+ Responder ao Tópico



  1. #1

    Padrão Squid + Bate-papo

    Pessoal meu squid esta barrando o bate-papo do uol fica tudo em branco .... alguem ja passou por isso ??

    Abraços.

  2. #2

    Padrão Re: Squid + Bate-papo

    Cola aqui pra gente o que o seu access.log diz quando você tenta acessar o bate-papo.

  3. #3
    Wendelsoares
    Visitante

    Padrão Re: Squid + Bate-papo

    Cola tb o squid.conf pra gente dar uma olhada.... 8-)

  4. #4

    Padrão Re: Squid + Bate-papo

    vcs precisam dele todo ?? o lance é só no bate-papo do uol ... o resto funciona perfeitamente ... e sem problemas ... ou seja estou satisfeito com o squid ... só esse probleminha ....

  5. #5

    Padrão Re: Squid + Bate-papo

    Bem vamos formular a pergunta ..

    Estive pesquisando no google e nao encontrei referencias de pessoas com problemas de acesso a bate-papos com squid .... meu proxy esta operando em modo transparente esta com 3 GB de cache e a maquina tem uma quantidade razoavel de memoria (1 GB).

    abaixo o meu squid.conf só as partes que importam para nao fica muito extenso


    Version 2.5.STABLE9

    ----------------------

    # decreases, blocks will be freed until the high-water mark is
    # reached. Thereafter, blocks will be used to store hot
    # objects.
    #
    #Default:
    cache_mem 250 MB

    # TAG: cache_swap_low (percent, 0-100)
    # TAG: cache_swap_high (percent, 0-100)
    #


    # numbers closer together.
    #
    #Default:
    cache_swap_low 95
    cache_swap_high 98

    # TAG: maximum_object_size (bytes)
    # Objects larger than this size will NOT be saved on disk. The
    # value is specified in kilobytes, and the default is 4MB. If
    # you wish to get a high BYTES hit ratio, you should probably
    # increase this (one 32 MB object hit counts for 3200 10KB
    # hits). If you wish to increase speed more than your want to
    # save bandwidth you should leave this low.
    #
    # NOTE: if using the LFUDA replacement policy you should increase
    # this value to maximize the byte hit rate improvement of LFUDA!
    # See replacement_policy below for a discussion of this policy.
    #
    #Default:
    maximum_object_size 10096 KB

    # TAG: minimum_object_size (bytes)
    # Objects smaller than this size will NOT be saved on disk. The
    # value is specified in kilobytes, and the default is 0 KB, which
    # means there is no minimum.
    #
    #Default:
    minimum_object_size 0 KB

    Objects greater than this size will not be attempted to kept in
    # the memory cache. This should be set high enough to keep objects
    # accessed frequently in memory to improve performance whilst low
    # enough to keep larger objects from hoarding cache_mem .
    #
    #Default:
    #maximum_object_size_in_memory 9 KB
    maximum_object_size_in_memory 5096 KB

    # TAG: ipcache_size (number of entries)
    # TAG: ipcache_low (percent)
    # TAG: ipcache_high (percent)
    # The size, low-, and high-water marks for the IP cache.
    #

    # the cache_dir lines with the smallest max-size value first and the
    # ones with no max-size specification last.
    #
    # Note that for coss, max-size must be less than COSS_MEMBUF_SZ
    # (hard coded at 1 MB).
    #
    #Default:
    cache_dir ufs /cache/squid1 1000 64 64
    cache_dir ufs /cache/squid2 1000 64 64
    cache_dir ufs /cache/squid3 1000 64 64

    # TAG: cache_access_log
    # Logs the client request activity. Contains an entry for
    # every HTTP and ICP queries receive

    #acl javascript rep_mime_type -i ^application/x-javascript$
    #
    #Recommended minimum configuration:
    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl hora time MTWHF 17:00-23:59
    acl hora1 time MTWHF 01:00-09:00
    acl wireless src 192.168.24.0/255.255.255.0
    acl flu src 192.168.26.0/255.255.255.0
    acl bombeiros src 192.168.25.0/255.255.255.0
    acl to_localhost dst 127.0.0.0/8
    acl SSL_ports port 443 563 # https, snews
    acl SSL_ports port 873 # rsync
    acl Safe_ports port 80 # http
    acl Safe_ports port 21 # ftp
    acl Safe_ports port 443 563 # https, snews
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl Safe_ports port 631 # cups
    acl Safe_ports port 873 # rsync
    acl Safe_ports port 901 # SWAT
    acl purge method PURGE
    acl CONNECT method CONNECT

    acl bloqueado url_regex -i "/etc/squid/bloqueados.txt"

    # TAG: http_access

    #Recommended minimum configuration:
    #
    # Only allow cachemgr access from localhost
    http_access allow manager localhost
    http_access deny manager
    # Only allow purge requests from localhost
    http_access allow purge localhost
    http_access deny purge
    # Deny requests to unknown ports
    http_access deny !Safe_ports
    # Deny CONNECT to other than SSL ports
    http_access deny CONNECT !SSL_ports
    #
    # We strongly recommend the following be uncommented to protect innocent
    # web applications running on the proxy server who think the only
    # one who can access services on "localhost" is a local user
    #http_access deny to_localhost
    #
    # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS

    # Example rule allowing access from your local networks. Adapt
    # to list your (internal) IP networks from where browsing should
    # be allowed
    #acl our_networks src 192.168.1.0/24 192.168.2.0/24

    http_access deny bloqueado !hora !hora1 !wireless !bombeiros
    http_access allow flux
    http_access allow wireless
    http_access allow bombeiros
    http_access allow localhost

    # And finally deny all other access to this proxy
    http_access deny all




    #
    # If you want virtual port support specify the port as "0".
    #
    # NOTE: enabling httpd_accel_host disables proxy-caching and
    # ICP. If you want these features enabled also, set
    # the 'httpd_accel_with_proxy' option.
    #
    #Default:
    httpd_accel_port 80
    httpd_accel_host virtual

    # TAG: httpd_accel_single_host on|off
    # If you are running Squid as an accelerator and have a single backend
    # server set this to on. This causes Squid to forward the request
    # to this server, regardles of what any redirectors or Host headers
    # say.
    #
    # Leave this at off if you have multiple backend servers, and use a
    # redirector (or host table or private DNS) to map the requests to the
    # appropriate backend servers. Note that the mapping needs to be a
    # 1-1 mapping between

    # proxy users may have trouble to reach the accelerated domains
    # unless their browsers are configured not to use this proxy for
    # those domains (for example via the no_proxy browser configuration
    # setting)
    #
    #Default:
    httpd_accel_with_proxy on

    # TAG: httpd_accel_uses_host_header on|off
    # HTTP/1.1 requests include a Host: header which is basically the
    # hostname from the URL. The Host: header is used for domain based
    # virutal hosts. If your accelerator needs to provide domain based
    # virtual hosts on the same IP address you will need to turn this
    # on.
    #

    # Note Squid does NOT check the value of the Host header matches
    # any of your accelerated server, so it may open a big security hole
    # unless you take care to set up access controls proper. We recommend
    # this option remain disabled unless you are sure of what you
    # are doing.
    #
    # However, you will need to enable this option if you run Squid
    # as a transparent proxy. Otherwise, virtual servers which
    # require the Host: header will not be properly cached.
    #
    #Default:
    httpd_accel_uses_host_header on

    # TAG: httpd_accel_no_pmtu_disc on|off
    # In many setups of transparently intercepting proxies Path-MTU
    # discovery can not work on traffic towards the clients. This is
    # the case when the intercepting device does not fully track
    # connections and fails to forward ICMP must fragment messages
    # to the cache server.
    #
    # If you have such setup and experience that certain clients
    # sporadically hang or neve



    basicamente é isso ... espero ser util !

  6. #6
    Super_Diaulas
    Visitante

    Padrão Re: Squid + Bate-papo

    Verifique se ele não está usando a porta 443 ou se ele usa alguma conexão criptografada como o CONECTIVIDADE SOCIAL usa...