Re: [squid-users] NTLM and persistent connections reverse proxy 3.1.20

From: Amos Jeffries <>
Date: Mon, 11 Jun 2012 22:01:01 +1200

On 11/06/2012 8:11 p.m., James Harper wrote:
> I'm having some problems with reverse proxy and NTLM authentication. Specifically, the connection to the client is not persisted which I believe invalidates the NTLM authentication protocol. I've added a source port number to the logs which shows that it is indeed creating a new connection for each request. There seems to have been a bit of mailing list activity about similar problems but nothing exactly the same and none of the suggested solutions work. My config (hostnames and IP's removed) is this:
> https_port IPADDRESS:443 accel cert=/etc/squid3/apps.<snip> defaultsite=apps.<snip> connection-auth=on
> cache_peer<snip>com1.<snip>.local parent 443 0 proxy-only no-query no-digest originserver login=PROXYPASS name=<snip>com1 ssl sslflags=DONT_VERIFY_PEER
> cache_peer<snip>web1.<snip>.local parent 80 0 proxy-only no-query no-digest front-end-https=on connection-auth=on originserver login=PROXYPASS name=<snip>web1
> cache_peer<snip>svr6.<snip>.local parent 80 0 no-query no-digest originserver login=PROXYPASS name=<snip>svr6

Try it with "login=PASS" instead of "login=PROXYPASS".


Received on Mon Jun 11 2012 - 10:01:13 MDT

This archive was generated by hypermail 2.2.0 : Mon Jun 11 2012 - 12:00:03 MDT