
> > exchange2007 with ntlm
> >
> > On 27.03.2012 21:31, Clem wrote:
> > > Hi Amos,
> > >
> > > Administrateur is the french AD name for Administrator :)
> > >
> >
> > Yes. I'm just wondering if it is correct for what your IIS is
> > checking against.
> >
> > Amos
Received on Fri May 11 2012 - 13:50:30 MDT