LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices


Reply
  Search this Thread
Old 04-29-2013, 02:00 PM   #1
moog7
LQ Newbie
 
Registered: Mar 2013
Posts: 12

Rep: Reputation: Disabled
Squid help


Hi,

Even though I have purged a URL from the squid cache, I still see the old page. For example I have a firewall that does content filtering and I've chosen to block www.domain.com. When a user goes to domain.com they will normally see a access denied page. However once I give this user access to the site, I still get the access denied page as before from squid.

If I take off the proxy settings for example, it works fine.

In my squid.conf I have:

acl PURGE method PURGE
http_access allow PURGE localhost
http_access deny PURGE

I entered this command: squidclient -h localhost -m PURGE http://www.domain.com/

and receive a HTTP 200 OK.

How do I get around this?

Thanks.
 
Old 04-30-2013, 09:10 AM   #2
JSkywalker
Member
 
Registered: Aug 2007
Distribution: openSUSE 12.1
Posts: 96

Rep: Reputation: 24
your client (=webbrowser) also has a local cache. Did you try to clear that before re-trying to visit www.domain.com?
 
Old 05-01-2013, 12:38 PM   #3
moog7
LQ Newbie
 
Registered: Mar 2013
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by JSkywalker View Post
your client (=webbrowser) also has a local cache. Did you try to clear that before re-trying to visit www.domain.com?
Yes I've tried deleting the browser cache. I've also cleared and rebuilt the squid cache but the problem remains.
 
Old 05-02-2013, 12:10 PM   #4
JSkywalker
Member
 
Registered: Aug 2007
Distribution: openSUSE 12.1
Posts: 96

Rep: Reputation: 24
"However once I give this user access to the site, I still get the access denied page "
what changes do you make to your config for this?

"If I take off the proxy settings for example"
can you post your 'proxy settings'?
 
Old 05-02-2013, 05:00 PM   #5
moog7
LQ Newbie
 
Registered: Mar 2013
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by JSkywalker View Post
"However once I give this user access to the site, I still get the access denied page "
what changes do you make to your config for this?

"If I take off the proxy settings for example"
can you post your 'proxy settings'?
I excluded the user's IP address from the content filter so that they can bypass the content filter. This is done on a hardware firewall.

The proxy settings is just the proxy server IP and port number which the browser uses by default. eg. 192.168.1.10:8000
 
Old 05-03-2013, 11:39 AM   #6
JSkywalker
Member
 
Registered: Aug 2007
Distribution: openSUSE 12.1
Posts: 96

Rep: Reputation: 24
Your squid is running on different hardware than your client?
If so, than this line:
http_access allow PURGE localhost
is not good enough, it tells squid to only allow access from localhost.
change it to sometiing like (depending on you local ip-addressed):
acl PURGE src 192.168.0.0/24
This will give access to all ip-addresses from 192.168.0.1 - 192.168.0.254
 
Old 05-08-2013, 04:33 PM   #7
moog7
LQ Newbie
 
Registered: Mar 2013
Posts: 12

Original Poster
Rep: Reputation: Disabled
Quote:
Originally Posted by JSkywalker View Post
Your squid is running on different hardware than your client?
If so, than this line:
http_access allow PURGE localhost
is not good enough, it tells squid to only allow access from localhost.
change it to sometiing like (depending on you local ip-addressed):
acl PURGE src 192.168.0.0/24
This will give access to all ip-addresses from 192.168.0.1 - 192.168.0.254


I added the acl PURGE src 192.168.0.0/24 and removed http_access allow PURGE localhost in squid.conf but squid failed when I tried to restart it.
 
Old 05-09-2013, 05:10 AM   #8
JSkywalker
Member
 
Registered: Aug 2007
Distribution: openSUSE 12.1
Posts: 96

Rep: Reputation: 24
hmmmz, i wonder why i typed "acl PURGE src 192.168.0.0/24", and thinking what that could mean.....

But if your network is configured using a different ip-address-range, than you need to CHANGE this line.

And, when you restart squid, and it " failed when I tried to restart it", it would be nice to have the details on why it did not restart, the details are somewhere in a logfile.....
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Howto connect SQUID box with Mikrotik and Log userís original source ip in squid PPTP fruiz002 Linux - Networking 1 08-23-2012 06:17 AM
Howto connect SQUID box with Mikrotik and Log userís original source ip in squid PPTP fruiz002 Linux - Networking 1 08-01-2012 02:26 AM
Squid Redirect specific domain to an Secondary (External) Squid Proxy Zxarr Linux - Server 2 04-20-2010 12:50 PM
squid conf: squid failed when I type insert redirect_program /usr/bin/squidguard laxmantsharma Linux - Software 1 02-24-2009 06:02 AM
squid conf: squid failed when I type insert redirect_program /usr/bin/squidguard Niceman2005 Linux - Software 1 11-24-2004 02:29 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Software

All times are GMT -5. The time now is 09:34 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration