HELP: Squid3 Reverse proxy
-
Dear all,
I've been playing around with Squid3 Reverse proxy to make it work in a Microsoft environment. Meaning on the other end making use of multiple servers with just one single external IP-address.
Situation:
- one external IP;
- multiple servers
- 2x MS TMG 2010 (FO & LB (Fail-over & Load-balanced))
- 2x MS Exchange Edge (FO & LB); port 25
- 2x Postfix (FO & LB; for fallback/backup MX) if Edge are offline; port 25 (future idea)
- 3x MS RDP (FO & LB); port 3389
- 3x MS IIS (FO & LB); port 80, 443
- 2x MS SharePoint (FO & LB); port 80, 443, 987
- 2x FTP (FO & LB); port 21
It is not possible to buy multiple external IP-addresses instead, so a have to deal with it.
I've configured it to use the build-in OWA functionality, but that doesn't work. I can access the OWA though, but Outlook Anywhere(Outlook over RPC) and AutoDiscover ain't working. So I've tried to configure those via the tabs 'Web servers' and 'Mappings' but also without any luck.
Second I'm hosting some kind of test-website right now (.NET ASPX). When browsing to that site I get some parts of the page, but seconds later IE is complaining and wants to reload the page. Why is not everything loaded into the page? Pictures especially and links won't work? How, why?
Third, I've also been playing around with URIs, but also no luck there to accomplish to only listen to those there defined. All others should be bounced/rejected. Any help in here is also more then welcome.
I've looked at several posts:
http://forum.pfsense.org/index.php/topic,47032.msg260167.html#msg260167
http://forum.pfsense.org/index.php/topic,48347.msg255176.html#msg255176
http://forum.pfsense.org/index.php/topic,48709.msg257571.html#msg257571All the help and suggestions are more than welcome.
Thanks in advance,
Canefield -
Dear all,
I've been using Squid Reverse proxy now and have brought some details to the surface regarding my issue's with Squid in general (based on the logs 'cache.log' and 'access.log' and tcpdump).
I've configured it to use the build-in OWA functionality, but that doesn't work. I can access the OWA though, but Outlook Anywhere(Outlook over RPC) and AutoDiscover ain't working. So I've tried to configure those via the tabs 'Web servers' and 'Mappings' but also without any luck.
Regarding to Exchange/OWA/RPC; I saw via the access log and tcpdump that my RPC connection(s) are denied/rejected. I saw some post regarding this, but can't figure it out. Anybody any clues?
Second I'm hosting some kind of test-website right now (.NET ASPX). When browsing to that site I get some parts of the page, but seconds later IE is complaining and wants to reload the page. Why is not everything loaded into the page? Pictures especially and links won't work? How, why?
Regarding my ASPX test-website; I saw Squid was giving me TCP_MIS/200 (OK) each time I accessed the site. Recording to my resource (pasted the link underneath) it means that the requested object was not found in cache. But when accessing that site for the first time it should cache this, right. I didn't saw any TCP/MISS 201 (CREATE) or 202 (ACCEPTED) after it. How to cache?
Usefull resource:
Squid Exchange
http://wiki.squid-cache.org/ConfigExamples/Reverse/ExchangeRpc
Squid Access.log Meaning Explained
http://techspalace.blogspot.com/2008/01/analyze-accesslog.htmlThanks in advance,
Canefield -
can you check if genereted file has the squid options you found on tutorial.
-
Marcello and others,
Exchange/OWA; it has most if it…changed like the example without luck.
Any ideas about the ASPX caching problem?
KR,
Canefield -
-
Marcello and others,
Okay…so it will not be supported by pfSense ?!?
How about the Exchange/OWA (RPC) part?KR,
Canefield -
Okay…so it will not be supported by pfSense ?!?
How about the Exchange/OWA (RPC) part?I just said I do not use, if somebody finds the way that squid works with this feature, it can be added to package gui or just include the options com custom field
-
Marcello,
Sorry I really meant no harm, bad attitude or irritated feelings about that. Don't misunderstand me…I really appreciate your time (all of your).
Thanks,
Canefield -
Sure, no problem.
I was just explaining too ;) -
Dear all,
Is there somebody that can help me out? Squid3 Reverse supporting Microsoft Exchange 2010 Outlook Anywhere (formely: RPC over HTTP/S)?
Thanks,
Canefield -
canefield,
I think you've reached the point to start googling for squid configs to support this feature and suggest improvements, just like the doc you found for varnish + ssl.
att,
Marcello Coutinho
