TMG Web Proxy - Whitelisting MapQuest

Similar Messages

• Problem with TMG web Proxy Clients

  Hi
  I have a TMG 2010 in my network an clients can access to the internet with web proxy method there is a problem when they want to open translate.google.com and the can't open it(the connection has timeout) this problem is occur wen the want to open
  translate.google.com I can't understand what's the problem
  can anyone help me????
  alfONso

  Hi,
  You could use netmon trace to troubleshoot this issue. And the following blog might be help.
  http://blogs.technet.com/b/isablog/archive/2009/08/27/side-effects-of-incorrect-dns-configuration-on-isa-server-10060-connection-timeout-scenario.aspx
  Best Regards,
  Joyce
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• ForeFront TMG - Web Proxy Authentication

  Hi All! We have a Forefront TMG installed in single network adapter. We configure it as a WebProxy for the domain users. The proxy setting is distributed by GPO. So, we want to authenticate users to correctly set the web filtering (with websense ISA plugin).
  Well, the only way to have the correct authentication is to set "Require All user to Authenticate" (It's the correct behavior?). So, if we untick the switch all the users is recognized as "anonimous".  And if we have some user that
  it's not in our domain we want to permit the navigation with proxy. (for example with anonimous authentication..)
  Any help?

  On Wed, 9 Apr 2014 17:06:06 +0000, Michele Sandonini wrote:
  Hi All! We have a Forefront TMG installed in single network adapter
  TMG has a dedicated forum:
  https://social.technet.microsoft.com/Forums/forefront/en-US/home?forum=Forefrontedgegeneral
  Paul Adare - FIM CM MVP
  Lisp has all the visual appeal of oatmeal with fingernail clippings
  mixed in. -- Larry Wall

• DirectAccess force tunneling - Web proxy (TMG) needs authentication

  Hello,
  I have deployed a DirectAccess 2012 server using computer certificate authentication. The clients are connecting to corporate resources over the WAN usin DirectAccess. Forced tunneling is a requirement. The DirectAccess is only configured for IPHTTPS using
  a single NIC behind a firewall.
  But there is a TMG web proxy in the corporate network that authenticates users. When these users connect over the Internet using devices that have DirectAccess enabled, they are not able to visit any sites as TMG blocks the connection. In the TMG logs, I
  see that the reason it is dropping these web connections are because the traffic is coming from an 'anonymous' user as per the logs.
  The proxy requires user authentication.
  Can someone please advise?
  Thanks in advance,
  SinghP80

  Yes I was able to resolve this by using the command below on the DA server:
  Set-DAClientDNSConfiguration -DNSSuffix '.' -ProxyServer ProxyFQDN:PortNumber
  Hope this helps you as well. Please let me know. if it does.
  Regards,
  SinghP80

• Web Proxy Authentication using Kerberos or NTLM - ForeFront TMG

  Hi All
  I was hoping someone would be able to guide me on addressing an issue I have with authenticating MACs against the web proxy. I have scoured the internet and looked on the forums but I can't seem to find a solution to the problem I am experiencing.
  Our network consists and an AD domain, and a single TMG server 2010. The TMG server is enabled for integrated authentication for the Web Proxy. All the MACs have been added to the AD Domain, so all users logon as themselves. Authentication to various shares
  are granted using Kerberos - so part of the Kerberos infrastructure works.
  My Problem:
  Currently, my MAC clients are prompted for a username and password when accessing the internet within Firefox and Camino. If I use Safari I have my credentials twice as the keychains saves my credentials seperately, for HTTP and HTTPS traffic.
  Ideal Solution
  Since a kerberos ticket is issued to the user who has logged in by the domain controller, I would like to use kerberos to authenicate the user for web access.
  What I've done so far
  There is a feature within Firefox and Camino web browsers to enable trusted websites to use your kerberos ticket. If you open Mozilla, navigate to about:config and look for 'network.negotiate-auth.trusted-uris' and add various internal sites (not proxy).
  The authentication works perfectly using Kerberos as you can see the tickets that have been handed out using 'klist' and I'm not prompted for my username or password. If I disable it, it stops working and I am prompted for my username and password. I have
  tried typing in the proxy address, also tried putting in the proxy port too but to no success within the trusted-uris text field.  Maybe there is a different way of putting in the address?
  I have enabled Kerberos on the computer account in AD for the firewall (Trust this computer for delegation to any service (kerberos only)), but without any success. I must admit, I haven't rebooted the TMG server though.
  I hope someone can help me out, and really appreciate your time and support.
  Thanks
  Jamie

  Hi All
  I have resolved my issue. I added the SPN of HTTP/SERVERNAME & HTTP/IPADDRESSOFSERVER to the firewall computer account and replicated my changes and now I have authenication working on my MACS without any username and password prompts, apart
  from the user logging into the domain. Beautiful.
  https://community.mcafee.com/docs/DOC-2682 - This detailed article from McAfee helped me signfictantly.
  Cheers Anyway,
  Jamie

• HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied. )

  17:06:13 Synchronizer Version 14.0.6123
  17:06:13 Synchronizing Mailbox '[email protected]'
  17:06:13 Synchronizing Hierarchy
  17:06:13   4 folder(s) added to online store
  17:06:13   1 folder(s) updated in online store
  17:06:13 Synchronizing local changes in folder 'Inbox'
  17:06:13 Error synchronizing folder
  17:06:13 [80041004-0-0-430]
  17:06:13 Error with Send/Receive.
  17:06:13 There was an error synchronizing your folder hierarchy. Error : 80041004.
  17:06:13 Synchronizing server changes in folder 'Calendar'
  17:06:13 Synchronizing server changes in folder 'Contacts'
  17:06:13 
  17:06:13 
  *Request*       
  17:06:13 17:06:13:0590
  17:06:13 POST
  17:06:13  http://
  17:06:13 contacts.msn.com
  17:06:13 /ABService/ABService.asmx
  17:06:13 
  17:06:13 <ABFindAll xmlns="http://www.msn.com/webservices/AddressBook"> <abId>00000000-0000-0000-0000-000000000000</abId><abView>Full</abView><deltasOnly>false</deltasOnly></ABFindAll>
  17:06:13 
  *Response*  
  17:06:13 17:06:13:0870
  17:06:13 HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied.  )
  Via: 1.1 TMG
  Proxy-Authenticate: Negotiate
  Proxy-Authenticate: Kerberos
  Proxy-Authenticate: NTLM
  Connection: close
  Proxy-Connection: close
  Pragma: no-cache
  Cache-Control: no-cache
  Content-Type: text/html
  Content-Length: 707
  17:06:13 
  17:06:13 
  17:06:13 
  17:06:13 Error with Send/Receive.
  17:06:13 There was an error synchronizing a contacts folder. Error : 80004005.
  17:06:13 Synchronizing server changes in folder 'Drafts'
  17:06:13 Synchronizing local changes in folder 'Inbox'
  17:06:13 Error synchronizing folder
  17:06:13 [80041004-0-0-430]
  17:06:13 Synchronizing server changes in folder 'Sent Items'
  17:06:13 Synchronizing server changes in folder 'Deleted Items'
  17:06:13 Synchronizing server changes in folder 'Junk E-mail'
  17:06:13 Done
  17:06:13 
  17:06:13 
  *Request*       
  17:06:13 17:06:13:0870
  17:06:13 POST
  17:06:13  http://
  17:06:13 mail.services.live.com
  17:06:13 /DeltaSync_v2.0.0/Settings.aspx
  17:06:13 
  17:06:13 <?xml version="1.0" encoding="utf-8"?><Settings xmlns="HMSETTINGS:"><ServiceSettings><SafetySchemaVersion>1</SafetySchemaVersion><SafetyLevelRules><GetVersion/></SafetyLevelRules><SafetyActions><GetVersion/></SafetyActions><Properties><Get/></Properties></ServiceSettings><AccountSettings><Get><Options/><Properties/></Get></AccountSettings></Settings>
  17:06:13 
  *Response*  
  17:06:13 17:06:13:0870
  17:06:13 HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied.  )
  Via: 1.1 TMG
  Proxy-Authenticate: Negotiate
  Proxy-Authenticate: Kerberos
  Proxy-Authenticate: NTLM
  Connection: close
  Proxy-Connection: close
  Pragma: no-cache
  Cache-Control: no-cache
  Content-Type: text/html
  Content-Length: 707
  17:06:13 
  17:06:13 

  Hi,
  According to the log, it seems that TMG firewall denied the request and replied with an HTTP 407 response, indicating that proxy authentication was required. This was done because the Forefront TMG firewall did not have any access rules which would allow
  the anonymous request. Please check if you have configured related access rules.
  When did you recieve this log? Is there anyting wrong? Which authentication method you have used, Kerberos, NTLM or other? 
  It seems that each time a web proxy client requests a resource through a Forefront TMG firewall that requires NTLM authentication the client is actually denied twice during the transaction before being successfully authenticated and allowed access. When
  the Forefront TMG firewall is configured to use Kerberos there is only a single denied request and HTTP 407 response and then contact a domain controller and obtain a Kerberos ticket to present to the TMG firewall to gain access to the resource.
  If you configured the TMG clients with a certain proxy name, please make sure you typed the TMG's domain computer name only (not IP address nor alias).
  Best regards,
  Susie

• Web Proxy for client desktops

  I'm preparing to install Windows Server 2012 R2 Essential on a standalone server, and it will be the main host.  
  My question is whether there is a role/feature in this OS, that I can enable as a web proxy server for the network desktops, mainly to be used in IE proxy settings.  If so, where it is and any information on setup/config?
  Will it come with any web filtering function (e.g.whitelist/blacklist or keywords filter)?

  No, it does not include anything like this.
  Microsoft used to produce ISA Server / TMG but these were also discontinued.
  http://en.wikipedia.org/wiki/Microsoft_Forefront_Threat_Management_Gateway
  Robert Pearman SBS MVP
  itauthority.co.uk |
  Title(Required)
  Facebook |
  Twitter |
  Linked in |
  Google+

• Lync 2013 Edge & Web proxy

  Hi Everyone
  I'm having a little trouble getting my head around the setup for Lync external access.
  I have setup an ADFS server, Lync 2013 server(works internally), 2012 web proxy server(doing nothing) and an edge server(currently doing nothing).
  My understanding is that the Edge and Web proxy server are in "parallel", I.E, they both face the WAN as they perform different tasks.
  The problem I have is that I'm unsure how to map everything correctly, I also don't understand how an external Lync client will get it's config. If my domain setup is:
  something.domain.internal, and I would like to register a DNS entry externally as something.domain.external. How do I map those correctly via the web proxy and edge server? Sending the request via the firewall is easy enough, however I'm unsure how I'm supposed
  to define them on my servers. Is the Lync server supposed to know about the external URL? Or does it not care?

  Hi,
  The Edge Servers run the services that allow external access to IM and presence, conferencing, audio/video, and other media services. You can also configure the Edge Server to federate with other Lync Server and other XMPP deployments.
  Lync Server uses the reverse proxy to publish a number of features, such as conferencing meetings, conference join locations, the address book, distribution list expansion, downloading meeting content, device updates, Mobility services, and more. Any reverse
  proxy that can meet the requirements for publishing the necessary resource locations can be used.
  You just need to define the Edge information in topology builder and publish it. Then configure the server as defined in topology and install local configuration store, setup Lync components and assign certificate. Here is a topology that
  using private IP addresses and NAT.
  http://technet.microsoft.com/en-us/library/gg399001.aspx
  Here are other resource how to publish Lync Server web services
  http://blogs.technet.com/b/dodeitte/archive/2013/10/29/how-to-publish-lync-server-2013-web-services-with-windows-server-2012-r2-web-application-proxy.aspx
  https://social.technet.microsoft.com/wiki/contents/articles/9807.how-to-configure-forefront-tmg-2010-as-reverse-proxy-for-lync-server-2010.aspx
  Kent Huang
  TechNet Community Support

• Mac Adobe Flash Player not supporting Web Proxy Authentication

  Anyone else got an enterprise network where you use web proxies with web authentication and no traffic allowed out except through the proxies?
  You may need to be in the UK for this, but try accessing BBC iPlayer content - http://www.bbc.co.uk/iplayer and you should discover that the content won't play. the error says "This content doesn't seem to be working. Try again later.". The content will never work as the Mac version of Flash (currently 10.1.53.64) is not able to respond to web proxy authentication requests. The BBC use various streaming server which are randomly selected when a user starts a stream and they have no DNS. Just IP addresses. They don't publish a list for security reasons. So it is almost impossible to exempt all their servers from authentication.
  I've logged a bug with Adobe. If you have this issue too, please add a comment and vote so that they can begin to grasp the impact of this problem:
  https://bugs.adobe.com/jira/browse/FP-5161

  I have the same issues in Australia trying to access flash content from the ABC website. The strange thing is the content will play if your leave the browser open for 5min.
  After several packet data captures we identified that it has to do with the amount of time it takes the Mac timeout from the proxy before it plays the video content.
  No solution yet.

• Error while creating web proxy

  Hi,
  I've created a web service in ProjectsManagement workspace (jws). Now, I'm trying to invoke that service from ProjectsFinancialsEss workspace (jws) by creating a web-proxy. However, I'm getting the following error when I'm creating the web-proxy:
  oracle.jdeveloper.webservices.model.WebServiceException: Error creating model from wsdl
  "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
  Please find the jDev stack trace below:
  oracle.jdeveloper.webservices.model.WebServiceException: Error creating model from wsdl "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
       at oracle.jdeveloper.webservices.model.java.JavaWebService.createPortTypes(JavaWebService.java:1635)
       at oracle.jdeveloper.webservices.model.WebService.createServiceFromWSDL(WebService.java:2846)
       at oracle.jdeveloper.webservices.model.WebService.createServiceFromWSDL(WebService.java:2611)
       at oracle.jdeveloper.webservices.model.java.JavaWebService.<init>(JavaWebService.java:509)
       at oracle.jdeveloper.webservices.model.java.JavaWebService.<init>(JavaWebService.java:461)
       at oracle.jdeveloper.webservices.model.proxy.WebServiceProxy$ProxyJavaWebService.<init>(WebServiceProxy.java:2268)
       at oracle.jdeveloper.webservices.model.proxy.WebServiceProxy.updateServiceModel(WebServiceProxy.java:1701)
       at oracle.jdeveloper.webservices.model.proxy.WebServiceProxy.setDescription(WebServiceProxy.java:525)
       at oracle.jdevimpl.webservices.wizard.jaxrpc.proxy.ProxyJaxWsSpecifyWSDLPanel.setDescription(ProxyJaxWsSpecifyWSDLPanel.java:238)
       at oracle.jdevimpl.webservices.wizard.jaxrpc.common.SpecifyWsdlPanel.buildModel(SpecifyWsdlPanel.java:1109)
       at oracle.jdevimpl.webservices.wizard.jaxrpc.common.SpecifyWsdlPanel$5.run(SpecifyWsdlPanel.java:661)
       at oracle.ide.dialogs.ProgressBar.run(ProgressBar.java:655)
       at java.lang.Thread.run(Thread.java:619)
  Caused by: oracle.jdeveloper.webservices.tools.WsdlValidationException: Error creating model from wsdl "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
       at oracle.jdevimpl.webservices.tools.wsa.WsaAdaptor.newWsdlValidationException(WsaAdaptor.java:825)
       at oracle.jdevimpl.webservices.tools.wsa.WsaAdaptor.getSeiInfo(WsaAdaptor.java:515)
       at oracle.jdeveloper.webservices.tools.WebServiceTools.getSeiInfo(WebServiceTools.java:523)
       at oracle.jdeveloper.webservices.model.java.JavaWebService.getSeiInfo(JavaWebService.java:1741)
       at oracle.jdeveloper.webservices.model.java.JavaWebService.createPortTypes(JavaWebService.java:1496)
       ... 12 more
  Caused by: oracle.j2ee.ws.common.tools.api.ValidationException: Error creating model from wsdl "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
       at oracle.j2ee.ws.tools.wsa.jaxws.JaxwsWsdlToJavaTool.getJAXWSModel(JaxwsWsdlToJavaTool.java:679)
       at oracle.j2ee.ws.tools.wsa.WsdlToJavaTool.createJAXWSModel(WsdlToJavaTool.java:478)
       at oracle.j2ee.ws.tools.wsa.Util.getJaxWsSeiInfo(Util.java:1360)
       at sun.reflect.GeneratedMethodAccessor1137.invoke(Unknown Source)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at oracle.jdevimpl.webservices.tools.wsa.Assembler$2$1.invoke(Assembler.java:218)
       at $Proxy90.getJaxWsSeiInfo(Unknown Source)
       at oracle.jdevimpl.webservices.tools.wsa.WsaAdaptor.getSeiInfo(WsaAdaptor.java:505)
       ... 15 more
  Caused by: oracle.j2ee.ws.common.tools.api.ValidationException: no !/ in spec
       at oracle.j2ee.ws.tools.wsa.SchemaTool.genValueTypes(SchemaTool.java:188)
       at oracle.j2ee.ws.tools.wsa.jaxws.JaxwsWsdlToJavaTool.getJAXWSModel(JaxwsWsdlToJavaTool.java:662)
       ... 23 more
  Caused by: oracle.j2ee.ws.common.databinding.common.spi.DatabindingException: no !/ in spec
       at oracle.j2ee.ws.common.tools.databinding.jaxb20.JAXB20TypeGenerator.generateJavaTypes(JAXB20TypeGenerator.java:124)
       at oracle.j2ee.ws.tools.wsa.SchemaTool.genValueTypes(SchemaTool.java:186)
       ... 24 more
  Any help on this will be greatly appreciated.
  Thanks and regards,
  Amrit

  Look like you hit Bug 11838224 which should be fixed in 11.1.2.x
  If you can't update you can use the following workaround:
  @ Details of Workaround
  @ =====================
  @ Deploy the model project and build the proxy from the wsdl provided from the
  @ WLS 10.3.x.0 server.
  Timo

• '-1' bytes in log file - iPlanet Web Proxy Server 3.6

  I'm running iPlanet Web Proxy Server 3.6, and getting strange results in log file using extended format. Where the number of bytes should be (c1 - the content-length sent to the client by the proxy).
  I regularly get a '-1' instead of the number of bytes. Anyone tell me where this is coming from and how to stop it?

  Someone in the Web Proxy Server forum might. I guess you accidentally posted in the Web Server forum. However, if your question is time- or business-critical, you should probably contact Sun directly: http://www.sun.com/support

• Multiple sites on CRM-ISA web proxy IIS

  Hello,
  We're upgrading to CRM v6 (2007), with Internet Sales / Web Channel B2B in scope. As part of the system landscape, we have a Windows server running IIS acting as a web proxy.
  Now, the question is, can we share this web proxy so that it works for multiple sites?
  We would like to put the Dev and the QA CRM systems to both use the same web proxy, which would have two sites configured in it.
  Has anyone done this before? Success or fail? I could not find any docu from SAP telling whether or not this would work.
  Also are there any requirements for the version of the IIS?
  We're currently on Win2k / IIS v5 but are going to Win2003 / IIS v6.
  Thanks and Regards,
  Rasmus

  I figured it out:
  You need to change which URL the site responds to under the 'Aliases' section.
  I haven't seen this anywhere else, so I hope this will help someone along the line...

• Safari cannot open the page ~ The error was: "There was a problem communicating with the web proxy server (HTTP)

  Help!  I was cruzing along just fine and went out tonight only to receive the message above:
  Cannot open Page
  Safari cannot open the page
  The error was: "There was a problem communicating with the web proxy server (HTTP)."
  I have had all the Apple iPhone phone.  Have never encountered anything like this. 
  All systems are GO as soon as I log on to wifi. 
  Can anyone help, please. 

  I am also fixed.  I also loaded Onavo, but that was the other day ... this is what I did with the help of online chat with AT&T ...
  I went to:
  Settings
  Wifi
  I selected the network I was working on by hitting the blue arrow located on right side
  At the detail page of that network I scolled down to the bottom to find HTTP Proxy boxes
  I was on Off and changed it to Auto and it worked! 
  I was soo jazzed!!
  Instructions said if it was already on AUTO, to change it to Manual and make your Port = 80 but I didn't have to do that!
  YIPPIE!!  I'm a new man!!
  Go to settings -----> WI-FI  -----> select the network you're using  ------> hit the blue arrow located on the right-side of the network name (ie: show details of that network), this takes you to another page.  
  --------> at the bottom of the page you'll see "HTTP Proxy" boxes (located below the "renew lease" button) ---------------> change the proxy to AUTO.   Note: if you're already at AUTO, change it to "Manual" and make your Port = 80.

• Sun Java Web Proxy Server Routing to another Proxy Server

  hello every body
  i have installed Sun java web proxy server and we are get internet services from anotyher proxy server.
  how route SOCKS (Ports) to another proxy server)
  I mean 8080 web browsing is ok but my socks applicaiton like outlook is not working. how to Route my Sun Java Web proxy Server Socks Server to another Proxy Server.
  Please reply
  best regards
  Aamir Mughal
  [email protected]

  Dear ahmad@bzu,
  I suspect that your download is corrupted. Check the file size ( for me it shows up 89,328KB(and the installation went smooth). So a possible solution should be to download again and try the installation.

• Caching issue in Web proxy 4.0.13

  I have the following settings in the obj.conf but i still see my http requests go back to the origin server. I have the Web proxy installed on Solaris 10
  # more obj.conf
  # You can edit this file, but comments and formatting changes
  # might be lost when the admin server makes changes.
  Init fn="flex-init" access="$accesslog" format.access="%Ses->client.ip% - %Req->vars.auth-user% [%SYSDATE%] \"%Req->reqpb.clf-request%\" %Req->srvh
  drs.clf-status% %Req->srvhdrs.content-length% \"%Req->headers.referer%\" \"%Req->headers.user-agent%\" \"%Req->headers.cookie%\" %Req->reqpb.method
  % %Req->reqpb.uri% %Req->reqpb.query% \"%Req->reqpb.protocol%\" %vsid% %Req->headers.x-forwarded-for%"
  Init fn="init-proxy" timeout="300" timeout-2="15"
  Init profiling="on" fn="stats-init"
  <Object name="default">
  AuthTrans fn="match-browser" browser=".*MSIE.*" ssl-unclean-shutdown="true"
  NameTrans fn="assign-name" name="stats-xml" from="(/stats-xml|/stats-xml/.*)"
  PathCheck fn="url-check"
  ObjectType fn="block-ip"
  ObjectType fn="cache-enable" cache-auth="1"
  ObjectType fn="cache-setting" max-uncheck="86400"
  Service fn="proxy-retrieve"
  AddLog fn="flex-log" name="access"
  Route fn="set-origin-server" server="origin.server.com" sticky-cookie="JSESSIONID" sticky-param="jsessionid" route-hdr="Proxy-jroute" route-cooki
  e="JROUTE" rewrite-host="false" rewrite-location="true" rewrite-content-location="true"
  </Object>
  <Object name="file">
  PathCheck fn="unix-uri-clean"
  PathCheck fn="find-index" index-names="index.html"
  ObjectType fn="type-by-extension"
  ObjectType fn="force-type" type="text/plain"
  Service fn="send-file"
  </Object>
  <Object ppath="ftp://.*">
  ObjectType fn="cache-enable" query-maxlen="10" log-report="off"
  ObjectType fn="cache-setting" lm-factor="0.10" max-uncheck="7200"
  Service fn="proxy-retrieve"
  </Object>
  <Object ppath="http://.*">
  ObjectType fn="cache-enable" query-maxlen="32" log-report="off" min-size="0" max-size="512000"
  ObjectType fn="cache-setting" lm-factor="1.00" max-uncheck="1209600"
  Service fn="proxy-retrieve" method="*"
  Route fn="set-origin-server" server="origin.server.com" sticky-cookie="JSESSIONID" sticky-param="jsessionid" route-hdr="Proxy-jroute" route-cooki
  e="JROUTE" rewrite-host="false" rewrite-location="true" rewrite-content-location="true"
  </Object>
  <Object ppath="https://.*">
  Service fn="proxy-retrieve"
  </Object>
  <Object ppath="gopher://.*">
  ObjectType fn="cache-enable" query-maxlen="10" log-report="off"
  ObjectType fn="cache-setting" lm-factor="0.10" max-uncheck="7200"
  Service fn="proxy-retrieve"
  </Object>
  <Object ppath="connect://.*:443">
  Service fn="connect" method="CONNECT"
  </Object>
  <Object ppath="connect://.*:563">
  Service fn="connect" method="CONNECT"
  </Object>
  <Object name="stats-xml">
  Service fn="stats-xml"
  </Object>looks like i am missing something obvious but i can't figure it out..suggestions/thoughts would be appreciated.
  thanks
  JB
  Edited by: hello343 on Feb 26, 2010 9:18 PM
  more info:
  I have the proxy running on port 8000. when i make request via the browser, i cannot get those pages to show up in the url database - these are the lines form the error log
  [26/Feb/2010:16:11:28] fine ( 9416): for host 192.168.1.153 trying to GET /licensees/licensee1/images/IRParents/layout/Nemours_logo.png, set-origin-server reports: using server origin.server.com:80
  [26/Feb/2010:16:11:28] fine ( 9416): for host 192.168.1.153 trying to GET /licensees/licensee1/images/IRParents/layout/Nemours_logo.png, service-http reports: attempting to contact origin.server.com:80
  [26/Feb/2010:16:11:28] fine ( 9416): for host 192.168.1.153 trying to GET /licensees/licensee1/images/IRParents/layout/Nemours_logo.png, reusing existing persistent connection to origin.server.com:80
  [26/Feb/2010:16:11:54] fine ( 9416): GC: partition index : 0, changed blocks : 0
  [26/Feb/2010:16:12:39] fine ( 9416): GC: partition index : 0, changed blocks : 0
  [26/Feb/2010:16:13:24] fine ( 9416): GC: partition index : 0, changed blocks : 0
  [26/Feb/2010:16:14:09] fine ( 9416): GC: partition index : 0, changed blocks : 0
  [26/Feb/2010:16:14:54] fine ( 9416): GC: partition index : 0, changed blocks : 0but i did get the url database to populate when i setup a "cache batch update" but even those urls, are not served from the cache when i try to access them via the browser - I am using Firefox - seems like when i make the request via the browser, the cache is not being used.
  Edited by: hello343 on Feb 26, 2010 9:29 PM
  Edited by: hello343 on Feb 26, 2010 9:33 PM

  i was missing the reverse mapping - that fixed the issue.