[squid-users] proxy pac files issues

Yuri Voinov yvoinov at gmail.com
Sat Jan 17 11:51:23 UTC 2015


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Hi Simon.

This is my working configuration.

On proxy web server:

# To httpd.conf
    # Add WPAD type
    AddType application/x-ns-proxy-autoconfig .dat

# Or to mime.types
application/x-ns-proxy-autoconfig         dat

WPAD file must be placed in proxy web root (in my case port 8080):

http://<proxyhostname_or_ip>:8080/wpad.dat

and wpad.dat contains:

function FindProxyForURL(url, host) {
    if (shExpMatch( host, "10.0.*" ) ||
    shExpMatch( host, "192.168.*" ) ||
        shExpMatch( host, "127.*" ) ||
        shExpMatch( host, "localhost" ) ||
        isPlainHostName( host )) {
        return "DIRECT";
    }
    else
    {
      return "PROXY <proxy_IP>:3128";
    }
}

Just correct proxy IP, web listening port and private networks in function.

Crosscheck it with yours,

WBR, Yuri

17.01.2015 14:37, Simon Dcunha пишет:
> Dear Guys,
>
> Let me revise my posts incase i was not very clear
>
> I need all my hosts on private IPs for example
> 10.0.0.0/8
> 172.16.0.0/16
> 192.168.0.0/16
> to be accessed without my squid proxy since they are on my local intranet
> but I have see that some hosts on the above ips are still accessed
through the squid proxy as the squid access .log file shows the logs and
the pac.access file does not show any information
> below is my newest pac file i have .
> ----------------
> function FindProxyForURL(url, host) {
> 
> // If the requested website is hosted within the internal network,
send direct.
>     if (isPlainHostName(host) ||
>         shExpMatch(host, "*.local") ||
>         isInNet(dnsResolve(host), "10.0.0.0", "255.0.0.0") ||
>         isInNet(dnsResolve(host), "172.16.0.0",  "255.255.0.0") ||
>         isInNet(dnsResolve(host), "192.168.0.0",  "255.255.0.0") ||
>         isInNet(dnsResolve(host), "127.0.0.0", "255.255.255.0"))
>         return "DIRECT";
>
>
>     return "PROXY 172.16.110.253:80";
> 
> }
>
> --------------------------
> right now I have no hosts on 192.168 network but maybe a need arise
latter to use the 192.168 network so would not have to add this network
>
> also the Add Handler command in httpd.conf is there
> Just wondering what is wrong .
>
> appreciate your help and advice
>
> regards
>
>
> simon
>
>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
 
iQEcBAEBAgAGBQJUuky6AAoJENNXIZxhPexGtc0IAJxx7igaEgI+UUmBhc547VjQ
5HDWXFengYk7ijtF7SJCYiNKqsJIbYJjOwRnHr5Jgd4PD+G9h1JCYmb4Ba+6GE1L
a3OLDyoyGIU8K/xQQhHconZj2QLQYuTwgEk1YguECs3MR0jqKj715OfxfCQgMkw9
j83fmUGeg0T+KfGciNauf+H3c1jkIM8qRwQQpBrmjXC3hBkE4/rz7aJ++21YlcEr
wRC5lOYX8NqBdblzsmS1+xCZLyBjBnANZCFbIr/HpqJD0PbOI8uox369oK3TJ4Rs
77grMDGtUp2O3AbmeoZRO1z9jcW0Ifmp+qehsPDZH8CbSHC19XCDKgA/uSwicqg=
=R621
-----END PGP SIGNATURE-----



More information about the squid-users mailing list