Article 325: Query
This is regarding article:http://jazz.net/library/article/325 and I am trying to achieve this using forward proxy and Squid 3.
My Squid.conf file details for this change is:
# Setting up Jazz net proxy server
#cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF
cache_dir ufs /opt/RTC_Cache1 100 16 256
#cache_dir ext3 /opt/RTC_Cache 2048 256 256
cache_mem 100 MB
cache_store_log none
cache_peer gbl00459. parent 26 0 no-query originserver name=httpAccel login=PROXYPASS
cache_peer_access httpAccel allow all
coredump_dir /usr/local/squid/var/cache
http_access allow all
#http_port 8182 accel vhost
#http_port 3128 accel vhost
refresh_pattern . 0 20% 4320
cachemgr_passwd disable all
maximum_object_size 1024 MB
maximum_object_size_in_memory 16 MB
buffered_logs on
visible_hostname inglt03560002.in.hsbc
access_log /usr/local/squid/var/logs/access.log squid
Currently Squid is running: The status can be checked as:
ivobadm@in0356glt0002:/usr/local/squid> ps -ef | grep squid
ivobadm 24572 24519 0 11:46 pts/0 00:00:00 grep squid
ivobadm 26413 1 0 Feb25 ? 00:00:00 ../sbin/squid -D
ivobadm 26415 26413 0 Feb25 ? 00:00:01 (squid) -D
Also, when I run the commad: curl -k https://in0356glt0002.in.hsbc:26/jazz/service -v -u <user>
I get the out put as :
Enter host password for user 'kaushamb.s':
* About to connect() to in0356glt0002.in.hsbc port 9443
* Trying 136.50.52.42... connected
* Connected to in0356glt0002.in.hsbc (136.50.52.42) port 9443
* successfully set certificate verify locations:
* CAfile: /usr/share/curl/curl-ca-bundle.crt
CApath: none
* SSLv2, Client hello (1):
SSLv3, TLS handshake, Server hello (2):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Server key exchange (12):
SSLv3, TLS handshake, Server finished (14):
SSLv3, TLS handshake, Client key exchange (16):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSL connection using EDH-RSA-DES-CBC3-SHA
* Server certificate:
* subject: /O=IBM/OU=IBM Rational/CN=localhost
* start date: 2008-06-06 17:51:09 GMT
* expire date: 2009-12-31 17:51:09 GMT
* common name: localhost (does not match 'in0356glt0002.in.hsbc')
* issuer: /O=IBM/OU=IBM Rational/CN=localhost
* SSL certificate verify result: error number 1 (18), continuing anyway.
* Server auth using Basic with user 'kaushamb.s'
> GET /jazz/service HTTP/1.1
> Authorization: Basic a2F1c2hhbWIuczoja3VzaDIzIyQ=
> User-Agent: curl/7.15.1 (i686-suse-linux) libcurl/7.15.1 OpenSSL/0.9.8a zlib/1.2.3 libidn/0.6.0
> Host: in0356glt0002.in.hsbc:9443
> Accept: */*
>
< HTTP/1.1 302 Moved Temporarily
< Server: Apache-Coyote/1.1
< Cache-Control: private
< Expires: Thu, 01 Jan 1970 05:30:00 GMT+05:30
< Set-Cookie: JSESSIONID=079AC2967E00E2CEB2E465EF31BA0256; Path=/jazz; Secure
< X-com-ibm-team-repository-web-auth-msg: authrequired
< Location: https://in0356glt0002.in.hsbc:9443/jazz/authenticated/identity?redirectPath=%2Fjazz%2Fservice
< Content-Length: 0
< Date: Mon, 07 Mar 2011 07:00:40 GMT
* Connection #0 to host in0356glt0002.in.hsbc left intact
* Closing connection #0
* SSLv3, TLS alert, Client hello (1):
My question is the proxy port I am using is squid.conf and the port on which RTC is listening is 9443. both are there on same proxy : <proxy>.
So in figure 1, what should be the port no (26 or 9443)? Well, giving either of them doesn't successfully connect to the proxy server.
What wrong I am doing and I am not very sure of the changes in the squid.conf file.
My Squid.conf file details for this change is:
# Setting up Jazz net proxy server
#cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF
cache_dir ufs /opt/RTC_Cache1 100 16 256
#cache_dir ext3 /opt/RTC_Cache 2048 256 256
cache_mem 100 MB
cache_store_log none
cache_peer gbl00459. parent 26 0 no-query originserver name=httpAccel login=PROXYPASS
cache_peer_access httpAccel allow all
coredump_dir /usr/local/squid/var/cache
http_access allow all
#http_port 8182 accel vhost
#http_port 3128 accel vhost
refresh_pattern . 0 20% 4320
cachemgr_passwd disable all
maximum_object_size 1024 MB
maximum_object_size_in_memory 16 MB
buffered_logs on
visible_hostname inglt03560002.in.hsbc
access_log /usr/local/squid/var/logs/access.log squid
Currently Squid is running: The status can be checked as:
ivobadm@in0356glt0002:/usr/local/squid> ps -ef | grep squid
ivobadm 24572 24519 0 11:46 pts/0 00:00:00 grep squid
ivobadm 26413 1 0 Feb25 ? 00:00:00 ../sbin/squid -D
ivobadm 26415 26413 0 Feb25 ? 00:00:01 (squid) -D
Also, when I run the commad: curl -k https://in0356glt0002.in.hsbc:26/jazz/service -v -u <user>
I get the out put as :
Enter host password for user 'kaushamb.s':
* About to connect() to in0356glt0002.in.hsbc port 9443
* Trying 136.50.52.42... connected
* Connected to in0356glt0002.in.hsbc (136.50.52.42) port 9443
* successfully set certificate verify locations:
* CAfile: /usr/share/curl/curl-ca-bundle.crt
CApath: none
* SSLv2, Client hello (1):
SSLv3, TLS handshake, Server hello (2):
SSLv3, TLS handshake, CERT (11):
SSLv3, TLS handshake, Server key exchange (12):
SSLv3, TLS handshake, Server finished (14):
SSLv3, TLS handshake, Client key exchange (16):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSLv3, TLS change cipher, Client hello (1):
SSLv3, TLS handshake, Finished (20):
SSL connection using EDH-RSA-DES-CBC3-SHA
* Server certificate:
* subject: /O=IBM/OU=IBM Rational/CN=localhost
* start date: 2008-06-06 17:51:09 GMT
* expire date: 2009-12-31 17:51:09 GMT
* common name: localhost (does not match 'in0356glt0002.in.hsbc')
* issuer: /O=IBM/OU=IBM Rational/CN=localhost
* SSL certificate verify result: error number 1 (18), continuing anyway.
* Server auth using Basic with user 'kaushamb.s'
> GET /jazz/service HTTP/1.1
> Authorization: Basic a2F1c2hhbWIuczoja3VzaDIzIyQ=
> User-Agent: curl/7.15.1 (i686-suse-linux) libcurl/7.15.1 OpenSSL/0.9.8a zlib/1.2.3 libidn/0.6.0
> Host: in0356glt0002.in.hsbc:9443
> Accept: */*
>
< HTTP/1.1 302 Moved Temporarily
< Server: Apache-Coyote/1.1
< Cache-Control: private
< Expires: Thu, 01 Jan 1970 05:30:00 GMT+05:30
< Set-Cookie: JSESSIONID=079AC2967E00E2CEB2E465EF31BA0256; Path=/jazz; Secure
< X-com-ibm-team-repository-web-auth-msg: authrequired
< Location: https://in0356glt0002.in.hsbc:9443/jazz/authenticated/identity?redirectPath=%2Fjazz%2Fservice
< Content-Length: 0
< Date: Mon, 07 Mar 2011 07:00:40 GMT
* Connection #0 to host in0356glt0002.in.hsbc left intact
* Closing connection #0
* SSLv3, TLS alert, Client hello (1):
My question is the proxy port I am using is squid.conf and the port on which RTC is listening is 9443. both are there on same proxy : <proxy>.
So in figure 1, what should be the port no (26 or 9443)? Well, giving either of them doesn't successfully connect to the proxy server.
What wrong I am doing and I am not very sure of the changes in the squid.conf file.