Hello,
I am having problems accessing www.eddiebauer.com when going through my squid
proxy server. When going through the proxy server I get Connection Refused right
away, no packets even get sent out towards the site. I believe this is because
the initial request was blocked.
Anyways below is a packet dump when I was NOT going though the proxy server. I
have attached my squid.conf file below that.
GET / HTTP/1.1.
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-powerpoint, application/vnd.ms-excel, application/msword,
application/x-shockwave-flash, */*. Accept-Language: en-us.
Accept-Encoding: gzip, deflate.
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR
1.1.4322). Host: www.eddiebauer.com.
Connection: Keep-Alive.
Cookie:
ShopperManager%2FEBStore=ShopperManager%2FEBStore=D35US9X07WXK8NARALFS0PHE2U1T5
2CE; TestPerm=Yes..
HTTP/1.1 302 Object moved.
Server: Microsoft-IIS/5.0.
Date: Fri, 05 Mar 2004 18:02:36 GMT.
Location: /eb/default.asp.
Content-Length: 121.
Content-Type: text/html.
Set-Cookie: ASPSESSIONIDACTBASCS=LJEKNCCAOEBLKPJBFHAIBBOC; path=/.
Cache-control: private.
.
<head><title>Object moved</title></head>
<body><h1>Object Moved</h1>This object may be found here.</body>
GET /eb/default.asp HTTP/1.1.
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg,
application/vnd.ms-powerpoint, application/vnd.ms-excel, application/msword,
application/x-shockwave-flash, */*. Accept-Language: en-us.
Accept-Encoding: gzip, deflate.
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0; .NET CLR
1.1.4322). Host: www.eddiebauer.com.
Connection: Keep-Alive.
Cookie:
ShopperManager%2FEBStore=ShopperManager%2FEBStore=D35US9X07WXK8NARALFS0PHE2U1T5
2CE; TestPerm=Yes; ASPSESSIONIDACTBASCS=LJEKNCCAOEBLKPJBFHAIBBOC..
HTTP/1.1 200 OK.
Server: Microsoft-IIS/5.0.
Date: Fri, 05 Mar 2004 18:02:36 GMT.
Content-Length: 18628.
Content-Type: text/html.
Cache-control: private.
##### Squid.conf
http_port 192.168.7.1:3128
icp_port 0
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
##### Block MSN Messenger
acl msnmessenger url_regex -i gateway.dll
http_access deny msnmessenger
##### Block AOL and YAHOO
acl aolyahoo dstdomain login.oscar.aol.com
acl aolyahoo dstdomain pager.yahoo.com
acl aolyahoo dstdomain shttp.msg.yahoo.com
acl aolyahoo dstdomain update.messenger.yahoo.com
acl aolyahoo dstdomain update.pager.yahoo.com
http_access deny aolyahoo
##### Mime blocking
acl mimeblockq req_mime_type ^application/x-msn-messenger$
acl mimeblockq req_mime_type ^app/x-hotbar-xip20$
acl mimeblockq req_mime_type ^application/x-icq$
acl mimeblockq req_mime_type ^AIM/HTTP$
acl mimeblockq req_mime_type ^application/x-comet-log$
#acl mimeblockp rep_mime_type ^application/x-msn-messenger$
#acl mimeblockp rep_mime_type ^app/x-hotbar-xip20$
#acl mimeblockp rep_mime_type ^application/x-icq$
#acl mimeblockp rep_mime_type ^AIM/HTTP$
#acl mimeblockp rep_mime_type ^application/x-comet-log$
http_access deny mimeblockq
#http_access deny mimeblockp
##### Do not cache utilitran.com sites
acl utilitran_c dstdomain .utilitran.com
no_cache deny utilitran_c
cache_swap_low 90
cache_swap_high 95
maximum_object_size 4096 KB
cache_dir ufs /usr/local/squid/var/cache 120 16 256
cache_access_log /usr/local/squid/var/logs/access.log
cache_log /usr/local/squid/var/logs/cache.log
cache_store_log /usr/local/squid/var/logs/store.log
log_ip_on_direct on
mime_table /usr/local/squid/etc/mime.conf
log_mime_hdrs on
useragent_log /usr/local/squid/var/logs/useragent_log
referer_log /usr/local/squid/var/logs/referer_log
pid_filename /var/run/squid.pid
debug_options ALL,1
log_fqdn off
ftp_user sqftp@utilitran.com
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
ftp_telnet_protocol on
dns_retransmit_interval 5 seconds
dns_timeout 2 minutes
hosts_file /etc/hosts
unlinkd_program /usr/local/squid/libexec/unlinkd
redirect_rewrites_host_header on
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
request_header_max_size 10 KB
request_body_max_size 10240 KB
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
negative_ttl 1 minutes
positive_dns_ttl 6 hours
negative_dns_ttl 1 minute
forward_timeout 4 minutes
connect_timeout 1 minute
peer_connect_timeout 30 seconds
read_timeout 5 minutes
request_timeout 3 minutes
persistent_request_timeout 1 minute
client_lifetime 1 day
half_closed_clients on
pconn_timeout 120 seconds
shutdown_lifetime 30 seconds
########## Access control list ###########
acl all src 0.0.0.0/0.0.0.0
acl utilitran_http src 192.168.7.0/255.255.255.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl CONNECT method CONNECT
########## Access control rules ############
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
http_access allow utilitran_http
http_access deny all
http_reply_access allow all
icp_access deny all
miss_access allow all
cache_mgr netops
cache_effective_user squid
visible_hostname firebird.utilitran.com
dns_testnames netscape.com internic.net nlanr.net microsoft.com
logfile_rotate 30
memory_pools on
memory_pools_limit 100 MB
forwarded_for on
log_icp_queries on
cachemgr_passwd martini shutdown
cachemgr_passwd martini info stats/objects
cachemgr_passwd disable all
client_db on
netdb_low 900
netdb_high 1000
buffered_logs off
reload_into_ims off
error_directory /usr/local/squid/share/errors/English
maximum_single_addr_tries 1
uri_whitespace strip
coredump_dir /usr/local/squid/var/cache
ignore_unknown_nameservers on
digest_generation on
digest_bits_per_entry 5
digest_rebuild_period 1 hour
digest_rewrite_period 1 hour
digest_swapout_chunk_size 4096 bytes
digest_rebuild_chunk_percentage 10
client_persistent_connections on
server_persistent_connections on
detect_broken_pconn on
pipeline_prefetch off
request_entities off
high_response_time_warning 0
high_page_fault_warning 0
high_memory_warning 0
store_dir_select_algorithm least-load
Anyone know why I can not access this site ?
-- Michael Gale Network Administrator Utilitran CorporationReceived on Fri Mar 05 2004 - 11:24:40 MST
This archive was generated by hypermail pre-2.1.9 : Thu Apr 01 2004 - 12:00:01 MST