[squid-users] TCP/DENIED 303 redirect firefox 19.0 not working

From: <steve_at_comitcon.be>
Date: Tue, 8 Oct 2013 16:29:05 +0200

Dear all

I compiled squid 3.3.9 on debian and are trying to get deny_info working
properly.

When I go to HTTPS sites, I am getting an error message in firefox/ chrome
etc and not redirection. It does work with regular http requests.

I have been reading up on quite some data and I found messages saying that
if we return 303:URL, is should work.

What I see in my log file is in fact not the expected result

Log output:

1381242441.978 0 194.78.29.66 TCP_DENIED/303 331 GET
http://www.homerecording.be/ - HIER_NONE/- text/html
1381242442.034 8 194.78.29.66 TCP_MISS/302 328 GET
http://www.c2root.be/ - HIER_DIRECT/46.18.36.231 text/html
1381242442.069 21 194.78.29.66 TCP_MISS/200 7857 GET
http://www.c2root.be/viewpage.php? - HIER_DIRECT/46.18.36.231 text/html
1381242442.349 8 194.78.29.66 TCP_MISS/302 328 GET
http://www.c2root.be/ - HIER_DIRECT/46.18.36.231 text/html
1381242442.381 21 194.78.29.66 TCP_MISS/200 7857 GET
http://www.c2root.be/viewpage.php? - HIER_DIRECT/46.18.36.231 text/html
1381242463.894 0 194.78.29.66 TCP_DENIED/303 331 CONNECT
www.facebook.com:443 - HIER_NONE/- text/html

When I have a TCP_DENIED/303 in combination with a CONNECT, I simply get a
problem loading page error.

Any ideas.

My conf has the following modified (and only that)
acl whitelist dstdomain .c2root.be .paypal.com .hln.be
http_access allow whitelist
deny_info 303:http://www.c2root.be CONNECT
deny_info 303:http://www.c2root.be/ whitelist
http_access deny !whitelist !CONNECT
http_access deny !whitelist CONNECT
http_access deny all

Any help welcome

Kind regards

Steve
Received on Tue Oct 08 2013 - 14:29:07 MDT

This archive was generated by hypermail 2.2.0 : Wed Oct 09 2013 - 12:00:05 MDT