On 05/12/14 14:22, Amos Jeffries wrote: > > One is a HIT the other a MISS? > Squid ACLs? > TCP connection issue? > Found the problem. We had three proxies and the Cisco ASA was load balancing between them. Ended up the 2nd proxy had "INPUT DROP" instead of "INPUT ALLOW" in iptables (everything else being correct and eyeballed as "good") and simply didn't work as a transparent proxy! As it was only 1 of 3, we had "some sites worked, some didn't". :-) Fixed ;-) -- Cheers Jason Haar Corporate Information Security Manager, Trimble Navigation Ltd. Phone: +1 408 481 8171 PGP Fingerprint: 7A2E 0407 C9A6 CAF6 2B9F 8422 C063 5EBB FE1D 66D1 _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
