TMG Web Proxy - Whitelisting MapQuest
My org insists that we do whitelist filtering for a certain group of employees. This group should be able to use MapQuest.com... However, I can't seem to create a good ruleset that denies everything but allows mapquest to function normally. Any ideas?
Obviously adding *.mapquest.com does not work. How can I make sure the site and all the specific URLs its HTML / JavaScript code references is allowed only? So far when I try and get to mapquest.com, it shows a blank page (when I click view source, I can
see the source though). Oddly enough.
I am still having trouble. I actually made it so the group is NOT filtered (Allow Web Access for All), and it is still failing.
In Internet Explorer, when trying to load the page without web filtering (but still going through the TMG web proxy), I get the following errors:
Webpage error details
User Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; chromeframe/19.0.1084.56; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; .NET4.0C; .NET CLR 1.1.4322; InfoPath.2) Timestamp: Tue, 26 Jun
2012 15:01:15 UTC
Message: Unexpected call to method or property access. Line: 6 Char: 13154 Code: 0 URI:
http://content.mqcdn.com/winston-405/cdn/toolkit/lite/mqa.toolkit.js.pre$profile=winston
Message: '_mio' is null or not an object Line: 1 Char: 37539 Code: 0 URI:
http://content.mqcdn.com/winston-405/cdn/loader.js.pre$locale=en_US&profile=winston
Message: 'm3.util.History' is null or not an object Line: 1085 Char: 9 Code: 0 URI:
http://www.mapquest.com/
Message: 'm3.dotcom.controller.MCP' is null or not an object Line: 1267 Char: 9 Code: 0 URI:
http://www.mapquest.com/
It appears to work in Firefox.. Even going through the proxy. It's starting to look like an IE 8 issue.. but it works when not going through the proxy (IE 8), but not when going through the proxy (IE 8, no filtering).
Similar Messages
-
Problem with TMG web Proxy Clients
Hi
I have a TMG 2010 in my network an clients can access to the internet with web proxy method there is a problem when they want to open translate.google.com and the can't open it(the connection has timeout) this problem is occur wen the want to open
translate.google.com I can't understand what's the problem
can anyone help me????
alfONsoHi,
You could use netmon trace to troubleshoot this issue. And the following blog might be help.
http://blogs.technet.com/b/isablog/archive/2009/08/27/side-effects-of-incorrect-dns-configuration-on-isa-server-10060-connection-timeout-scenario.aspx
Best Regards,
Joyce
We
are trying to better understand customer views on social support experience, so your participation in this
interview project would be greatly appreciated if you have time.
Thanks for helping make community forums a great place. -
ForeFront TMG - Web Proxy Authentication
Hi All! We have a Forefront TMG installed in single network adapter. We configure it as a WebProxy for the domain users. The proxy setting is distributed by GPO. So, we want to authenticate users to correctly set the web filtering (with websense ISA plugin).
Well, the only way to have the correct authentication is to set "Require All user to Authenticate" (It's the correct behavior?). So, if we untick the switch all the users is recognized as "anonimous". And if we have some user that
it's not in our domain we want to permit the navigation with proxy. (for example with anonimous authentication..)
Any help?On Wed, 9 Apr 2014 17:06:06 +0000, Michele Sandonini wrote:
Hi All! We have a Forefront TMG installed in single network adapter
TMG has a dedicated forum:
https://social.technet.microsoft.com/Forums/forefront/en-US/home?forum=Forefrontedgegeneral
Paul Adare - FIM CM MVP
Lisp has all the visual appeal of oatmeal with fingernail clippings
mixed in. -- Larry Wall -
DirectAccess force tunneling - Web proxy (TMG) needs authentication
Hello,
I have deployed a DirectAccess 2012 server using computer certificate authentication. The clients are connecting to corporate resources over the WAN usin DirectAccess. Forced tunneling is a requirement. The DirectAccess is only configured for IPHTTPS using
a single NIC behind a firewall.
But there is a TMG web proxy in the corporate network that authenticates users. When these users connect over the Internet using devices that have DirectAccess enabled, they are not able to visit any sites as TMG blocks the connection. In the TMG logs, I
see that the reason it is dropping these web connections are because the traffic is coming from an 'anonymous' user as per the logs.
The proxy requires user authentication.
Can someone please advise?
Thanks in advance,
SinghP80Yes I was able to resolve this by using the command below on the DA server:
Set-DAClientDNSConfiguration -DNSSuffix '.' -ProxyServer ProxyFQDN:PortNumber
Hope this helps you as well. Please let me know. if it does.
Regards,
SinghP80 -
Web Proxy Authentication using Kerberos or NTLM - ForeFront TMG
Hi All
I was hoping someone would be able to guide me on addressing an issue I have with authenticating MACs against the web proxy. I have scoured the internet and looked on the forums but I can't seem to find a solution to the problem I am experiencing.
Our network consists and an AD domain, and a single TMG server 2010. The TMG server is enabled for integrated authentication for the Web Proxy. All the MACs have been added to the AD Domain, so all users logon as themselves. Authentication to various shares
are granted using Kerberos - so part of the Kerberos infrastructure works.
My Problem:
Currently, my MAC clients are prompted for a username and password when accessing the internet within Firefox and Camino. If I use Safari I have my credentials twice as the keychains saves my credentials seperately, for HTTP and HTTPS traffic.
Ideal Solution
Since a kerberos ticket is issued to the user who has logged in by the domain controller, I would like to use kerberos to authenicate the user for web access.
What I've done so far
There is a feature within Firefox and Camino web browsers to enable trusted websites to use your kerberos ticket. If you open Mozilla, navigate to about:config and look for 'network.negotiate-auth.trusted-uris' and add various internal sites (not proxy).
The authentication works perfectly using Kerberos as you can see the tickets that have been handed out using 'klist' and I'm not prompted for my username or password. If I disable it, it stops working and I am prompted for my username and password. I have
tried typing in the proxy address, also tried putting in the proxy port too but to no success within the trusted-uris text field. Maybe there is a different way of putting in the address?
I have enabled Kerberos on the computer account in AD for the firewall (Trust this computer for delegation to any service (kerberos only)), but without any success. I must admit, I haven't rebooted the TMG server though.
I hope someone can help me out, and really appreciate your time and support.
Thanks
JamieHi All
I have resolved my issue. I added the SPN of HTTP/SERVERNAME & HTTP/IPADDRESSOFSERVER to the firewall computer account and replicated my changes and now I have authenication working on my MACS without any username and password prompts, apart
from the user logging into the domain. Beautiful.
https://community.mcafee.com/docs/DOC-2682 - This detailed article from McAfee helped me signfictantly.
Cheers Anyway,
Jamie -
17:06:13 Synchronizer Version 14.0.6123
17:06:13 Synchronizing Mailbox '[email protected]'
17:06:13 Synchronizing Hierarchy
17:06:13 4 folder(s) added to online store
17:06:13 1 folder(s) updated in online store
17:06:13 Synchronizing local changes in folder 'Inbox'
17:06:13 Error synchronizing folder
17:06:13 [80041004-0-0-430]
17:06:13 Error with Send/Receive.
17:06:13 There was an error synchronizing your folder hierarchy. Error : 80041004.
17:06:13 Synchronizing server changes in folder 'Calendar'
17:06:13 Synchronizing server changes in folder 'Contacts'
17:06:13
17:06:13
*Request*
17:06:13 17:06:13:0590
17:06:13 POST
17:06:13 http://
17:06:13 contacts.msn.com
17:06:13 /ABService/ABService.asmx
17:06:13
17:06:13 <ABFindAll xmlns="http://www.msn.com/webservices/AddressBook"> <abId>00000000-0000-0000-0000-000000000000</abId><abView>Full</abView><deltasOnly>false</deltasOnly></ABFindAll>
17:06:13
*Response*
17:06:13 17:06:13:0870
17:06:13 HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied. )
Via: 1.1 TMG
Proxy-Authenticate: Negotiate
Proxy-Authenticate: Kerberos
Proxy-Authenticate: NTLM
Connection: close
Proxy-Connection: close
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 707
17:06:13
17:06:13
17:06:13
17:06:13 Error with Send/Receive.
17:06:13 There was an error synchronizing a contacts folder. Error : 80004005.
17:06:13 Synchronizing server changes in folder 'Drafts'
17:06:13 Synchronizing local changes in folder 'Inbox'
17:06:13 Error synchronizing folder
17:06:13 [80041004-0-0-430]
17:06:13 Synchronizing server changes in folder 'Sent Items'
17:06:13 Synchronizing server changes in folder 'Deleted Items'
17:06:13 Synchronizing server changes in folder 'Junk E-mail'
17:06:13 Done
17:06:13
17:06:13
*Request*
17:06:13 17:06:13:0870
17:06:13 POST
17:06:13 http://
17:06:13 mail.services.live.com
17:06:13 /DeltaSync_v2.0.0/Settings.aspx
17:06:13
17:06:13 <?xml version="1.0" encoding="utf-8"?><Settings xmlns="HMSETTINGS:"><ServiceSettings><SafetySchemaVersion>1</SafetySchemaVersion><SafetyLevelRules><GetVersion/></SafetyLevelRules><SafetyActions><GetVersion/></SafetyActions><Properties><Get/></Properties></ServiceSettings><AccountSettings><Get><Options/><Properties/></Get></AccountSettings></Settings>
17:06:13
*Response*
17:06:13 17:06:13:0870
17:06:13 HTTP/1.1 407 Proxy Authentication Required ( Forefront TMG requires authorization to fulfill the request. Access to the Web Proxy filter is denied. )
Via: 1.1 TMG
Proxy-Authenticate: Negotiate
Proxy-Authenticate: Kerberos
Proxy-Authenticate: NTLM
Connection: close
Proxy-Connection: close
Pragma: no-cache
Cache-Control: no-cache
Content-Type: text/html
Content-Length: 707
17:06:13
17:06:13Hi,
According to the log, it seems that TMG firewall denied the request and replied with an HTTP 407 response, indicating that proxy authentication was required. This was done because the Forefront TMG firewall did not have any access rules which would allow
the anonymous request. Please check if you have configured related access rules.
When did you recieve this log? Is there anyting wrong? Which authentication method you have used, Kerberos, NTLM or other?
It seems that each time a web proxy client requests a resource through a Forefront TMG firewall that requires NTLM authentication the client is actually denied twice during the transaction before being successfully authenticated and allowed access. When
the Forefront TMG firewall is configured to use Kerberos there is only a single denied request and HTTP 407 response and then contact a domain controller and obtain a Kerberos ticket to present to the TMG firewall to gain access to the resource.
If you configured the TMG clients with a certain proxy name, please make sure you typed the TMG's domain computer name only (not IP address nor alias).
Best regards,
Susie -
I'm preparing to install Windows Server 2012 R2 Essential on a standalone server, and it will be the main host.
My question is whether there is a role/feature in this OS, that I can enable as a web proxy server for the network desktops, mainly to be used in IE proxy settings. If so, where it is and any information on setup/config?
Will it come with any web filtering function (e.g.whitelist/blacklist or keywords filter)?No, it does not include anything like this.
Microsoft used to produce ISA Server / TMG but these were also discontinued.
http://en.wikipedia.org/wiki/Microsoft_Forefront_Threat_Management_Gateway
Robert Pearman SBS MVP
itauthority.co.uk |
Title(Required)
Facebook |
Twitter |
Linked in |
Google+ -
Hi Everyone
I'm having a little trouble getting my head around the setup for Lync external access.
I have setup an ADFS server, Lync 2013 server(works internally), 2012 web proxy server(doing nothing) and an edge server(currently doing nothing).
My understanding is that the Edge and Web proxy server are in "parallel", I.E, they both face the WAN as they perform different tasks.
The problem I have is that I'm unsure how to map everything correctly, I also don't understand how an external Lync client will get it's config. If my domain setup is:
something.domain.internal, and I would like to register a DNS entry externally as something.domain.external. How do I map those correctly via the web proxy and edge server? Sending the request via the firewall is easy enough, however I'm unsure how I'm supposed
to define them on my servers. Is the Lync server supposed to know about the external URL? Or does it not care?Hi,
The Edge Servers run the services that allow external access to IM and presence, conferencing, audio/video, and other media services. You can also configure the Edge Server to federate with other Lync Server and other XMPP deployments.
Lync Server uses the reverse proxy to publish a number of features, such as conferencing meetings, conference join locations, the address book, distribution list expansion, downloading meeting content, device updates, Mobility services, and more. Any reverse
proxy that can meet the requirements for publishing the necessary resource locations can be used.
You just need to define the Edge information in topology builder and publish it. Then configure the server as defined in topology and install local configuration store, setup Lync components and assign certificate. Here is a topology that
using private IP addresses and NAT.
http://technet.microsoft.com/en-us/library/gg399001.aspx
Here are other resource how to publish Lync Server web services
http://blogs.technet.com/b/dodeitte/archive/2013/10/29/how-to-publish-lync-server-2013-web-services-with-windows-server-2012-r2-web-application-proxy.aspx
https://social.technet.microsoft.com/wiki/contents/articles/9807.how-to-configure-forefront-tmg-2010-as-reverse-proxy-for-lync-server-2010.aspx
Kent Huang
TechNet Community Support -
Mac Adobe Flash Player not supporting Web Proxy Authentication
Anyone else got an enterprise network where you use web proxies with web authentication and no traffic allowed out except through the proxies?
You may need to be in the UK for this, but try accessing BBC iPlayer content - http://www.bbc.co.uk/iplayer and you should discover that the content won't play. the error says "This content doesn't seem to be working. Try again later.". The content will never work as the Mac version of Flash (currently 10.1.53.64) is not able to respond to web proxy authentication requests. The BBC use various streaming server which are randomly selected when a user starts a stream and they have no DNS. Just IP addresses. They don't publish a list for security reasons. So it is almost impossible to exempt all their servers from authentication.
I've logged a bug with Adobe. If you have this issue too, please add a comment and vote so that they can begin to grasp the impact of this problem:
https://bugs.adobe.com/jira/browse/FP-5161I have the same issues in Australia trying to access flash content from the ABC website. The strange thing is the content will play if your leave the browser open for 5min.
After several packet data captures we identified that it has to do with the amount of time it takes the Mac timeout from the proxy before it plays the video content.
No solution yet. -
Error while creating web proxy
Hi,
I've created a web service in ProjectsManagement workspace (jws). Now, I'm trying to invoke that service from ProjectsFinancialsEss workspace (jws) by creating a web-proxy. However, I'm getting the following error when I'm creating the web-proxy:
oracle.jdeveloper.webservices.model.WebServiceException: Error creating model from wsdl
"file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
Please find the jDev stack trace below:
oracle.jdeveloper.webservices.model.WebServiceException: Error creating model from wsdl "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
at oracle.jdeveloper.webservices.model.java.JavaWebService.createPortTypes(JavaWebService.java:1635)
at oracle.jdeveloper.webservices.model.WebService.createServiceFromWSDL(WebService.java:2846)
at oracle.jdeveloper.webservices.model.WebService.createServiceFromWSDL(WebService.java:2611)
at oracle.jdeveloper.webservices.model.java.JavaWebService.<init>(JavaWebService.java:509)
at oracle.jdeveloper.webservices.model.java.JavaWebService.<init>(JavaWebService.java:461)
at oracle.jdeveloper.webservices.model.proxy.WebServiceProxy$ProxyJavaWebService.<init>(WebServiceProxy.java:2268)
at oracle.jdeveloper.webservices.model.proxy.WebServiceProxy.updateServiceModel(WebServiceProxy.java:1701)
at oracle.jdeveloper.webservices.model.proxy.WebServiceProxy.setDescription(WebServiceProxy.java:525)
at oracle.jdevimpl.webservices.wizard.jaxrpc.proxy.ProxyJaxWsSpecifyWSDLPanel.setDescription(ProxyJaxWsSpecifyWSDLPanel.java:238)
at oracle.jdevimpl.webservices.wizard.jaxrpc.common.SpecifyWsdlPanel.buildModel(SpecifyWsdlPanel.java:1109)
at oracle.jdevimpl.webservices.wizard.jaxrpc.common.SpecifyWsdlPanel$5.run(SpecifyWsdlPanel.java:661)
at oracle.ide.dialogs.ProgressBar.run(ProgressBar.java:655)
at java.lang.Thread.run(Thread.java:619)
Caused by: oracle.jdeveloper.webservices.tools.WsdlValidationException: Error creating model from wsdl "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
at oracle.jdevimpl.webservices.tools.wsa.WsaAdaptor.newWsdlValidationException(WsaAdaptor.java:825)
at oracle.jdevimpl.webservices.tools.wsa.WsaAdaptor.getSeiInfo(WsaAdaptor.java:515)
at oracle.jdeveloper.webservices.tools.WebServiceTools.getSeiInfo(WebServiceTools.java:523)
at oracle.jdeveloper.webservices.model.java.JavaWebService.getSeiInfo(JavaWebService.java:1741)
at oracle.jdeveloper.webservices.model.java.JavaWebService.createPortTypes(JavaWebService.java:1496)
... 12 more
Caused by: oracle.j2ee.ws.common.tools.api.ValidationException: Error creating model from wsdl "file:/ade/amrmishr_amr_feb12_03_v2/fusionapps/prj/components/projectsManagement/resourceManagement/reporting/model/src/oracle/apps/projects/resourceManagement/reporting/model/UpdateResourceUtilizationDataService.wsdl": no !/ in spec
at oracle.j2ee.ws.tools.wsa.jaxws.JaxwsWsdlToJavaTool.getJAXWSModel(JaxwsWsdlToJavaTool.java:679)
at oracle.j2ee.ws.tools.wsa.WsdlToJavaTool.createJAXWSModel(WsdlToJavaTool.java:478)
at oracle.j2ee.ws.tools.wsa.Util.getJaxWsSeiInfo(Util.java:1360)
at sun.reflect.GeneratedMethodAccessor1137.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at oracle.jdevimpl.webservices.tools.wsa.Assembler$2$1.invoke(Assembler.java:218)
at $Proxy90.getJaxWsSeiInfo(Unknown Source)
at oracle.jdevimpl.webservices.tools.wsa.WsaAdaptor.getSeiInfo(WsaAdaptor.java:505)
... 15 more
Caused by: oracle.j2ee.ws.common.tools.api.ValidationException: no !/ in spec
at oracle.j2ee.ws.tools.wsa.SchemaTool.genValueTypes(SchemaTool.java:188)
at oracle.j2ee.ws.tools.wsa.jaxws.JaxwsWsdlToJavaTool.getJAXWSModel(JaxwsWsdlToJavaTool.java:662)
... 23 more
Caused by: oracle.j2ee.ws.common.databinding.common.spi.DatabindingException: no !/ in spec
at oracle.j2ee.ws.common.tools.databinding.jaxb20.JAXB20TypeGenerator.generateJavaTypes(JAXB20TypeGenerator.java:124)
at oracle.j2ee.ws.tools.wsa.SchemaTool.genValueTypes(SchemaTool.java:186)
... 24 more
Any help on this will be greatly appreciated.
Thanks and regards,
AmritLook like you hit Bug 11838224 which should be fixed in 11.1.2.x
If you can't update you can use the following workaround:
@ Details of Workaround
@ =====================
@ Deploy the model project and build the proxy from the wsdl provided from the
@ WLS 10.3.x.0 server.
Timo -
'-1' bytes in log file - iPlanet Web Proxy Server 3.6
I'm running iPlanet Web Proxy Server 3.6, and getting strange results in log file using extended format. Where the number of bytes should be (c1 - the content-length sent to the client by the proxy).
I regularly get a '-1' instead of the number of bytes. Anyone tell me where this is coming from and how to stop it?Someone in the Web Proxy Server forum might. I guess you accidentally posted in the Web Server forum. However, if your question is time- or business-critical, you should probably contact Sun directly: http://www.sun.com/support
-
Multiple sites on CRM-ISA web proxy IIS
Hello,
We're upgrading to CRM v6 (2007), with Internet Sales / Web Channel B2B in scope. As part of the system landscape, we have a Windows server running IIS acting as a web proxy.
Now, the question is, can we share this web proxy so that it works for multiple sites?
We would like to put the Dev and the QA CRM systems to both use the same web proxy, which would have two sites configured in it.
Has anyone done this before? Success or fail? I could not find any docu from SAP telling whether or not this would work.
Also are there any requirements for the version of the IIS?
We're currently on Win2k / IIS v5 but are going to Win2003 / IIS v6.
Thanks and Regards,
RasmusI figured it out:
You need to change which URL the site responds to under the 'Aliases' section.
I haven't seen this anywhere else, so I hope this will help someone along the line... -
Help! I was cruzing along just fine and went out tonight only to receive the message above:
Cannot open Page
Safari cannot open the page
The error was: "There was a problem communicating with the web proxy server (HTTP)."
I have had all the Apple iPhone phone. Have never encountered anything like this.
All systems are GO as soon as I log on to wifi.
Can anyone help, please.I am also fixed. I also loaded Onavo, but that was the other day ... this is what I did with the help of online chat with AT&T ...
I went to:
Settings
Wifi
I selected the network I was working on by hitting the blue arrow located on right side
At the detail page of that network I scolled down to the bottom to find HTTP Proxy boxes
I was on Off and changed it to Auto and it worked!
I was soo jazzed!!
Instructions said if it was already on AUTO, to change it to Manual and make your Port = 80 but I didn't have to do that!
YIPPIE!! I'm a new man!!
Go to settings -----> WI-FI -----> select the network you're using ------> hit the blue arrow located on the right-side of the network name (ie: show details of that network), this takes you to another page.
--------> at the bottom of the page you'll see "HTTP Proxy" boxes (located below the "renew lease" button) ---------------> change the proxy to AUTO. Note: if you're already at AUTO, change it to "Manual" and make your Port = 80. -
Sun Java Web Proxy Server Routing to another Proxy Server
hello every body
i have installed Sun java web proxy server and we are get internet services from anotyher proxy server.
how route SOCKS (Ports) to another proxy server)
I mean 8080 web browsing is ok but my socks applicaiton like outlook is not working. how to Route my Sun Java Web proxy Server Socks Server to another Proxy Server.
Please reply
best regards
Aamir Mughal
[email protected]Dear ahmad@bzu,
I suspect that your download is corrupted. Check the file size ( for me it shows up 89,328KB(and the installation went smooth). So a possible solution should be to download again and try the installation. -
Caching issue in Web proxy 4.0.13
I have the following settings in the obj.conf but i still see my http requests go back to the origin server. I have the Web proxy installed on Solaris 10
# more obj.conf
# You can edit this file, but comments and formatting changes
# might be lost when the admin server makes changes.
Init fn="flex-init" access="$accesslog" format.access="%Ses->client.ip% - %Req->vars.auth-user% [%SYSDATE%] \"%Req->reqpb.clf-request%\" %Req->srvh
drs.clf-status% %Req->srvhdrs.content-length% \"%Req->headers.referer%\" \"%Req->headers.user-agent%\" \"%Req->headers.cookie%\" %Req->reqpb.method
% %Req->reqpb.uri% %Req->reqpb.query% \"%Req->reqpb.protocol%\" %vsid% %Req->headers.x-forwarded-for%"
Init fn="init-proxy" timeout="300" timeout-2="15"
Init profiling="on" fn="stats-init"
<Object name="default">
AuthTrans fn="match-browser" browser=".*MSIE.*" ssl-unclean-shutdown="true"
NameTrans fn="assign-name" name="stats-xml" from="(/stats-xml|/stats-xml/.*)"
PathCheck fn="url-check"
ObjectType fn="block-ip"
ObjectType fn="cache-enable" cache-auth="1"
ObjectType fn="cache-setting" max-uncheck="86400"
Service fn="proxy-retrieve"
AddLog fn="flex-log" name="access"
Route fn="set-origin-server" server="origin.server.com" sticky-cookie="JSESSIONID" sticky-param="jsessionid" route-hdr="Proxy-jroute" route-cooki
e="JROUTE" rewrite-host="false" rewrite-location="true" rewrite-content-location="true"
</Object>
<Object name="file">
PathCheck fn="unix-uri-clean"
PathCheck fn="find-index" index-names="index.html"
ObjectType fn="type-by-extension"
ObjectType fn="force-type" type="text/plain"
Service fn="send-file"
</Object>
<Object ppath="ftp://.*">
ObjectType fn="cache-enable" query-maxlen="10" log-report="off"
ObjectType fn="cache-setting" lm-factor="0.10" max-uncheck="7200"
Service fn="proxy-retrieve"
</Object>
<Object ppath="http://.*">
ObjectType fn="cache-enable" query-maxlen="32" log-report="off" min-size="0" max-size="512000"
ObjectType fn="cache-setting" lm-factor="1.00" max-uncheck="1209600"
Service fn="proxy-retrieve" method="*"
Route fn="set-origin-server" server="origin.server.com" sticky-cookie="JSESSIONID" sticky-param="jsessionid" route-hdr="Proxy-jroute" route-cooki
e="JROUTE" rewrite-host="false" rewrite-location="true" rewrite-content-location="true"
</Object>
<Object ppath="https://.*">
Service fn="proxy-retrieve"
</Object>
<Object ppath="gopher://.*">
ObjectType fn="cache-enable" query-maxlen="10" log-report="off"
ObjectType fn="cache-setting" lm-factor="0.10" max-uncheck="7200"
Service fn="proxy-retrieve"
</Object>
<Object ppath="connect://.*:443">
Service fn="connect" method="CONNECT"
</Object>
<Object ppath="connect://.*:563">
Service fn="connect" method="CONNECT"
</Object>
<Object name="stats-xml">
Service fn="stats-xml"
</Object>looks like i am missing something obvious but i can't figure it out..suggestions/thoughts would be appreciated.
thanks
JB
Edited by: hello343 on Feb 26, 2010 9:18 PM
more info:
I have the proxy running on port 8000. when i make request via the browser, i cannot get those pages to show up in the url database - these are the lines form the error log
[26/Feb/2010:16:11:28] fine ( 9416): for host 192.168.1.153 trying to GET /licensees/licensee1/images/IRParents/layout/Nemours_logo.png, set-origin-server reports: using server origin.server.com:80
[26/Feb/2010:16:11:28] fine ( 9416): for host 192.168.1.153 trying to GET /licensees/licensee1/images/IRParents/layout/Nemours_logo.png, service-http reports: attempting to contact origin.server.com:80
[26/Feb/2010:16:11:28] fine ( 9416): for host 192.168.1.153 trying to GET /licensees/licensee1/images/IRParents/layout/Nemours_logo.png, reusing existing persistent connection to origin.server.com:80
[26/Feb/2010:16:11:54] fine ( 9416): GC: partition index : 0, changed blocks : 0
[26/Feb/2010:16:12:39] fine ( 9416): GC: partition index : 0, changed blocks : 0
[26/Feb/2010:16:13:24] fine ( 9416): GC: partition index : 0, changed blocks : 0
[26/Feb/2010:16:14:09] fine ( 9416): GC: partition index : 0, changed blocks : 0
[26/Feb/2010:16:14:54] fine ( 9416): GC: partition index : 0, changed blocks : 0but i did get the url database to populate when i setup a "cache batch update" but even those urls, are not served from the cache when i try to access them via the browser - I am using Firefox - seems like when i make the request via the browser, the cache is not being used.
Edited by: hello343 on Feb 26, 2010 9:29 PM
Edited by: hello343 on Feb 26, 2010 9:33 PMi was missing the reverse mapping - that fixed the issue.
Maybe you are looking for
-
Email is at a crawl. I have compacted. What else should I do?
I changed the automatically compact to 1 in each field (was at a different default) ...it takes about 60 seconds between screen changes...I am going crazy
-
Fonts are not diplayed correctly in the Crystal Report Viewer control
Post Author: Farid CA Forum: General Hello, I have designed a report in the Crystal Reports XI Designer (version 11.5.3.417) using the default printer. When I view it through the preview mode of the Designer, fonts are displayed like expected using t
-
How to insert record in child table with foreign key
Hi, I am using Jdeveloper 11.1.2.0. I have two master table one child table. How to insert and update a record in child table with foreign key ? I have created VO based on three EO(one eo is updatable other two eo are references) by using joined quer
-
Flash Builder 4.6 - How can I keep unit test classes out of the finished swc?
I have a library of code I'm building and I'm working on unit testing but I have a major issue. When my finished swc compiles no matter what I do it includes the unit test classes as part of the intellisense if you load the swc via flash. The cl
-
The app called 'dot de verrouillage sécurisé' edited by David Lane doesn't work with iPhone 4
Sorry! the name of the app is wrote in French language. So the problem with this app is as follow : The app doesn't open in my iPhone 4. It starts to open but it doesn't goes on. I tried all the suggestions posted on apple site, unsuccessfully. NOTE