顯示文章

這裡允許您檢視這個會員的所有文章。請注意, 您只能看見您有權限閱讀的文章。


文章 - bowingchen

頁: [1]
1
hi 大家好,

問個問題,

是否可用VMware vSphere Client(電腦A) 連到 vmware workstation 10(或9)(電腦B) 分享的vm嗎?
現在的vmware workstation 10 做得很像 vmware server 1.x,
但是就少了vmware server console。

謝謝
Bowing Chen

2
已搞定
我的squid.conf比較像第三篇文章所示,但有些不同,經比對,我的設定檔內容如下
新增c:/squid/etc/passwd檔案, 請依照第三篇文章所述
"第一次新增"為目前可正常run的設定檔,
" 第二次新增"為要增加 ncsa_auth.exe 認證所新增的設定, squid可正常啟動, 但無法進行認證,
"第三次新增" 及取消 http_access allow localnet 設定,squid可正常啟動, 也可進行認證,
以下的script檔是依squid.conf順序排的, 只要拿原稿對照,將有#及中文字的部份注意一下即可.
---------------------------------------------------------------
auth_param basic realm Welcome to Squid proxy service, please enter your name and password.  #第三次新增
auth_param basic program c:/squid/libexec/ncsa_auth.exe c:/squid/etc/passwd  #第二次新增
auth_param basic children 5   #第三次新增
auth_param basic casesensitive off    #第三次新增
acl auth_users proxy_auth REQUIRED   #第二次新增
#http_access allow all auth_users -->這一行規則不能放在這邊,不然執行時會出現錯誤
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8    # RFC1918 possible internal network
acl localnet src 172.16.0.0/12    # RFC1918 possible internal network
acl localnet src 192.168.0.0/16    # RFC1918 possible internal network
acl SSL_ports port 443
acl Safe_ports port 80        # http
acl Safe_ports port 21        # ftp
acl Safe_ports port 443        # https
acl Safe_ports port 70        # gopher
acl Safe_ports port 210        # wais
acl Safe_ports port 1025-65535    # unregistered ports
acl Safe_ports port 280        # http-mgmt
acl Safe_ports port 488        # gss-http
acl Safe_ports port 591        # filemaker
acl Safe_ports port 777        # multiling http
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
#http_access allow localnet    #-->原始文件就有此規則,取消後,任何電腦都要輸入帳號及密碼才可透過本proxy連出去.
http_access allow localhost   #第一次新增,網路上找到的資料說要加這行連線才會正常.-->應該不用取消
http_access allow all auth_users   #第二次新增-->這個一定要放在http_access deny all前面一個.
http_access deny all
icp_access allow localnet
icp_access deny all
http_port 3128
hierarchy_stoplist cgi-bin ?
access_log c:/squid/var/logs/access.log squid
refresh_pattern ^ftp:        1440    20%    10080
refresh_pattern ^gopher:    1440    0%    1440
refresh_pattern -i (/cgi-bin/|\?) 0    0%    0
refresh_pattern .        0    20%    4320
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast
visible_hostname localhost    #第一次新增,網路上找到的資料說要加這行連線才會正常.
---------------------------------------------------------------

3
各位好,
我想在squid for windows新增使用者認證,找了些資料發現應可用ncsa_auth.exe
來達到簡單使用者認證, 但是squid執行後依然無法進行認證,可否幫忙找一下問題,謝謝.
電腦 = windows 7 x86 ultimate + squid for windows 2.7版

參考資料一
---------------------------------------------------------------
http://www.l-penguin.idv.tw/article/proxy-auth.htm
# 認證時出現的提示
auth_param basic realm Welcome to l-penguin's proxy service, please enter your name and password.
# 指定是由 ncsa_auth 認證,帳號密碼檔為 squid-passwd
auth_param basic program /usr/local/squid/libexec/ncsa_auth /usr/local/squid/etc/squid-passwd

# 設定使用 proxy_auth
acl squid-passwd proxy_auth REQUIRED
# 允許通過認證的者用者使用用 Proxy
http_access allow squid-passwd
---------------------------------------------------------------

參考資料二
---------------------------------------------------------------
Proxy Authentication
http://docstore.mik.ua/squid/FAQ-9.html
Another option is to use proxy-authentication.

   1. Recompile squid with -DUSE_PROXY_AUTH=1. Uncomment USE_PROXY_AUTH in src/Makefile.

              make clean
              vi src/Makefile
              make
              make install

   2. Configure proxy authentication in squid.conf.

              proxy_auth /usr/local/squid/etc/passwd

      passwd is an apache-style file of passwords for authenticated proxy access Looks like username:password, with the password being standard crypt() format.
   3. Create the passwd file and give the passwords to your users. You can use apache's htpasswd program to generate and maintain the passwd file. The usernames in the passwd file do not need to correspond to system user names. You may give many people the same username and password combination to access your cache.

apache's htpasswd program
http://docstore.mik.ua/Squid/htpasswd/
---------------------------------------------------------------


參考資料三
---------------------------------------------------------------
http://blog.jimbooth.co.uk/?p=3
squid.exe -i(installs the Squid service)
squid.exe -z (creates the cache directories)
– click Start and Run and type in services.msc or
click Control Panel – Administrative Tools – Services.
Squid should be listed.

squid -r (removes the Squid service)
Usage
1. Start: Control Panel/Admin.tools/Services: choose "Start" for the "Squid" service.
2. Stop: Control Panel/Admin.tools/Services: choose "Stop" for the "Squid" service.
3. squid -h Print help message.
4. squid -k reconfigure | rotate | shutdown | interrupt | kill | debug | check (Send signal to running copy and exit)
5. squid -v Print version

lets create the passwd file.

generate the hashed password for you to insert directly into the passwd file
– so go ahead and create a username and password.
http://www.htaccesstools.com/htpasswd-generator/
The result should look similar to this:

admin:$apr1$rzgs2/..$B9qzMQS9kL0nuWJpWYaSU0

Now create a text file called passwd.text in your c:\squid\etc folder -(or another folder of your choice).
Copy and paste in your user / pass combo and save and close the file.

cd\squid\libexec
ncsa_auth.exe c:\squid\etc\passwd

Now type in the user name and password you created and saved eariler in the passwd file in the format <username> <password> without the brackets but with the space.

ncsa_auth should report OK.

Now try a user name or password which does not exist – ncsa_auth should report ERR.

The program will continue in an infinite loop so press CTRL C to exit out of it.
---------------------------------------------------------------

依據以上三篇參考資料,歸納在windows應可行的資料
---------------------------------------------------------------
auth_param basic realm Welcome to Squid proxy service, please enter your name and password.
auth_param basic program c:/squid/libexec/ncsa_auth.exe c:/squid/etc/passwd
acl auth_users proxy_auth REQUIRED
http_access allow all auth_users
---------------------------------------------------------------

我的squid.conf比較像第三篇文章所示,但有些不同,經比對,我的設定檔內容如下
"第一次新增"為目前可正常run的設定檔,
"第一次新增"為要增加 ncsa_auth.exe 認證所新增的設定, squid可正常啟動, 但無法進行認證,
---------------------------------------------------------------
auth_param basic program c:/squid/libexec/ncsa_auth.exe c:/squid/etc/passwd  #第二次新增
acl auth_users proxy_auth REQUIRED   #第二次新增
acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8    # RFC1918 possible internal network
acl localnet src 172.16.0.0/12    # RFC1918 possible internal network
acl localnet src 192.168.0.0/16    # RFC1918 possible internal network
acl SSL_ports port 443
acl Safe_ports port 80        # http
acl Safe_ports port 21        # ftp
acl Safe_ports port 443        # https
acl Safe_ports port 70        # gopher
acl Safe_ports port 210        # wais
acl Safe_ports port 1025-65535    # unregistered ports
acl Safe_ports port 280        # http-mgmt
acl Safe_ports port 488        # gss-http
acl Safe_ports port 591        # filemaker
acl Safe_ports port 777        # multiling http
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localnet    #-->是否要取消
http_access allow localhost   #第一次新增-->是否要取消
http_access allow all auth_users   #第二次新增
http_access deny all
icp_access allow localnet
icp_access deny all
http_port 3128
hierarchy_stoplist cgi-bin ?
access_log c:/squid/var/logs/access.log squid
refresh_pattern ^ftp:        1440    20%    10080
refresh_pattern ^gopher:    1440    0%    1440
refresh_pattern -i (/cgi-bin/|\?) 0    0%    0
refresh_pattern .        0    20%    4320
acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast
visible_hostname localhost    #第一次新增
---------------------------------------------------------------


4
直接買個聯剛 ARAID 2200,
http://www.accordance.com.tw/tc/product/list.asp?db=2
就不用去裝 raid 卡,
應該會比較方便吧

5
轉貼一下在另外一討論區網友 netbug 回答我提的問題..
參考一下
NO:6  :  2008-8-5 03:25 PM    送花 [1] [2] [3] 支 (0)  送出中...     

--------------------------------------------------------------------------------
 
我試過了幾片主機板, 只要將IDE的模式設成Native模式(不支援RAID模式), 基本上是可以安裝的!

但是唯一你必須增加的設備是找片Intel 的網路卡(這牌比較容易找),若能找到內建的那是最好, 不過

一般的不容易找到內建I牌的網卡, 我是依它支援的SERVER配備中來找硬體!

我試過的主板如下:

ASUS P5KC  + Intel Pro/1000 PT  +SATA2
ASUS P5WD2 Premium (內建Intel 網卡) + Sata2
Gigabyte GA-P31-DS3L + Intel Pro/1000 PT  +SATA2
Gigabyte GA-EP45-DS3 + Intel Pro/1000 PT  +SATA2
Intel DP35DPM + Intel Pro/1000 PT  +SATA2

目前試過它ESXi 版本才能在IDE 硬碟上開 VMFS , 標準版本ESX只能安裝系統,

要開VMFS得有專用型陣列卡, 有經濟型的選擇, 我試過DELL SAS 6iR(5iR應該也行),

Dell  Perc 6i , 兩片都行, 5iR大約2K多,6iR大約3K多, Perc 6i (有RAM+電池)大約

7K多, 用SAS卡當然資料會安全一些, 要正式上線還是建議加個卡比較保險.

附帶一提, DELL 的SAS 卡可能會有跟主板不相容的狀況, 將PCIE的金手指第5,6 pin

用膠帶貼起來就能用了, PCIE 可以向下相容, x16 的位置可以插 x8, x4, x1 的卡, 可以

放心的將x8 的卡插在 x16 的位置上, 至於顯示卡....系統只顯示文字, PCI的顯卡就可以了,

以上是個人最近玩的心得!

頁: [1]