Squid

sir
how to monitor cache in squid proxy. I want to monitor what are the requests pass through squid proxy server. I also want to get detailed information on the contents in /var/spool/squid directory.waiting for your response
Regards

Have you tried google for "squid proxy log analyze"?
Perhaps useful
SARG     Squid Analysis Report Generator is a tool that allow you to view "where" your users are going to on the Internet.
http://sarg.sourceforge.net/
http://www.server-world.info/en/note?os=CentOS_5&p=squid&f=4
Edited by: waldorfm on Jul 18, 2010 12:33 PM

Similar Messages

  • IPhoto '08 Book upload errors with squid transparent proxy - tip

    Hi folks
    I've just "solved" a problem I was having with iPhoto Book uploads. The solution may apply to other publishing products from iPhoto and possibly iDisk uploads too.
    My firewall & proxy setup is basically Linux iptables redirecting all outbound http (port 80) connections to a dansguardian filter, which in turn is passed onto a squid instance running as a transparent proxy (oh, and there's a privoxy in this all too!). Yeah, OK, I know, slightly paranoid, but I don't want my children accidently browsing stuff I don't think they are old enough for yet!
    Now I had the problem before with iPhoto '06 as well, but at the time just didn't have the time or inclination to figure out what the problem was, and just did the book order and upload from the office, where it went through without a problem. This time I decided to dig a bit and see what was happening. The clue that triggered off the solution was watching the part of the order process where the book data is uploaded. In my default setup, the upload bar would scream through to 100%, and then sit there for ages, before coming back with a connection error. Watching the network flashy lights on the NIC on the firewall though, it suddenly dawned on me that what was happening was that the upload was screaming through to the squid (as there was no outbound network activity from the firewall while this was happening) and then sitting there waiting for squid to pass it on to the Apple site (as shown by the outbound NIC activity light suddenly going bonkers once the uoload bar hit 100%).
    So clearly there's a problem sending book orders via a squid proxy setup as a transparent proxy. It might also very well be dansguardian interfering and wanting to take the entire upload and checking it before passing it on to squid. I already have site exception setup for all apple.com urls though in dansguardian, so didn't think it would be that. I thought about dicking around with the squid acl's but didn't have the enthusiasm to spend half the day getting that working.
    So what I did in the end was tail the squid logs to see what was being proxied whilst the book order was going on, and then dropped in 3 new rules in my iptables setup just before the redirect rule. Tried ordering the book again, and voila!
    The three rules I inserted were:
    $IPTABLES -t nat -A PREROUTING -s ! 10.1.1.1 -p tcp -d mercury.apple.com -j ACCEPT
    $IPTABLES -t nat -A PREROUTING -s ! 10.1.1.1 -p tcp -d configuration.apple.com -j ACCEPT
    $IPTABLES -t nat -A PREROUTING -s ! 10.1.1.1 -p tcp -d publish.mac.com -j ACCEPT
    The "-s ! 10.1.1.1" bit is obviously particular to my setup, as I wouldn't want connections from the router itself being proxied, so that may need to either be customised or left out altogether. These three rules are then immediately followed by the redirect:
    $IPTABLES -t nat -A PREROUTING -s ! 10.1.1.1 -p tcp --dport 80 -j REDIRECT --to-port 8081
    Hope that is of some help to someone out there!
    K

    Tony,
    It appears that in the past few days you have not received a response to your
    posting. That concerns us, and has triggered this automated reply.
    Has your problem been resolved? If not, you might try one of the following options:
    - Do a search of our knowledgebase at http://support.novell.com/search/kb_index.jsp
    - Check all of the other support tools and options available at
    http://support.novell.com.
    - You could also try posting your message again. Make sure it is posted in the
    correct newsgroup. (http://support.novell.com/forums)
    Be sure to read the forum FAQ about what to expect in the way of responses:
    http://support.novell.com/forums/faq_general.html
    If this is a reply to a duplicate posting, please ignore and accept our apologies
    and rest assured we will issue a stern reprimand to our posting bot.
    Good luck!
    Your Novell Product Support Forums Team
    http://support.novell.com/forums/

  • Squid doesn't accept https requests

    I have a server running Arch i686 and installed squid as a web proxy server. I can connect to it through, say Firefox, and it serves all the pages except SSL'ed ones.
    It simply throws a generic Firefox error. What do I need to enable in my squid.conf so that squid will forward the https requests to their intended destinations?

    Oh, I see... Avoiding man-in-the-middle attacks is nice and everything, but I still need a way of sending https requests through a proxy. Here's why:
    At work, they are using this "websense" content filtering thing and it blocks everything! Not just nsfw stuff, but even some news pages etc. For example, I couldn't access the link you've just posted, because it is blocked under the category "proxy avoidance". See my problem?
    Any ideas on what I can do?

  • Squid basic authentication not working

    I have setup squid as follows:
    /etc/squid/squid.conf
    auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/passwd
    auth_param basic children 5
    auth_param basic realm Squid proxy-caching web server
    auth_param basic credentialsttl 2 hours
    auth_param basic casesensitive off
    acl ncsa_users proxy_auth REQUIRED
    http_access allow ncsa_users
    Then I created my passwd file:
    # htpasswd -c /etc/squid/passwd user
    I get the authentication dialog, but squid does not authenticate me. I think my authenticator is crashing or something, I have no clue. When I run "http_access allow ncsa_users /etc/squid/passwd" the program runs fine and does not segfault. /etc/squid/passwd is world readable.
    Here is my log output of /var/log/squid/cache.log:
    2013/05/26 12:25:24.811 kid1| Checklist.cc(153) preCheck: 0xb71178 checking slow rules
    2013/05/26 12:25:24.811 kid1| Checklist.cc(160) checkAccessList: 0xb71178 checking 'http_access allow ncsa_users'
    2013/05/26 12:25:24.812 kid1| Acl.cc(336) matches: ACLList::matches: checking ncsa_users
    2013/05/26 12:25:24.812 kid1| Acl.cc(319) checklistMatches: ACL::checklistMatches: checking 'ncsa_users'
    2013/05/26 12:25:24.812 kid1| Acl.cc(281) aclCacheMatchFlush: aclCacheMatchFlush called for cache 0xb744e8
    2013/05/26 12:25:24.812 kid1| Acl.cc(61) AuthenticateAcl: returning 2 sending credentials to helper.
    2013/05/26 12:25:24.812 kid1| Acl.cc(321) checklistMatches: ACL::ChecklistMatches: result for 'ncsa_users' is -1
    2013/05/26 12:25:24.812 kid1| Acl.cc(339) matches: ACLList::matches: result is false
    2013/05/26 12:25:24.812 kid1| Checklist.cc(275) matchNode: 0xb71178 matched=0 async=1 finished=0
    2013/05/26 12:25:24.812 kid1| Checklist.cc(312) matchNode: 0xb71178 going async
    2013/05/26 12:25:24.812 kid1| Checklist.cc(131) asyncInProgress: ACLChecklist::asyncInProgress: 0xb71178 async set to 1
    2013/05/26 12:25:24.813 kid1| AclProxyAuth.cc(144) checkForAsync: checking password via authenticator
    2013/05/26 12:25:24.813 kid1| Checklist.cc(256) matchNodes: 0xb71178 awaiting async operation
    2013/05/26 12:25:24.813 kid1| WARNING: basicauthenticator #1 exited
    2013/05/26 12:25:24.813 kid1| Too few basicauthenticator processes are running (need 1/5)
    2013/05/26 12:25:24.813 kid1| Starting new helpers
    2013/05/26 12:25:24.813 kid1| helperOpenServers: Starting 1/5 'basic_ncsa_auth' processes
    2013/05/26 12:25:24.831 kid1| Checklist.cc(131) asyncInProgress: ACLChecklist::asyncInProgress: 0xb71178 async set to 0
    2013/05/26 12:25:24.831 kid1| Checklist.cc(160) checkAccessList: 0xb71178 checking 'http_access allow ncsa_users'
    2013/05/26 12:25:24.831 kid1| Acl.cc(336) matches: ACLList::matches: checking ncsa_users
    2013/05/26 12:25:24.831 kid1| Acl.cc(319) checklistMatches: ACL::checklistMatches: checking 'ncsa_users'
    2013/05/26 12:25:24.831 kid1| Acl.cc(66) AuthenticateAcl: returning 3 sending authentication challenge.
    2013/05/26 12:25:24.831 kid1| Checklist.cc(146) markFinished: 0xb71178 answer AUTH_REQUIRED for AuthenticateAcl exception
    2013/05/26 12:25:24.831 kid1| Acl.cc(321) checklistMatches: ACL::ChecklistMatches: result for 'ncsa_users' is -1
    2013/05/26 12:25:24.831 kid1| Acl.cc(339) matches: ACLList::matches: result is false
    2013/05/26 12:25:24.831 kid1| Checklist.cc(275) matchNode: 0xb71178 matched=0 async=0 finished=1
    2013/05/26 12:25:24.832 kid1| Checklist.cc(294) matchNode: 0xb71178 exception: AUTH_REQUIRED
    2013/05/26 12:25:24.832 kid1| Checklist.cc(88) matchNonBlocking: ACLChecklist::check: 0xb71178 match found, calling back with AUTH_REQUIRED
    2013/05/26 12:25:24.832 kid1| Checklist.cc(182) checkCallback: ACLChecklist::checkCallback: 0xb71178 answer=AUTH_REQUIRED
    2013/05/26 12:25:24.832 kid1| Gadgets.cc(58) aclGetDenyInfoPage: got called for ncsa_users
    2013/05/26 12:25:24.832 kid1| Gadgets.cc(77) aclGetDenyInfoPage: aclGetDenyInfoPage: no match
    2013/05/26 12:25:24.832 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1efef70
    2013/05/26 12:25:24.832 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1efef70
    2013/05/26 12:25:24.832 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1eff090
    2013/05/26 12:25:24.832 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1eff090
    2013/05/26 12:25:24.833 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:24.833 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    2013/05/26 12:25:24.833 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:24.833 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    2013/05/26 12:25:27.344 kid1| Checklist.cc(153) preCheck: 0xb71178 checking slow rules
    2013/05/26 12:25:27.344 kid1| Checklist.cc(160) checkAccessList: 0xb71178 checking 'http_access allow ncsa_users'
    2013/05/26 12:25:27.344 kid1| Acl.cc(336) matches: ACLList::matches: checking ncsa_users
    2013/05/26 12:25:27.344 kid1| Acl.cc(319) checklistMatches: ACL::checklistMatches: checking 'ncsa_users'
    2013/05/26 12:25:27.345 kid1| Acl.cc(66) AuthenticateAcl: returning 3 sending authentication challenge.
    2013/05/26 12:25:27.345 kid1| Checklist.cc(146) markFinished: 0xb71178 answer AUTH_REQUIRED for AuthenticateAcl exception
    2013/05/26 12:25:27.345 kid1| Acl.cc(321) checklistMatches: ACL::ChecklistMatches: result for 'ncsa_users' is -1
    2013/05/26 12:25:27.345 kid1| Acl.cc(339) matches: ACLList::matches: result is false
    2013/05/26 12:25:27.345 kid1| Checklist.cc(275) matchNode: 0xb71178 matched=0 async=0 finished=1
    2013/05/26 12:25:27.345 kid1| Checklist.cc(294) matchNode: 0xb71178 exception: AUTH_REQUIRED
    2013/05/26 12:25:27.345 kid1| Checklist.cc(88) matchNonBlocking: ACLChecklist::check: 0xb71178 match found, calling back with AUTH_REQUIRED
    2013/05/26 12:25:27.345 kid1| Checklist.cc(182) checkCallback: ACLChecklist::checkCallback: 0xb71178 answer=AUTH_REQUIRED
    2013/05/26 12:25:27.345 kid1| Gadgets.cc(58) aclGetDenyInfoPage: got called for ncsa_users
    2013/05/26 12:25:27.345 kid1| Gadgets.cc(77) aclGetDenyInfoPage: aclGetDenyInfoPage: no match
    2013/05/26 12:25:27.345 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1efe4d0
    2013/05/26 12:25:27.345 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1efe4d0
    2013/05/26 12:25:27.345 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1efe5f0
    2013/05/26 12:25:27.345 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1efe5f0
    2013/05/26 12:25:27.345 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:27.346 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    2013/05/26 12:25:27.346 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:27.346 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    Any pointers greatly appreciated!

    I have setup squid as follows:
    /etc/squid/squid.conf
    auth_param basic program /usr/lib/squid/basic_ncsa_auth /etc/squid/passwd
    auth_param basic children 5
    auth_param basic realm Squid proxy-caching web server
    auth_param basic credentialsttl 2 hours
    auth_param basic casesensitive off
    acl ncsa_users proxy_auth REQUIRED
    http_access allow ncsa_users
    Then I created my passwd file:
    # htpasswd -c /etc/squid/passwd user
    I get the authentication dialog, but squid does not authenticate me. I think my authenticator is crashing or something, I have no clue. When I run "http_access allow ncsa_users /etc/squid/passwd" the program runs fine and does not segfault. /etc/squid/passwd is world readable.
    Here is my log output of /var/log/squid/cache.log:
    2013/05/26 12:25:24.811 kid1| Checklist.cc(153) preCheck: 0xb71178 checking slow rules
    2013/05/26 12:25:24.811 kid1| Checklist.cc(160) checkAccessList: 0xb71178 checking 'http_access allow ncsa_users'
    2013/05/26 12:25:24.812 kid1| Acl.cc(336) matches: ACLList::matches: checking ncsa_users
    2013/05/26 12:25:24.812 kid1| Acl.cc(319) checklistMatches: ACL::checklistMatches: checking 'ncsa_users'
    2013/05/26 12:25:24.812 kid1| Acl.cc(281) aclCacheMatchFlush: aclCacheMatchFlush called for cache 0xb744e8
    2013/05/26 12:25:24.812 kid1| Acl.cc(61) AuthenticateAcl: returning 2 sending credentials to helper.
    2013/05/26 12:25:24.812 kid1| Acl.cc(321) checklistMatches: ACL::ChecklistMatches: result for 'ncsa_users' is -1
    2013/05/26 12:25:24.812 kid1| Acl.cc(339) matches: ACLList::matches: result is false
    2013/05/26 12:25:24.812 kid1| Checklist.cc(275) matchNode: 0xb71178 matched=0 async=1 finished=0
    2013/05/26 12:25:24.812 kid1| Checklist.cc(312) matchNode: 0xb71178 going async
    2013/05/26 12:25:24.812 kid1| Checklist.cc(131) asyncInProgress: ACLChecklist::asyncInProgress: 0xb71178 async set to 1
    2013/05/26 12:25:24.813 kid1| AclProxyAuth.cc(144) checkForAsync: checking password via authenticator
    2013/05/26 12:25:24.813 kid1| Checklist.cc(256) matchNodes: 0xb71178 awaiting async operation
    2013/05/26 12:25:24.813 kid1| WARNING: basicauthenticator #1 exited
    2013/05/26 12:25:24.813 kid1| Too few basicauthenticator processes are running (need 1/5)
    2013/05/26 12:25:24.813 kid1| Starting new helpers
    2013/05/26 12:25:24.813 kid1| helperOpenServers: Starting 1/5 'basic_ncsa_auth' processes
    2013/05/26 12:25:24.831 kid1| Checklist.cc(131) asyncInProgress: ACLChecklist::asyncInProgress: 0xb71178 async set to 0
    2013/05/26 12:25:24.831 kid1| Checklist.cc(160) checkAccessList: 0xb71178 checking 'http_access allow ncsa_users'
    2013/05/26 12:25:24.831 kid1| Acl.cc(336) matches: ACLList::matches: checking ncsa_users
    2013/05/26 12:25:24.831 kid1| Acl.cc(319) checklistMatches: ACL::checklistMatches: checking 'ncsa_users'
    2013/05/26 12:25:24.831 kid1| Acl.cc(66) AuthenticateAcl: returning 3 sending authentication challenge.
    2013/05/26 12:25:24.831 kid1| Checklist.cc(146) markFinished: 0xb71178 answer AUTH_REQUIRED for AuthenticateAcl exception
    2013/05/26 12:25:24.831 kid1| Acl.cc(321) checklistMatches: ACL::ChecklistMatches: result for 'ncsa_users' is -1
    2013/05/26 12:25:24.831 kid1| Acl.cc(339) matches: ACLList::matches: result is false
    2013/05/26 12:25:24.831 kid1| Checklist.cc(275) matchNode: 0xb71178 matched=0 async=0 finished=1
    2013/05/26 12:25:24.832 kid1| Checklist.cc(294) matchNode: 0xb71178 exception: AUTH_REQUIRED
    2013/05/26 12:25:24.832 kid1| Checklist.cc(88) matchNonBlocking: ACLChecklist::check: 0xb71178 match found, calling back with AUTH_REQUIRED
    2013/05/26 12:25:24.832 kid1| Checklist.cc(182) checkCallback: ACLChecklist::checkCallback: 0xb71178 answer=AUTH_REQUIRED
    2013/05/26 12:25:24.832 kid1| Gadgets.cc(58) aclGetDenyInfoPage: got called for ncsa_users
    2013/05/26 12:25:24.832 kid1| Gadgets.cc(77) aclGetDenyInfoPage: aclGetDenyInfoPage: no match
    2013/05/26 12:25:24.832 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1efef70
    2013/05/26 12:25:24.832 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1efef70
    2013/05/26 12:25:24.832 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1eff090
    2013/05/26 12:25:24.832 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1eff090
    2013/05/26 12:25:24.833 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:24.833 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    2013/05/26 12:25:24.833 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:24.833 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    2013/05/26 12:25:27.344 kid1| Checklist.cc(153) preCheck: 0xb71178 checking slow rules
    2013/05/26 12:25:27.344 kid1| Checklist.cc(160) checkAccessList: 0xb71178 checking 'http_access allow ncsa_users'
    2013/05/26 12:25:27.344 kid1| Acl.cc(336) matches: ACLList::matches: checking ncsa_users
    2013/05/26 12:25:27.344 kid1| Acl.cc(319) checklistMatches: ACL::checklistMatches: checking 'ncsa_users'
    2013/05/26 12:25:27.345 kid1| Acl.cc(66) AuthenticateAcl: returning 3 sending authentication challenge.
    2013/05/26 12:25:27.345 kid1| Checklist.cc(146) markFinished: 0xb71178 answer AUTH_REQUIRED for AuthenticateAcl exception
    2013/05/26 12:25:27.345 kid1| Acl.cc(321) checklistMatches: ACL::ChecklistMatches: result for 'ncsa_users' is -1
    2013/05/26 12:25:27.345 kid1| Acl.cc(339) matches: ACLList::matches: result is false
    2013/05/26 12:25:27.345 kid1| Checklist.cc(275) matchNode: 0xb71178 matched=0 async=0 finished=1
    2013/05/26 12:25:27.345 kid1| Checklist.cc(294) matchNode: 0xb71178 exception: AUTH_REQUIRED
    2013/05/26 12:25:27.345 kid1| Checklist.cc(88) matchNonBlocking: ACLChecklist::check: 0xb71178 match found, calling back with AUTH_REQUIRED
    2013/05/26 12:25:27.345 kid1| Checklist.cc(182) checkCallback: ACLChecklist::checkCallback: 0xb71178 answer=AUTH_REQUIRED
    2013/05/26 12:25:27.345 kid1| Gadgets.cc(58) aclGetDenyInfoPage: got called for ncsa_users
    2013/05/26 12:25:27.345 kid1| Gadgets.cc(77) aclGetDenyInfoPage: aclGetDenyInfoPage: no match
    2013/05/26 12:25:27.345 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1efe4d0
    2013/05/26 12:25:27.345 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1efe4d0
    2013/05/26 12:25:27.345 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0x7fffa1efe5f0
    2013/05/26 12:25:27.345 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0x7fffa1efe5f0
    2013/05/26 12:25:27.345 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:27.346 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    2013/05/26 12:25:27.346 kid1| FilledChecklist.cc(77) ~ACLFilledChecklist: ACLFilledChecklist destroyed 0xb71178
    2013/05/26 12:25:27.346 kid1| Checklist.cc(334) ~ACLChecklist: ACLChecklist::~ACLChecklist: destroyed 0xb71178
    Any pointers greatly appreciated!

  • Squid won't start in Arch Linux

    I just installed Squid in my machine running Arch Linux. When I try to start it, it gives me this message :
    >bash: /usr/sbin/squid: cannot execute binary file
    How can I fix this?

    ViruSzZ wrote:
    THPubs wrote:>bash: /usr/sbin/squid: cannot execute binary file
    Is the elf on bash correct? Did you mix repo architectures somehow maybe?
    Everything seems to be fine... The architecture have been set to ARM

  • Squid proxy server request

    sir
    I installed squid proxy in our environment for making internet access fast.It works fine when browsing internet. But when we access the our internal webserver\
    located in another location it provides the following error message
    unable to determine ip address for host
    The dnsserver returned:
    Name Error: The domain name does not exist
    the ip address of requested url is 10.0.0.23. We are using vpn to connect to that network.
    please suggest solution for this problem
    Regards
    Satheeshkumar.M

    You will need to specify a DNS server that is the authority for your local network domain, which is also configured to forward your non-authoritative (public internet) requests to another or public DNS servers. When specifying multiple DNS servers, keep in mind that any response from the DNS server, unknown or successful, will satisfy the request and other DNS servers in your list will not be queried. Some implementations may allow you to attach DNS servers to DNS searchlists. If you have a small local network, it might be the easiest to add your local hosts to the /etc/hosts file. Depending on your network security you may also have to look into possible problems of denied requests to DNS servers outside your network. Is there a special reason why are you using a proxy?

  • Flash-Player: Zuverlässige Quelle kann nicht kontaktiert werden - Squid Proxy

    Guten Morgen,
    Clients: Win7, 64bit
    Browser: FF aktuellester (10.x) oder Iexplorer 8
    HTTP/HTTPS-Proxy: Debian Squeeze (6.0) Squid Proxy Server
    Die Update-Funktion des Flash-Plugins kann nicht beendet werden und es erscheint:
    Was genau meint "Zuverlässige Quelle kann nicht kontaktiert werden" ?
    Ich sehe in den Proxy-Logs, dass durchaus Verkehr zu Adobe stattfindet:
    1329987084.782
    56 192.168.0.0 TCP_MISS/200 405 GET http://dlmping.adobe.com/dlm/fp.gif?os=win&exitcode=-1&app_ver=11.1.102.62&failed_action_n ame=download&site=live&aih_name=install_flashplayer11x64ax_gtbd_aih.exe&aih_vers=1.1.8.3&i temid=Flash_Player_11_for_Internet_Explorer_(64_bit)&dlc=flashplayer&pre_installed=0&cance lled=0&failed_action_id=0&failure_reason=201&os_ver=7_64 - DIRECT/193.104.215.55 text/plain
    1329987084.849
    167 192.168.0.0 TCP_MISS/200 419 GET http://tracker21.d6c506b3-ba0f-46bc-9c55-6111e96dcc95.automated.snxd.com/?info_hash=%07h%8 3%F8%28%9B%FAp%99%1A%BA%D7%C7%F6%A9%0F%25%8A%C8F&peer_id=-SD3219-%00%D7w%0B%DD%11%9A%5E%F1 g%A7%15&port=0&uploaded=0&downloaded=0&left=48280&key=40634FEA5B9D4115498CD48F98A-66D1A6C- 1329987068&compact=1&ip=192.168.0.16&event=stopped&errors=407H1 - DIRECT/8.10.179.247 text/html
    Was prüft denn der Adobe Updater im Detail, dass er zu der Annahme kommt, er könnte die zuverlässige Quelle nicht kontaktieren?!
    Besten Dank
    Stefan Bauer

  • Unable to play youtube videos - using proxy (squid)

    Youtube videos do not play in my configuration. Most youtube content appears, but attempting to play a video results in a popup message "This movie could not be played". Sorry for the length of the post, but I'm trying to get enough documentation down here to save some time for the next person who runs into this.
    My basic network configuration is:
    ipod->wireless-router->squid-proxy->pix->internet
    *I am analyzing logfiles from the proxy and the pix, and I have network traces from the proxy.
    There are 2 issues so far with proxy access from the youtube application on the fw v2.2 ipod touch. After hitting the first issue, I made a call to tech support who pointed me to an older apple discussion thread about a similar issue which indicated the problem could be fixed by "reconfiguring the proxy server", but no details were given in that discussion thread about exactly what needed to be 'reconfigured'. I believe have figured out what was going wrong, and I document it as issue 1 below in case anyone else runs into it.
    Issue 1 (which I managed to get solved) is that the youtube application sends a 'Host:' header pointing to gdata.youtube.com, but the requested url is actually iphone-wu.apple.com. Squid rewrites the 'host' header to iphone-wu.apple.com, and the target server fails the request with a 404. A solution (for squid) is to use a redirector to rewrite these url's to actually go to gdata.youtube.com and to set the 'urlrewrite_hostheader off' value.
    Unfortunately, resolving issue #1 was not sufficient to get youtube off the launch pad:
    Issue 2 (which seems unsolveable at the moment) is that the youtube application is ignoring proxy settings for some of its content requests. In addition to the proxy requirement, I have egress firewalling and logging set up. I observe the youtube application asking for many url's via the proxy and then I observe the egress firewall deny an attempt at a direct access to port 80 on an external server BYPASSING the proxy settings. Without opening up the egress firewall rules (and thereby disable requirement for a proxy), this makes the youtube application inoperative.
    If anyone has some insight on how I can get this working, I'd appreciate it. I will attempt another support call tomorrow with my logfiles in hand...

    Thanks for posting! -- I'm glad the info is helpful to you. There is more that I have been deliberately keeping quiet about while trying to work through a support call that was logged 27-dec-08. Without going into a lot of detail, the support call is still open, and I'm still working on getting a resolution from apple engineering. I hope that by providing this information, my support call doesn't get terminated as having been "solved" - which it most definitely has not been. It is my belief that only a firmware update will fix this.
    (And as an aside ... I've spoken with three or four support reps at apple, and all have been very nice and have tried to help out! I've been quite pleased with the front end to their support org. I just really want to hear that someone has LOOKED at the code and found the error and it will be fixed in a future update!)
    A work-around for the youtube and itunes applet failures is to set your squid up as a transparent proxy. That way, the network accesses that these applets make that attempt to bypass the proxy are hidden and the applets "work".
    I would most certainly appreciate any further corroboration of this misbehavior -- more than one site being able to demonstrate these applets bypassing the proxy would be quite helpful.
    (Note also that the lastest firmware 2.2.1 also exhibits this issue)
    Thanks.

  • Patch of squid version 2.5 stable 2 to squid version 2.6 stable 17

    Hi would appreciate if can advice on how can I patch squid version 2.5 to squid version 2.6.
    Is re-configuration of squid necessary for upgrade of version 2.5 to version 2.6 ?
    Thanks alot in advance

    Well it didn't work for me at all!
    I was unable to get past POST with 2x Corsair CMX512-3200C2 at 1T 2.5-3-3-6, or even at SPD auto settings. I could only boot with one DIMM, so I quickly wend back to BIOS v1.6.
    MSI has got to stop putting me through this! I just recovered from flashing to the infamous 1.8 version, and I really hoped that the 2.1 BIOS would finally solve my ever remaining issues:
    No USB mouse on cold boot
    Bad temp.sensor calibration at cold boot
    Since this BIOS version only makes things worse, and my patience with MSi and the Neo Platinum is running out, I have done something I should have done a long time a go:
    I ordered a DFI Lanparty UT nF3 250GB to replace the ms-7030 
    Thanks for all your help over the last 18 months, but I am pulling down my MSI flag...

  • Error while building squid

    Trying to build squid whith squid_ldap and squid_kerb_auth.
    Here my PKGBUILD:
    pkgname=squid
    pkgver=2.7.STABLE9
    pkgrel=1
    pkgdesc="A full-featured Web proxy cache server."
    arch=(i686 x86_64)
    url="http://www.squid-cache.org"
    depends=('openssl' 'pam' 'cron' 'perl')
    makedepends=('libcap>=2.16')
    license=('GPL')
    backup=(etc/squid/squid.conf etc/squid/mime.conf etc/conf.d/squid)
    install=${pkgname}.install
    source=(http://www.squid-cache.org/Versions/v2/2.7/${pkgname}-${pkgver}.tar.bz2
    squid-makefiles.patch squid squid.conf.d squid.pam
    squid.cron fix-for-new-cap-headers.patch)
    md5sums=('3c6642c85470b1079207d43bba25a819'
    '082e53bb6e2c79bc44ac95c3d69145da'
    'd213b0cc1db72b749bb8c88716fdab39'
    '81f9a446d143f42c6a3f30304e91c39f'
    '270977cdd9b47ef44c0c427ab9034777'
    '5e17df989e2a74e869790c066f61225b'
    '9b7586646c8a81730029798895a0eaca')
    build() {
    cd ${srcdir}/${pkgname}-${pkgver}
    patch -Np1 -i ${srcdir}/squid-makefiles.patch || return 1
    ./configure --prefix=/usr --datadir=/usr/share/squid \
    --sysconfdir=/etc/squid --libexecdir=/usr/lib/squid \
    --localstatedir=/var \
    --enable-negotiate-auth-helpers=squid_kerb_auth \
    --enable-external-acl-helpers="ldap_group" \
    --with-maxfd=4096 \
    --with-large-files \
    DEFINE="-DHEIMDAL $DEFINE_SPNEGO -D__LITTLE_ENDIAN__" \
    INCLUDE="-I/usr/include/heimdal -Ispnegohelp" \
    LIBS="-lgssapi -lkrb5 -lcom_err -lasn1 -lroken"
    #some versions have build problems with both async and truncate enabled:
    # --enable-async-io --enable-arp-acl \
    make || return 1
    make DESTDIR=${pkgdir} install || return 1
    rm -rf ${pkgdir}/var
    mv ${pkgdir}/usr/bin/Run* ${pkgdir}/usr/lib/squid
    mkdir -p ${pkgdir}/var/cache/squid
    mkdir -p ${pkgdir}/var/log/squid
    install -D -m755 ${srcdir}/squid ${pkgdir}/etc/rc.d/squid
    install -D -m755 ${srcdir}/squid.cron ${pkgdir}/etc/cron.weekly/squid
    install -D -m644 ${srcdir}/squid.conf.d ${pkgdir}/etc/conf.d/squid
    install -D -m644 ${srcdir}/squid.pam ${pkgdir}/etc/pam.d/squid
    install -D -m644 ${pkgdir}/etc/squid/squid.conf \
    ${pkgdir}/etc/squid/squid.conf.defaul
    doing makepkg gives error:
    c -DHAVE_CONFIG_H -I. -I../../../include -I./spnegohelp -I. -m64 -march=x86-64 -mtune=generic -O2 -pipe -MT squid_kerb_auth.o -MD -MP -MF .deps/squid_ kerb_auth.Tpo -c -o squid_kerb_auth.o squid_kerb_auth.c
    squid_kerb_auth.c:58:35: fatal error: gssapi/gssapi_generic.h: No such file or directory
    compilation terminated.
    make[3]: *** [squid_kerb_auth.o] Error 1
    make[3]: Leaving directory `/root/abs/squid/src/squid-2.7.STABLE9/helpers/negotiate_auth/squid_kerb_auth'
    make[2]: *** [all-recursive] Error 1
    make[2]: Leaving directory `/root/abs/squid/src/squid-2.7.STABLE9/helpers/negotiate_auth'
    make[1]: *** [all-recursive] Error 1
    make[1]: Leaving directory `/root/abs/squid/src/squid-2.7.STABLE9/helpers'
    make: *** [all-recursive] Error 1
    I'm using heimdal and libs32-heimdal installed. I think that by default squid tries to use MIT kerberos
    I found some info how to force squid to use heimdal in src/squid-2.7.STABLE9/helpers/negotiate_auth/squid_kerb_auth/readme.txt. But it does not help to me.
    Any Help Will be greatly appreciated.
    Thanks!

    Trying to build squid whith squid_ldap and squid_kerb_auth.
    Here my PKGBUILD:
    pkgname=squid
    pkgver=2.7.STABLE9
    pkgrel=1
    pkgdesc="A full-featured Web proxy cache server."
    arch=(i686 x86_64)
    url="http://www.squid-cache.org"
    depends=('openssl' 'pam' 'cron' 'perl')
    makedepends=('libcap>=2.16')
    license=('GPL')
    backup=(etc/squid/squid.conf etc/squid/mime.conf etc/conf.d/squid)
    install=${pkgname}.install
    source=(http://www.squid-cache.org/Versions/v2/2.7/${pkgname}-${pkgver}.tar.bz2
    squid-makefiles.patch squid squid.conf.d squid.pam
    squid.cron fix-for-new-cap-headers.patch)
    md5sums=('3c6642c85470b1079207d43bba25a819'
    '082e53bb6e2c79bc44ac95c3d69145da'
    'd213b0cc1db72b749bb8c88716fdab39'
    '81f9a446d143f42c6a3f30304e91c39f'
    '270977cdd9b47ef44c0c427ab9034777'
    '5e17df989e2a74e869790c066f61225b'
    '9b7586646c8a81730029798895a0eaca')
    build() {
    cd ${srcdir}/${pkgname}-${pkgver}
    patch -Np1 -i ${srcdir}/squid-makefiles.patch || return 1
    ./configure --prefix=/usr --datadir=/usr/share/squid \
    --sysconfdir=/etc/squid --libexecdir=/usr/lib/squid \
    --localstatedir=/var \
    --enable-negotiate-auth-helpers=squid_kerb_auth \
    --enable-external-acl-helpers="ldap_group" \
    --with-maxfd=4096 \
    --with-large-files \
    DEFINE="-DHEIMDAL $DEFINE_SPNEGO -D__LITTLE_ENDIAN__" \
    INCLUDE="-I/usr/include/heimdal -Ispnegohelp" \
    LIBS="-lgssapi -lkrb5 -lcom_err -lasn1 -lroken"
    #some versions have build problems with both async and truncate enabled:
    # --enable-async-io --enable-arp-acl \
    make || return 1
    make DESTDIR=${pkgdir} install || return 1
    rm -rf ${pkgdir}/var
    mv ${pkgdir}/usr/bin/Run* ${pkgdir}/usr/lib/squid
    mkdir -p ${pkgdir}/var/cache/squid
    mkdir -p ${pkgdir}/var/log/squid
    install -D -m755 ${srcdir}/squid ${pkgdir}/etc/rc.d/squid
    install -D -m755 ${srcdir}/squid.cron ${pkgdir}/etc/cron.weekly/squid
    install -D -m644 ${srcdir}/squid.conf.d ${pkgdir}/etc/conf.d/squid
    install -D -m644 ${srcdir}/squid.pam ${pkgdir}/etc/pam.d/squid
    install -D -m644 ${pkgdir}/etc/squid/squid.conf \
    ${pkgdir}/etc/squid/squid.conf.defaul
    doing makepkg gives error:
    c -DHAVE_CONFIG_H -I. -I../../../include -I./spnegohelp -I. -m64 -march=x86-64 -mtune=generic -O2 -pipe -MT squid_kerb_auth.o -MD -MP -MF .deps/squid_ kerb_auth.Tpo -c -o squid_kerb_auth.o squid_kerb_auth.c
    squid_kerb_auth.c:58:35: fatal error: gssapi/gssapi_generic.h: No such file or directory
    compilation terminated.
    make[3]: *** [squid_kerb_auth.o] Error 1
    make[3]: Leaving directory `/root/abs/squid/src/squid-2.7.STABLE9/helpers/negotiate_auth/squid_kerb_auth'
    make[2]: *** [all-recursive] Error 1
    make[2]: Leaving directory `/root/abs/squid/src/squid-2.7.STABLE9/helpers/negotiate_auth'
    make[1]: *** [all-recursive] Error 1
    make[1]: Leaving directory `/root/abs/squid/src/squid-2.7.STABLE9/helpers'
    make: *** [all-recursive] Error 1
    I'm using heimdal and libs32-heimdal installed. I think that by default squid tries to use MIT kerberos
    I found some info how to force squid to use heimdal in src/squid-2.7.STABLE9/helpers/negotiate_auth/squid_kerb_auth/readme.txt. But it does not help to me.
    Any Help Will be greatly appreciated.
    Thanks!

  • How to install squid on 5.5?

    I tried "yum install squid" but got this:
    No package squid available
    Is there a repository or something that I need to add somewhere to get squid?
    I also tried to install a downloaded rpm but a lot of dependencies are missing.
    Thanks for the help!

    If you have an Internet connection, the following should work:
    Open a SSH session or a Terminal window and type:
    <pre>
    su - root
    cd /etc/yum.repos.d
    rm -f public-yum-el5.repo
    wget http://public-yum.oracle.com/public-yum-el5.repo
    yum -y install squid
    </pre>

  • Errors with squid(wiki)

    follow the wiki to configure squid, but i have some errors:
    2007/08/29 19:35:25| parseConfigFile: line 2587 unrecognized: 'httpd_accel_host virtual'
    2007/08/29 19:35:25| parseConfigFile: line 2588 unrecognized: 'httpd_accel_port 80'
    2007/08/29 19:35:25| parseConfigFile: line 2589 unrecognized: 'httpd_accel_with_proxy on'
    2007/08/29 19:35:25| parseConfigFile: line 2590 unrecognized: 'httpd_accel_uses_host_header on'
    i believe that the options are in wrong place, or is something more ???

    follow the wiki to configure squid, but i have some errors:
    2007/08/29 19:35:25| parseConfigFile: line 2587 unrecognized: 'httpd_accel_host virtual'
    2007/08/29 19:35:25| parseConfigFile: line 2588 unrecognized: 'httpd_accel_port 80'
    2007/08/29 19:35:25| parseConfigFile: line 2589 unrecognized: 'httpd_accel_with_proxy on'
    2007/08/29 19:35:25| parseConfigFile: line 2590 unrecognized: 'httpd_accel_uses_host_header on'
    i believe that the options are in wrong place, or is something more ???

  • Squid in Fedora 13 and Oracle Apps

    Hello,
    I hope I put this in a right forum. I'm trying to setup squid in Fedora 13 and get a problem with Oracle Apps. I'd setup so that only certain user can request http service by setup authentication. By default, there's already acl rule for port 1025-65535 and I'd created a rule to allow access to my domain for our local user.
    For the port the acl is like this : acl Safe_ports port 1025-65535
    For the domain the acl is like this : acl tstdomain dstdomain_regex \.testdomain.com$
    Now what I want to have is if a user doesn't have authentication, he/she can still access local webpage in our server, such as webserver or Oracle E-Business Suite.
    I'd tested, using a user that doesn't have authentication, and can access all my server if the domain doesn't have any port but it didn't work for Oracle E-Business Suite, because to access the format is like http://hostname.domain_name:port_number.
    Is there anything I need to add/change? thanks.

    TommyReynolds wrote:
    Do you have squid listening on the {font:Courier}:port_number{font}? There is an entry for that in the squid config file.Hi Tommy,
    you mean beside the standard port to listen I must add another port to listen? So instead of having :
    http_port 3128
    I must have :
    http_port 3128
    http_port 8000
    in my squid.conf?
    Thanks
    Had tried but that thing didn't work.
    If I bypass squid then the connection to oracle ok. Even I entered username and password still can't access oracle but other web is ok. So something need to be done in squid. Anyone can help? Thanks.
    Edited by: user_apps on Jul 15, 2010 8:54 PM

  • APEX squid very slow

    Hi
    I install Centos 6.2 X64 + Oracle Database 11g Express Edition + upgrade Apex 4.1.1
    default instalation
    everything is OK, but when I use proxy server SQUID 2.6 (I must)
    speed is 10 times slower (it does work but very slow).
    Any help or advise is appreciated.
    Mark

    Hi,
    I had performance issues when using Apache as a reverse proxy. Forcing HTTP/1.0with no keepalive solved the problems for me.
    See also http://www.moeding.net/index.php?url=archives/29-Garbled-output-with-Apache-mod_proxy.html
    Hope it helps,
    stephan

  • Squid+Solaris10 zone+LDAP helpers --- make all problem

    Hi
    I have a blocking problem with the combination in subject.
    I need to run Squid in a Solaris 10 zone with basic auth on ldap dir. server.
    Actually my platform is sun fire x2200 (Amd 64) and Solaris 10 11/06
    with the last patch cluster just applied.
    I just installed from solaris official packages openldap-lib, gcc,
    gcc-runtime-libs, ecc ecc.
    and the source of squid come from the solaris companion cd (formally
    squid-2.5.STABLE7)
    My ./configure is
    bash-3.00# ./configure --prefix="/opt/products/squidOK"
    enable-storeio="null" enable-auth="basic"
    --enable-basic-auth-helpers="LDAP"
    --enable-external-acl-helpers="ldap_group"
    the output gone ok.. and then i run an
    bash-3.00# make all
    so it work for some seconds and then it exit with this output (I APOLOGIZE FOR THE LENGTH OF ATTACHMENT!!):
    Making all in icons
    Making all in errors
    Making all in doc
    Making all in helpers
    Making all in basic_auth
    Making all in LDAP
    source='squid_ldap_auth.c' object='squid_ldap_auth.o' libtool=no \
    depfile='.deps/squid_ldap_auth.Po' tmpdepfile='.deps/squid_ldap_auth.TPo' \
    depmode=gcc3 /bin/sh ../../../cfgaux/depcomp \
    gcc -DHAVE_CONFIG_H -I. -I. -I../../../include -I../../../include -g
    -Wall -c `test -f squid_ldap_auth.c || echo './'`squid_ldap_auth.c
    squid_ldap_auth.c: In function `open_ldap_connection':
    squid_ldap_auth.c:248: error: `LDAP_OPT_SUCCESS' undeclared (first use
    in this function)
    squid_ldap_auth.c:248: error: (Each undeclared identifier is reported only once
    squid_ldap_auth.c:248: error: for each function it appears in.)
    squid_ldap_auth.c:253: warning: implicit declaration of function
    `ldap_start_tls_s'
    *** Error code 1
    make: Fatal error: Command failed for target `squid_ldap_auth.o'
    Current working directory /opt/sfw/src/squid-
    2.5.STABLE7/helpers/basic_auth/LDAP
    *** Error code 1
    The following command caused the error:
    set fnord ; amf=$2; \
    dot_seen=no; \
    target=`echo all-recursive | sed s/-recursive//`; \
    list='LDAP'; for subdir in $list; do \
    echo "Making $target in $subdir"; \
    if test "$subdir" = "."; then \
    dot_seen=yes; \
    local_target="$target-am"; \
    else \
    local_target="$target"; \
    fi; \
    (cd $subdir && make $local_target) \
    || case "$amf" in *=*) exit 1;; k) fail=yes;; *) exit 1;; esac; \
    done; \
    if test "$dot_seen" = "no"; then \
    make "$target-am" || exit 1; \
    fi; test -z "$fail"
    make: Fatal error: Command failed for target `all-recursive'
    Current working directory /opt/sfw/src/squid-2.5.STABLE7/helpers/basic_auth
    *** Error code 1
    The following command caused the error:
    set fnord ; amf=$2; \
    dot_seen=no; \
    target=`echo all-recursive | sed s/-recursive//`; \
    list='basic_auth ntlm_auth digest_auth external_acl'; for subdir in $list; do \
    echo "Making $target in $subdir"; \
    if test "$subdir" = "."; then \
    dot_seen=yes; \
    local_target="$target-am"; \
    else \
    local_target="$target"; \
    fi; \
    (cd $subdir && make $local_target) \
    || case "$amf" in *=*) exit 1;; k) fail=yes;; *) exit 1;; esac; \
    done; \
    if test "$dot_seen" = "no"; then \
    make "$target-am" || exit 1; \
    fi; test -z "$fail"
    make: Fatal error: Command failed for target `all-recursive'
    Current working directory /opt/sfw/src/squid-2.5.STABLE7/helpers
    *** Error code 1
    The following command caused the error:
    set fnord ; amf=$2; \
    dot_seen=no; \
    target=`echo all-recursive | sed s/-recursive//`; \
    list='lib scripts src icons errors doc helpers'; for subdir in $list; do \
    echo "Making $target in $subdir"; \
    if test "$subdir" = "."; then \
    dot_seen=yes; \
    local_target="$target-am"; \
    else \
    local_target="$target"; \
    fi; \
    (cd $subdir && make $local_target) \
    || case "$amf" in *=*) exit 1;; k) fail=yes;; *) exit 1;; esac; \
    done; \
    if test "$dot_seen" = "no"; then \
    make "$target-am" || exit 1; \
    fi; test -z "$fail"
    make: Fatal error: Command failed for target `all-recursive'
    bash-3.00#
    Any Idea??
    A lot of thanks for any useful suggest.
    Fabio

    I don't know the cause, but i have a workaround.
    Extract ParamImpl.class file from
    D:\ORACLE\iSuites\panama\lib\panama_core.zip and put it in D:\ORACLE\iSuites\Apache\Jserv\servlets\oracle\panama
    Type http://<servername>/servlet/oracle.panama.ParamImpl in your browser's location .
    You should be able to access the Request Manager site.

  • Internet for clients through squid

    i have proxy-server on linux.Squid.
    my clients on WinXP.
    I want to make internet for the whole localnet,but only several users can has it.i dont know why.
    On the same computer in the same group one user has access to the internet,another doesn't (the same ip)
    what can i do?
    /etc/squid/squid.conf
    acl LOCAL src 10.0.3.0/24
    acl BANNER url_regex -i banner reklama linkexch banpics us\.yimg\.com [\./]ad[s]
    acl BANNERS url_regex "/etc/squid/banners"
    http_access deny BANNERS
    http_access deny BANNER
    http_access allow LOCAL
    http_access deny all

    Now I've got the problem, that the clients got only
    internet access, when the DSL-Port (ppp0) is on first
    place in the hierarchy of ethernet ports in the
    network-prefpane.
    It's a while since I configured 2 NICs but I seem to remember that older servers (maybe 10.3?) defaulted to using the first in that list as the 'internet' connected one. However, in 10.4 this is supposed to be indicated in Server Admin NAT pane (External Network Interface). Maybe once initially configured it has difficulty changing its config files to an alternative?
    This is a problem because when i open the workgroup
    manager, it gets the ISP hostname instead of the
    servers hostname (i.e. "Location:
    hostname.isp.com/LDAPv3/127.0.0.1).
    I do remember that. However, it didn't seem to have any effect on any other services - just an annoyance.
    I wonder if you could 'cheat' and create a false reverse zone & PTR record in server's own DNS for your ext IP? Then, when it looks up the IP address, it finds your own server name...
    -david

Maybe you are looking for

  • Won't Open. At all.

    I've never used AppleScript before, and I tried to open it for the first time, and it won't open. The first time I tried to open it, the animation happened, but it never opened. I rebooted the computer and the second time I opened it it jumped up and

  • Iphone plays music out the speakers when headset/aux cable unplug

    Either when I'm listening to music in iphone from aux in the car, then I stop the music and unplug the phone... music starts playing from the speakers. This happens, even after I had not used the phone at all (no music, or calling). Usually just unpl

  • UnHappy With Built in iSight

    I have a macbook and im kind of unhappy with the built in iSight. I think it is awsome idea for location but the quality is not that great. Ive seen many pictures on apples website showing confrences but unfortunatly my iChat conferences are always b

  • Camera Orientation in Air for android

    Hello, i look for a way to setting the camera orientation. If i get the camera , and attach it to a video, the camera is always on landscape orientation. If i try to rotate the video to have a pseudo portrait orientation, nothing appear on the video.

  • Looking for older version of Itunes to run on Pentium(R) 4 CPU 2.6GHZ Windows XP

    looking for older version of iTunes to run on Pentium(R) 4 CPU 2.6GHZ Windows XP