Support for large blacklist in web proxy server
I am looking at a way of loading a very large blacklist file (1 million entries). Since Apache looks up each entry in the DNS when it loads, the built in server in Mac OS X Server 10.4 may not be the best option.
Any suggestions as to the best solution?
I guess I wondered how Apache handles that many entries. For a start, you can't load the blacklist into Apache using Workgroup Manger---it grinds for a few minutes then quits, having run out of memory (according to console). Then, when I edited the blacklist manually into the http.conf file and started Apache---nothing happened. At least, several minutes later, web services had still not started. At that point I left and went home. (And posted my query to Discussions). That was last night.
I have just confirmed that it still hasn't come back after running overnight, so I guess I answered that part of my own question. I was looking at squid myself. It's what used to run on this server, but when Apple enabled web proxying I dropped back to the pure Apple supported method. Now it looks as if I have to add squid back in, with the extra process that goes along with that.
Similar Messages
-
Can i setup a secure reverse proxy using sun one web proxy server and windows 2000?
I've tried this on IPlanet Proxy 3.6 and, after reading the documentation, realized that SSL is not supported on the Windows platform. So I'm asking if it is supported using Sun One Web Proxy Server
Hi,
Yes, What you say is right.
"The NT and Windows 2000 versions of iPlanet Web Proxy Server 3.6 do not support SSL".
Sun One Web Proxy Server is as same as iPlanet webproxy server.
May be in future relase of proxy server SSL will be supported in Win2000.
Regards,
Dakshin.
Developer Technical Support
Sun Microsystems
http://www.sun.com/developers/support. -
Why doesn't Sun ONE Web Proxy Server support full replication?
Sun believes caching on-demand is a much more appropriate model for either the World Wide Web or an intranet. Common indexes should be distributed, but data can (and should) be stored wherever is most appropriate on the network. If Proxy Servers are deployed, there will be a 50 percent to 75 percent chance that the document will be cached locally and no chance of getting stale data.
Sun ONE Web Proxy Server uses sophisticated statistical analysis to store the documents most likely to be needed. It also manages document expiry and version control, and by default checks the home server every time a document is requested. Full replication like that performed by other softwares presumes that each document needs to be fully replicated on every server. (Imagine doing that on the Web!) This model limits the scalability of the infrastructure, and requires many more servers, more hardware, and more management complexity. More importantly, it increases the likelihood of getting stale data. A document checked in at one location may take a day or more to be fully replicated around the world.If you have a support contract, get in touch with a support engineer. We've run into a bug related to following referrals in the "off-the-shelf" version of the proxy server. I believe there is a hotfix that solves the issue.
-
Is iPlanet Web Proxy Server support OpenLdap authentication ?
Do you know Is iPlanet Web Proxy Server support OpenLdap authentication ?
Thanks
Regards,Hi
This as per the HTTP/1.1 RFC (RFC2616)
The Connection general-header field allows the sender to specify options that are desired for that particular connection and MUST NOT be communicated by proxies over further connections.
The Connection header has the following grammar:
Connection = "Connection" ":" 1#(connection-token)
connection-token = token
HTTP/1.1 proxies MUST parse the Connection header field before a message is forwarded and, for each connection-token in this field, remove any header field(s) from the message with the same name as the connection-token. Connection options are signaled by the presence of a connection-token in the Connection header field, not by any corresponding additional header field(s), since the additional header field may not be sent if there are no parameters associated with that connection option.
Read the following at
http://www.w3.org/Protocols/rfc2616/rfc2616-sec8.html#sec8.1.3
and
http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.10
Regards
Nagendra HK -
How would a corporation deploy Sun ONE Web Proxy Server?
A corporation should deploy Sun ONE Web Proxy Server at the following key places:
* The Internet gateway: Sun ONE Web Proxy Server deployed just behind the firewall facilitates access to the Internet and reduces response times and communications expense.
* Major sub-network connections: Marketing, Sales, Product Development, Human Resources, and Finance departments might have their own subnetworks. An Sun ONE Web Proxy Server deployed at each subnet can reduce traffic on the corporate backbone.
* Remote offices that are disconnected from the internal network: Sun ONE Web Proxy Server can provide a quick mechanism for replicating content when necessary, providing better company integration and increasing network performance without large capital and communications expense.
* Internationally: Outside the United States, communications bandwidth is typically much more expensive, making Sun ONE Web Proxy Servers even more cost effective. Every international office can make use of an Sun ONE Web Proxy Server.
* Outside the firewall as a Web server substitute in reverse proxy configuration: This protects information on the secure Web server behind the firewall and offers load balancing via caching.http://wwws.sun.com/software/download/products/3ef1fcb5.html
If u wait for a week or so, SP4 will also be there.
Maneesh -
Socks services errors in web proxy server
Using SunOne web proxy server 3.6+sp1, the socks service frequently out of service. Sometime its process is still alive , but can't response the client request; sometime the process is gone! The following is the errors log:
[25/Oct/2002:11:18:06] 8269 debug: io_loop: killing tunnel after rollover, lastactivity == 1966619898,PR_IntervalNow says 2026622109
[25/Oct/2002:11:20:31] 8269 debug: io_loop: killing tunnel after rollover, lastactivity == 1981101717,PR_IntervalNow says 2041102282
[25/Oct/2002:11:20:48] 754 error: unknown request type 0x47 from 10.160.8.159:30 83
[25/Oct/2002:11:41:07] 14946 debug: ACCEPT RETURNED NULL! io_total = 63 dead =-1
Any infomation is welcome!what's the software name of socks? how i can download it?
you mean it's not good?
And the following is the issue in detail:
The socks service frequently out of service. Sometime its process is still alive , but
can't response the client request; sometime the process is gone.It occurs once a
day, and after restart, its go away. And the last issue about must reconnect the gameroom
is gone now, and was identified as the network's problem.
mangus.conf:
#ServerRoot /iPlanet/proxy/proxy-proxy-proxy
ServerName proxy
ServerID proxy-proxy
Address 10.160.1.14
Port 8080
User root
LoadObjects obj.conf
RootObject default
ErrorLog /iPlanet/proxy/proxy-proxy-proxy/logs/errors
LDAPConnPool 5
SearchDepth 30
Dyngroups ON
SearchTimeLimit 30
BindTimeLimit 15
LdapCheckUp 30
CertificateChecking OFF
PidLog /iPlanet/proxy/proxy-proxy-proxy/logs/pid
MaxProcs 1024
ProcessLife 128
DNS on
Security off
Ciphers rc4,rc4export,+rc2,+rc2export,+des,+desede3
SSL3Ciphers
rsa_rc4_128_md5,rsa_3des_sha,+rsa_des_sha,+rsa_rc4_40_md5,+rsa_rc2_40
md5,-rsanull_md5
ACLFile /iPlanet/proxy/httpacl/generated.proxy-proxy-proxy.acl
obj.conf
# Netscape Communications Corporation - obj.conf
# You can edit this file, but comments and formatting changes
# might be lost when the admin server makes changes.
Init funcs="icp-init,icp-route" shlib="/iPlanet/proxy/plugins/icp/icp.so" fn="load-
modules"
Init funcs="pa-init-proxy-array,pa-init-parent-array,pa-enforce-internal-routing,pa-set-
parent-route,pa-set-member-status"
shlib="/iPlanet/proxy/plugins/parray/parray.so" fn="load-modules"
Init fn="load-types" mime-types="mime.types"
Init access="/iPlanet/proxy/proxy-proxy-proxy/logs/access" format.access="%
Ses->client.ip% - %Req->vars.pauth-user% [%SYSDATE%] \"%Req->reqpb.proxy-
request%\" %Req->srvhdrs.clf-status% %Req->vars.p2c-cl%" fn="flex-init"
Init fn="init-proxy" timeout="300" timeout-2="15"
Init fn="init-dns-cache" status="on" dir="/tmp" semas="4" size="4096"
expire="28800"
Init fn="init-cache" status="on" ndirs="256" dir="/iPlanet/proxy/cache"
Init fn="init-partition" status="on" name="p1" dir="/iPlanet/proxy/cache/p1" max-
size="8000" min-avail="5"
Init status="on" dir="/iPlanet/proxy/cache/p2" name="p2" max-size="8000" min-
avail="5" fn="init-partition"
Init status="on" dir="/iPlanet/proxy/cache/p3" name="p3" max-size="8000" min-
avail="5" fn="init-partition"
Init status="on" dir="/iPlanet/proxy/cache/p4" name="p4" max-size="8000" min-
avail="5" fn="init-partition"
Init status="on" dir="/iPlanet/proxy/cache/p5" name="p5" max-size="8000" min-
avail="5" fn="init-partition"
Init status="on" dir="/iPlanet/proxy/cache/p6" name="p6" max-size="8000" min-
avail="5" fn="init-partition"
Init status="on" dir="/iPlanet/proxy/cache/p7" name="p7" max-size="8000" min-
avail="5" fn="init-partition"
Init status="on" dir="/iPlanet/proxy/cache/p8" name="p8" max-size="8000" min-
avail="5" fn="init-partition"
Init fn="init-urldb" status="on" dir="/iPlanet/proxy/cache/urldb"
Init fn="init-batch-update" status="off" dir="/tmp" conf-file="bu.conf"
Init status="on" dir="/tmp" hash-size="17191" table-size="85955" expire="3600"
fn="init-pauth-cache"
Init config_file="icp.conf" status="off" fn="icp-init"
Init set-status-fn="pa-set-member-status" file="/iPlanet/proxy/proxy-proxy-
proxy/config/parray.pat" status="off" fn="pa-init-proxy-array"
Init set-status-fn="pa-set-member-status" file="/iPlanet/proxy/proxy-proxy-
proxy/config/parent.pat" status="off" fn="pa-init-parent-array"
<Object name="default">
NameTrans fn="map" from="file:" to="ftp:" cont="yes"
NameTrans fn="pfx2dir" from="/ns-icons" dir="/iPlanet/proxy/ns-icons" name="file"
NameTrans fn="pac-map" from="/" to="/iPlanet/proxy/proxy-proxy-
proxy/pac/proxy.pac" name="file"
PathCheck fn="url-check"
PathCheck fn="check-acl" acl="proxy-proxy-proxy_formgen-READ-ACL_deny-
5619"
PathCheck fn="check-acl" acl="proxy-proxy-proxy_formgen-WRITE-ACL_deny-
5619"
Service fn="deny-service"
AddLog fn="flex-log" name="access" iponly="1"
AddLog fn="urldb-record"
</Object>
<Object name="file">
PathCheck fn="unix-uri-clean"
PathCheck fn="find-index" index-names="index.html"
ObjectType fn="type-by-extension"
ObjectType fn="force-type" type="text/plain"
Service fn="send-file"
</Object>
<Object ppath="ftp://.*">
ObjectType fn="cache-enable"
ObjectType fn="cache-setting" max-uncheck="21600"
Service fn="proxy-retrieve"
</Object>
<Object ppath="http://.*">
ObjectType fn="cache-enable"
ObjectType fn="cache-setting" max-uncheck="7200" lm-factor="0.100"
Service fn="proxy-retrieve"
</Object>
<Object ppath="https://.*">
Service fn="proxy-retrieve"
</Object>
<Object ppath="gopher://.*">
ObjectType fn="cache-enable"
ObjectType fn="cache-setting" max-uncheck="14400"
Service fn="proxy-retrieve"
</Object>
<Object ppath="connect://.*:443">
Service fn="connect" method="CONNECT"
</Object>
<Object ppath="connect://.*:563">
Service fn="connect" method="CONNECT"
</Object>
socks5.conf
# Netscape Communications Corporation - socks5.conf
# You can edit this file, but comments and formatting changes
# might be lost when the admin server makes changes.
auth 10.160.0.0/255.255.224.0 - -
auth - - u
permit u,- - - - - - -
set SOCKS5_BINDPORT 1080
set SOCKS5_LOGFILE /iPlanet/proxy/proxy-proxy-proxy/logs/socks5.log
set SOCKS5_DEBUG 1
set SOCKS5_WORKERS 100
set SOCKS5_ACCEPTS 5
set SOCKS5_NOIDENT
set SOCKS5_NOREVERSEMAP
socks5.log
[19/Nov/2002:11:31:14] 830 debug: request from 10.162.169.176:2305
[19/Nov/2002:11:31:15] 830 debug: auth: userpass
[19/Nov/2002:11:31:15] 830 debug: authentication type 2 successful for hs
[19/Nov/2002:11:31:15] 830 debug: request 1 to jason314.3322.org:21
[19/Nov/2002:11:31:15] 830 request: hs 5 connect: ok 10.162.169.176:2305 ->
jason314.3322.org:21
[19/Nov/2002:11:31:15] 831 debug: request from 10.162.169.176:2306
[19/Nov/2002:11:31:15] 831 debug: auth: userpass
[19/Nov/2002:11:31:15] 831 debug: authentication type 2 successful for hs
[19/Nov/2002:11:31:15] 831 debug: request 1 to jason314.3322.org:21
[19/Nov/2002:11:31:15] 831 request: hs 5 connect: ok 10.162.169.176:2306 ->
jason314.3322.org:21
access
10.160.115.222 - scy-tl [19/Nov/2002:11:32:33 +0800] "GET
http://www.eefoo.com/c
ommunity/images/bbs0gg.gif HTTP/1.0" 200 146
10.160.115.79 - whh-tl [19/Nov/2002:11:32:33 +0800] "GET
http://fayhoo.com/image
/blank HTTP/1.0" 404 276
10.160.19.151 - lhb [19/Nov/2002:11:32:33 +0800] "POST HTTP://rich-bj.stockstar.
com:8892/1 HTTP/1.0" 200 81
10.160.160.130 - gsp-ld [19/Nov/2002:11:32:33 +0800] "GET
http://images.sohu.com
/cs/button/sony/12060.swf?clickthru=http://goto.sohu.com/goto.php3?code=sony-
sh2
40-fr12050 HTTP/1.0" 200 8302
10.160.23.141 - wyn [19/Nov/2002:11:32:33 +0800] "POST HTTP://rich-
bj.stockstar.
com:8891/1 HTTP/1.0" 200 81
10.161.159.40 - - [19/Nov/2002:11:32:33 +0800] "PUT http://204.177.92.204/w/getc
lientid?srv=china_sex&ver=0,0,0,62 HTTP/1.0" 407 271
10.160.17.108 - weizc [19/Nov/2002:11:32:33 +0800] "GET
http://www.guosen.com/cg
i-bin/RHStockGraphics.dll?GetTLine?code=10000001&cx=150&cy=70&am=0
HTTP/1.0" 200
1004
10.161.130.3 - czy-ykj [19/Nov/2002:11:32:34 +0800] "GET http://ad4.sina.com.cn/
btn/dbtel-tlhp.swf HTTP/1.0" 304 -
10.161.159.40 - - [19/Nov/2002:11:32:34 +0800] "PUT http://204.177.92.204/w/getc
lientid?srv=china_sex&ver=0,0,0,62 HTTP/1.0" 407 271
errors
[19/Nov/2002:11:33:13] failure: for host 10.160.80.148 trying to GET http://myjh
xp.com/bbs/forums.cgi?forum=4, retrieve-exit-routine reports: proxy retrieve fai
led: Proxy server's network connection was refused by the server: myjhxp.com.
The server may not be accepting connections or may be busy. Try connecting
agai
n later.
[19/Nov/2002:11:33:13] warning: last-modified in future (not caching): Tue Nov 1
9 03:51:01 2002
[19/Nov/2002:11:33:13] failure: for host 10.160.80.148 trying to GET http://myjh
xp.com/bbs/forums.cgi?forum=4, retrieve-exit-routine reports: proxy retrieve fai
led: Proxy server's network connection was refused by the server: myjhxp.com.
The server may not be accepting connections or may be busy. Try connecting
agai
n later.
[19/Nov/2002:11:33:13] failure: for host 10.162.101.73 trying to GET ftp://202.1
15.144.37/software/special/WinPE-9down.rar, retrieve-exit-routine reports: proxy
retrieve failed: Proxy server's network connection was refused by the server:
202.115.144.37. The server may not be accepting connections or may be busy. Tr
y connecting again later.
[19/Nov/2002:11:33:13] warning: last-modified in future (not caching): Tue Nov 1
9 18:21:00 2002
[19/Nov/2002:11:33:13] warning: last-modified in future (not caching): Tue Nov 1
9 03:51:01 2002
The logs is so large, i only can give you some of them typically.
and the types of log's record when problem occurs i have supplied to you, also i
pasted here
[25/Oct/2002:11:18:06] 8269 debug: io_loop: killing tunnel after rollover, lastactivity
== 1966619898,PR_IntervalNow says 2026622109
[25/Oct/2002:11:20:31] 8269 debug: io_loop: killing tunnel after rollover, lastactivity
== 1981101717,PR_IntervalNow says 2041102282
[25/Oct/2002:11:20:48] 754 error: unknown request type 0x47 from
10.160.8.159:30 83
[25/Oct/2002:11:41:07] 14946 debug: ACCEPT RETURNED NULL! io_total = 63
dead =-1
------------------------------------------------------------------ -
Web Proxy Server on Windows 2003
Hello,
We presently run iPlanet Web Proxy Server 3.6 SP2 on Windows 2000.
We would like to upgrade to v3.6 SP6 (the latest), but cannot seem to get it working on Windows Server 2003.
Is it supported on Windows 2003 ? Has anyone got it working on Windows 2003 ?
regards,
Mark LawrenceMore information.
The exact problem is that when we try to go to the Admin page http://localhost:8000 we are prompted for login, but then we get "there has been an internal error"
In the event log we get "Faulting application index.exe, version 0.0.0.0, faulting module msvcrt.dll, version 7.0.3790.0, fault address 0x0002d3bd.
Mark -
Hello...
I need a little help configuring this Airport Extreme as a Wireless Access point, serving a bunch of iPads via the schools LAN connection for which traffic is routed through a Web Proxy Server. I've been told to set it up as a bridge as the PC LAN and Proxy are providing NAT but can't seem to crack it.
The WiFi side of things is up and running, we can all see and connect to the AP.
I'm told that it was working fine before the school break in the summer, then something was changed and the position of the AP altered.
The Web Proxy Server is normally accesses from the PC's via the following address... IP > 10.12.14.122 // PORT > 3128
I'm not certain where the Proxy settings need to go in the new 'simple' Airport Utility, can't see a place for Port at all?!?
(I've taken the AP home, tried it on my home network and it works fine, so we know its all OK and its down to config).
Here are some screen images of the settings as they are, that do not work.
(I was trying a few different settings hence the screens like Static/DHCP etc.)
Any help is greatly appreciated.Hi Daniel,
>>Now when I go on a client site my internet access on the host laptop is via a web proxy on a LAN connection.
"LAN connection" means physical NIC (Realtek PCIe GBE Family Controller) ?
" web proxy " means adding a proxy server IP in IE ?
Bounding the NIC (Realtek PCIe ) to external virtual switch then connect all VMs to that external virtual switch ,still can not access ?
Best Regards
Elton Ji
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
Released :: Web Proxy Server 4.0.13
Hi-
We are delighted to announce Web Proxy Server 4.0.13 has been released!
It can be publicly downloaded at: [http://tiny.cc/ZdtZS]
Release Notes: [http://docs.sun.com/app/docs/doc/821-1321|http://docs.sun.com/app/docs/doc/821-1321]
This release addresses around 30 unique bugs that includes new platform support, critical security vulnerabilities & few new features.
New Platform Support:
Microsoft Windows 2008 Enterprise Edition
Critical Security Vulnerabilities:
SSL/TLS renegotiation vulnerability (CVE-2009-3555)
Digest authentication buffer overflow [1]
TRACE heap overflow [1]
New Features:
Session-Based-Authentication
Error rewriting capability based on back-end server response
* Support for LDAP search filters*
All users of Web Proxy Server 4.0 through Web Proxy Server 4.0.12 are encourage to upgrade.
Thank you to the entire product team for another great release!
On Behalf of Web Proxy Team!
[1]: Refer Latest Alert @ [http://sunsolve.sun.com/search/document.do?assetkey=1-66-275850-1|http://sunsolve.sun.com/search/document.do?assetkey=1-66-275850-1]Good news.
Thanks for the post.
Can you point to documentation about session based authentication and how it works?
I am interested in learning more about how it works with proxy 4.0.13.
TIA.
-AJ -
Sun Java Web Proxy Server Routing to another Proxy Server
hello every body
i have installed Sun java web proxy server and we are get internet services from anotyher proxy server.
how route SOCKS (Ports) to another proxy server)
I mean 8080 web browsing is ok but my socks applicaiton like outlook is not working. how to Route my Sun Java Web proxy Server Socks Server to another Proxy Server.
Please reply
best regards
Aamir Mughal
[email protected]Dear ahmad@bzu,
I suspect that your download is corrupted. Check the file size ( for me it shows up 89,328KB(and the installation went smooth). So a possible solution should be to download again and try the installation. -
Web Proxy Server Load Balancing
I deployed Sun Jave Web Proxy Server 4.0 as a Reverse Proxy. I would also like to use it as a load balancer. As per the instructions, I configured the obj.conf file as shown below
Route fn="set-origin-server" server="https://xx.xx.xx.xx" server="https:yy.yy.yy.yy" sticky-cookie="JSESSIONID" sticky-param="jsessionid" route-hdr="Proxy-jroute" route-cookie="JROUTE" rewrite-host="true" rewrite-location="true" rewrite-content-location="true"
But, it is not doing load balancing. It always sends to the first server (xx.xx.xx.xx). I guess that is because I used mapping as follows:
NameTrans fn="reverse-map" from="https:xx.xx.xx.xx" to="https://server.net" rewrite-location="true" rewrite-content-location="true"
NameTrans fn="redirect" from="http://server" url="https://xx.xx.xx.xx"
NameTrans fn="map" from="https://server" to="https://xx.xx.xx.xx" rewrite-host="true" name="pa-server-farm1" NameTrans fn="map" from="/" to="https://xx.xx.xx.xx" rewrite-host="true" name="pa-server-farm1"PathCheck fn="url-check"ObjectType fn="block-ip"
ObjectType fn="cache-enable" cache-auth="1" cache-https="1" query-maxlen="0" min-size="0" Service fn="proxy-retrieve"
I don't understand how routing and mapping work togother. Any help in this regard is appreciated.Motor,
the following is from the Web Proxy Sever Administration guide. Please, check the last paragraph for the explanation. Any how, the problem is simple. I am using the Proxy Server as the Reverse proxy. And at the same time, I would like to use two origin servers (for load balancing) instead of one. How do I make both load balancing and reverse proxy functions work together?
Thanks
To Create Regular or Reverse Mapping
Access the Server Manager, and click the URLs tab.
Click the Create Mapping link.
The Create Mapping page is displayed.
In the page that appears, provide the source prefix and source destination for the regular mapping,
for example,
Source prefix: http://proxy.site.com
Source destination: http://http.site.com/
Click OK.
Return to the page and create the reverse mapping, for example,
Reverse mapping:
Source prefix: http://http.site.com/
Source destination: http://proxy.site.com/
To make the change, click OK.
Once you click the OK button, the proxy server adds one or more additional mappings. To see the mappings, click the lView/Edit Mappings link. Additional mappings would be in the following format:
from: /
to: http://http.site.com/
These additional automatic mappings are for users who connect to the reverse proxy as a normal server. The first mapping is to catch users connecting to the reverse proxy as a regular proxy. The �/� mapping is added only if the user doesn't change the contents of the Map Source Prefix text box provided automatically by the Administration GUI. Depending on the setup, usually the second mapping is the only one required, but the extra mapping does not cause problems in the proxy. -
Web Proxy Server 3.6 with Administration Server using SSL connection
In your manual: Administrator�s Guide Sun� ONE Web Proxy Server Version 3.6 SP3 for UNIX you wrote:
You should also make the administrative connection a mandatory SSL connection
Instead of using http://servername:port_number
I need to use:
https://servername:port_number
How can I do that?
Thanx
Gian MarioHI
To enable https for the admin,
Create a certifcate for the proxy admin
Next, From 'Admin Preferences', click on 'Encryption on/off'
From the 'Encryption on/off'; screen that appears, click on the 'on' radio button. Select the certficate from the alias list and click on OK to enable encryption for the cerficate you have installed for your admin server.
Now restart you admin server.
You wil now be able to connect to your admin using https
Thanks
Nagendra HK -
Sun access manager 7.1 + sun web proxy server 4
Hi all,
we have installed policy agent 2.2 on the web proxy server 4.0.5. and AM is installed on another machine with ver 7.1.
We are trying to prtectect an java application.
ex:// http://stonycarter.com:9080/med
when we hit this url we get redirected to AM for login and after login we get page not found error and it would never take us to the application page.
Pls, let us know how to configure the application. ie, how to achive above task.Hi,
Here is what i found out
2008-06-14 18:26:12.432 Debug 4655:f4fb88 PolicyAgent: am_web_is_access_allowed(): Successfully logged to remote server for
GET action by user SMHOM0690 to resource https://beta.stonycarter.com:443/med/.
2008-06-14 18:26:12.432 Info 4655:f4fb88 PolicyAgent: am_web_is_access_allowed()(https://beta.stonycarter.com:443/med/, GET) returning status: access denied.
2008-06-14 18:26:12.432 Debug 4655:f4fb88 PolicyAgent: validate_session_policy() access denied to SMHOM0690
2008-06-14 18:26:12.433MaxDebug 4655:f4fb88 PolicyAgent: am_web_get_url_to_redirect(): goto URL is https://beta.stonycarter.com:443/med/
2008-06-14 18:26:12.433 Info 4655:f4fb88 PolicyAgent: do_redirect() Status code= access denied.
2008-06-14 18:26:12.433MaxDebug 4655:f4fb88 PolicyAgent: validate_session_policy(): Completed handling request with status: a
ccess denied.
pls suggest solution. -
Configuring authentication in web proxy server
We are using iPlanet Web Proxy Server 3.6 on WindowsNT 4.0
After installation of iplanet web proxy server 3.6, and making a request for internet access through browser it does not ask for authentication. There is no pop up window received for user name password to authenticate users.
Upon creating a group and then adding a few members (user1,user2,user3 etc.) to it, we configure rules to restrict user access to internet in the Global settings tab. After saving all the configuration and taking a restart of the proxy server, when we try to log on to internet from a
different client machine (browser) using an existing user id and password, it does not prompt us for user name and password even though the option "restrict access" in global setting is properly set.
My first question......
=>DOES iPlanet Web Proxy allow for such authentication pop up ??
=> If Yes, then kindly let us know where we have gone wrong in configuring the server.
We are NOT using any webserver or LDAP to authenticate users. No SSL is enabled.
Please suggest.We are using iPlanet Web Proxy Server 3.6 on WindowsNT 4.0
After installation of iplanet web proxy server 3.6, and making a request for internet access through browser it does not ask for authentication. There is no pop up window received for user name password to authenticate users.
Upon creating a group and then adding a few members (user1,user2,user3 etc.) to it, we configure rules to restrict user access to internet in the Global settings tab. After saving all the configuration and taking a restart of the proxy server, when we try to log on to internet from a
different client machine (browser) using an existing user id and password, it does not prompt us for user name and password even though the option "restrict access" in global setting is properly set.
My first question......
=>DOES iPlanet Web Proxy allow for such authentication pop up ??
=> If Yes, then kindly let us know where we have gone wrong in configuring the server.
We are NOT using any webserver or LDAP to authenticate users. No SSL is enabled.
Please suggest. -
Does Sun ONE Web Proxy Server have built-in log analysis tools? What kind o
Sun ONE Web Proxy Server automatically logs all requests using either the common log-file format or an extended log-file format. The extended log-file format includes the referrer field and user agent. You can also create your own log file format by selecting which HTTP fields you would like to log. A built-in log analysis program includes reports such as total number of requests, total bytes transfered, most commmon URLs requested, most common IP addresses making requests, performance during peak periods, cache hit rates, and estimated response time reduction. The items logged and the analysis program are completely configurable using the server manager's HTML form.
Sun Java System Web Server is a web server; it serves web pages to web clients. Sun Java System Web Proxy Server, on the other hand, is a web proxy server; it routes requests/responses between web servers and web clients.
You can configure Web Server to act as a simple reverse proxy by installing the Web Server 6.1 Reverse Proxy Plugin. This doesn't provide any of the forward proxy or caching proxy functionality found in Web Proxy Server.
Both Web Server 6.1 and Web Proxy Server 4.0 are supported on Solaris 10.
Maybe you are looking for
-
Mac Mail.app V.2.0.5 with OSX server's email don't play well sometimes
I have my own web, FTP, and email server. (OSX 10.4.4 Server). I've been managing my own server services since AppleShare V.6 .So I've done this a few times. I have set up an account for myself "nino" on the server that people email to, you know "[em
-
I have more "Other" than anything else on my phone. What is "other"?
Also, when I attempted to update to 7.02, I was told to transfer Purchased items to my library. Where do I find purchased items?
-
Estimated file size in Media Encoder too big by 8 GB, Why? Need to be accurate
I completed a 2 and a half hour project in Premiere Pro CS 5.5 at 1440 x 1080i I went to encode it through Media Encoder. (File ---- Export ------ Media) the box opened up and I set my settings. I encoded it at (CBR) I looked at the file size and it
-
Hello! I would like to know if anyone knows if it's possible to print out any document or form when the goods receipt is done. Thank you very much Regards, Leire
-
Hydraulic Cylinder force regulation PID CompactRIO
Hello I am a beginner student from Europe. I would like to create a force regulation in LabView. There is a hydraulic cylinder with a load cell in the end of the rod. I would like to create a simple PID regulation in LabView, I mean I type the force