- Squid + Bate-papo
+ Responder ao Tópico
-
Squid + Bate-papo
Pessoal meu squid esta barrando o bate-papo do uol fica tudo em branco .... alguem ja passou por isso ??
Abraços.
-
Re: Squid + Bate-papo
Cola aqui pra gente o que o seu access.log diz quando você tenta acessar o bate-papo.
-
Re: Squid + Bate-papo
Cola tb o squid.conf pra gente dar uma olhada.... 8-)
-
Re: Squid + Bate-papo
vcs precisam dele todo ?? o lance é só no bate-papo do uol ... o resto funciona perfeitamente ... e sem problemas ... ou seja estou satisfeito com o squid ... só esse probleminha ....
-
Re: Squid + Bate-papo
Bem vamos formular a pergunta ..
Estive pesquisando no google e nao encontrei referencias de pessoas com problemas de acesso a bate-papos com squid .... meu proxy esta operando em modo transparente esta com 3 GB de cache e a maquina tem uma quantidade razoavel de memoria (1 GB).
abaixo o meu squid.conf só as partes que importam para nao fica muito extenso
Version 2.5.STABLE9
----------------------
# decreases, blocks will be freed until the high-water mark is
# reached. Thereafter, blocks will be used to store hot
# objects.
#
#Default:
cache_mem 250 MB
# TAG: cache_swap_low (percent, 0-100)
# TAG: cache_swap_high (percent, 0-100)
#
# numbers closer together.
#
#Default:
cache_swap_low 95
cache_swap_high 98
# TAG: maximum_object_size (bytes)
# Objects larger than this size will NOT be saved on disk. The
# value is specified in kilobytes, and the default is 4MB. If
# you wish to get a high BYTES hit ratio, you should probably
# increase this (one 32 MB object hit counts for 3200 10KB
# hits). If you wish to increase speed more than your want to
# save bandwidth you should leave this low.
#
# NOTE: if using the LFUDA replacement policy you should increase
# this value to maximize the byte hit rate improvement of LFUDA!
# See replacement_policy below for a discussion of this policy.
#
#Default:
maximum_object_size 10096 KB
# TAG: minimum_object_size (bytes)
# Objects smaller than this size will NOT be saved on disk. The
# value is specified in kilobytes, and the default is 0 KB, which
# means there is no minimum.
#
#Default:
minimum_object_size 0 KB
Objects greater than this size will not be attempted to kept in
# the memory cache. This should be set high enough to keep objects
# accessed frequently in memory to improve performance whilst low
# enough to keep larger objects from hoarding cache_mem .
#
#Default:
#maximum_object_size_in_memory 9 KB
maximum_object_size_in_memory 5096 KB
# TAG: ipcache_size (number of entries)
# TAG: ipcache_low (percent)
# TAG: ipcache_high (percent)
# The size, low-, and high-water marks for the IP cache.
#
# the cache_dir lines with the smallest max-size value first and the
# ones with no max-size specification last.
#
# Note that for coss, max-size must be less than COSS_MEMBUF_SZ
# (hard coded at 1 MB).
#
#Default:
cache_dir ufs /cache/squid1 1000 64 64
cache_dir ufs /cache/squid2 1000 64 64
cache_dir ufs /cache/squid3 1000 64 64
# TAG: cache_access_log
# Logs the client request activity. Contains an entry for
# every HTTP and ICP queries receive
#acl javascript rep_mime_type -i ^application/x-javascript$
#
#Recommended minimum configuration:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl hora time MTWHF 17:00-23:59
acl hora1 time MTWHF 01:00-09:00
acl wireless src 192.168.24.0/255.255.255.0
acl flu src 192.168.26.0/255.255.255.0
acl bombeiros src 192.168.25.0/255.255.255.0
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 # https, snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
acl bloqueado url_regex -i "/etc/squid/bloqueados.txt"
# TAG: http_access
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Only allow purge requests from localhost
http_access allow purge localhost
http_access deny purge
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
#
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
# Example rule allowing access from your local networks. Adapt
# to list your (internal) IP networks from where browsing should
# be allowed
#acl our_networks src 192.168.1.0/24 192.168.2.0/24
http_access deny bloqueado !hora !hora1 !wireless !bombeiros
http_access allow flux
http_access allow wireless
http_access allow bombeiros
http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
#
# If you want virtual port support specify the port as "0".
#
# NOTE: enabling httpd_accel_host disables proxy-caching and
# ICP. If you want these features enabled also, set
# the 'httpd_accel_with_proxy' option.
#
#Default:
httpd_accel_port 80
httpd_accel_host virtual
# TAG: httpd_accel_single_host on|off
# If you are running Squid as an accelerator and have a single backend
# server set this to on. This causes Squid to forward the request
# to this server, regardles of what any redirectors or Host headers
# say.
#
# Leave this at off if you have multiple backend servers, and use a
# redirector (or host table or private DNS) to map the requests to the
# appropriate backend servers. Note that the mapping needs to be a
# 1-1 mapping between
# proxy users may have trouble to reach the accelerated domains
# unless their browsers are configured not to use this proxy for
# those domains (for example via the no_proxy browser configuration
# setting)
#
#Default:
httpd_accel_with_proxy on
# TAG: httpd_accel_uses_host_header on|off
# HTTP/1.1 requests include a Host: header which is basically the
# hostname from the URL. The Host: header is used for domain based
# virutal hosts. If your accelerator needs to provide domain based
# virtual hosts on the same IP address you will need to turn this
# on.
#
# Note Squid does NOT check the value of the Host header matches
# any of your accelerated server, so it may open a big security hole
# unless you take care to set up access controls proper. We recommend
# this option remain disabled unless you are sure of what you
# are doing.
#
# However, you will need to enable this option if you run Squid
# as a transparent proxy. Otherwise, virtual servers which
# require the Host: header will not be properly cached.
#
#Default:
httpd_accel_uses_host_header on
# TAG: httpd_accel_no_pmtu_disc on|off
# In many setups of transparently intercepting proxies Path-MTU
# discovery can not work on traffic towards the clients. This is
# the case when the intercepting device does not fully track
# connections and fails to forward ICMP must fragment messages
# to the cache server.
#
# If you have such setup and experience that certain clients
# sporadically hang or neve
basicamente é isso ... espero ser util !
-
Re: Squid + Bate-papo
Verifique se ele não está usando a porta 443 ou se ele usa alguma conexão criptografada como o CONECTIVIDADE SOCIAL usa...