Добрый день!
Прошу помочь, очень срочно!!!!
Вступление:
был создан прокси сервер. Для авторизации необходимо чтоб он пользователей брал из АД
Пример из конфига:http_port 192.168.1.1:3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 1024 MB
cache_dir ufs /shares/squid/cache 50000 64 512
access_log /var/log/squid/access.log
cache_store_log none
hosts_file /etc/hosts
append_domain test.local
error_directory /usr/local/etc/squid/errors/Russian-1251
auth_param ntlm program /usr/local/bin/ntlm_auth \
--helper-protocol=squid-2.7-ntlmssp --require-membership-of="TEST\\inet_users"
auth_param ntlm children 30
auth_param ntlm keep_alive on
authenticate_cache_garbage_interval 15 minute
authenticate_ttl 5 minute
auth_param basic program /usr/local/bin/ntlm_auth \
--helper-protocol= squid-2.7-basic --require-mambership-of="TEST\\inet_users"
auth_param basic children 4
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
external_acl_type nt_group %LOGIN \
/usr/local/libexec/squid/wbinfo_group.pl
acl manager proto cache_object
acl localnet src 192.168.0.0/16
acl inet_full external nt_group inet_full
acl SSL_ports port 563
acl safe_ports port 80 # http
acl safe_ports port 443 # https
acl FTP port 20 21 # ftp
acl CONNECT method CONNECT
acl purge method PURGE
#opisanie seti
acl all src 0.0.0.0/0.0.0.0
#opisanie local host
acl localhost src 127.0.0.1/255.255.255.255
#acl for SAIT allow any
acl test_site dstdomain "/usr/local/etc/squid/db/allow_all.txt"
#acl for URL deny any
#acl bad_url url_regex "/usr/local/etc/squid/db/deny_url.txt"
#acl for SAIT deny any
acl deny_test dstdomain "/usr/local/etc/squid/db/deny_test.txt"
#acl for users
#acl domains_for_restrict dstdomain "/usr/local/etc/squid/db/domains_for_restrict.txt"
###config access###
deny_info ERROR_BAD_URL bad_url
deny_info ERR_BAD_NETWORKS bad_networks
deny_info DENY_DOMAINS deny_domains
deny_info ERR_SAFE_PORTS safe_ports
deny_info ERR_SSL_PORTS SSL_ports
acl TEST proxy_auth REQUIRED
#http_access allow manager lan
#http_access allow purse localhost
#http_access deny ! Safe_ports !FTP
#http_access deny CONNECT !SSL_ports
#http_access deny manager
http_access allow TEST
http_access allow inet_full !tmbr_site
#http_access allow inet_full !allow_all
cache_effective_user squid
cache_effective_group squid
при запуске squid сыпит следующие сообщения:
Squid[4560]: failed to fine or read error text file
Squid[4601]: failed to fine or read error text file
Squid[4642]: failed to fine or read error text file
Squid[4683]: failed to fine or read error text file
Squid[4517]: Exiting due to repeated, frequent failure
Вот ещё инфа:
inet# squid -z
2012/03/01 13:04:32| Creating Swap Directories
inet# squid -k rotate
squid: ERROR: No running copy
Что может быть? помогите пожалуйста.