NethServer Version: NethServer release 7.4.1708 (Final) Module: Web Proxy (SQUID)
Dear Team,
If I enable dns_v4_first on in squid config file, I am getting error message like this in cache log. Before we didn’t receive this much of error log in cache. After enable the dns_v4_first we are getting lots of error like this.
How to rectify this issue. Kindly let me know.
This our squid configuration
We are reporting this king of errors for every time, Why you are taking this as a bug and resolving yourself. Because we are facing more and more trouble once we enable web proxy (squid).
Kindly take it as a serious problem and resolve immediately. This is for a request.
I tested with Nethserver proxy and Zentyal as remote AD (I assume you still use this config). After switching proxies and some testing I recognized I could not login with chrome and got the same error (ERROR: Negotiate Authentication validating user. Result: {result=BH, notes={message: received type 1 NTLM token; }}). I could solve it by deleting the saved proxy credentials on the client and logging in with edge/opera. After that chrome worked too. dns_v4_first made no difference in my tests.
If you still use Nethserver 7.4 please run a backup and update your server.
But we are using Windows Server 2012 r2 as thin-client machines for client side. Here i didn’t see any saved password details. Then how could I delete the saved password.
Active Directory is on Zentyal.
Nethserver is joined to Zentyal AD and used as proxy and web filter.
Windows Server 2012 R2 is joined to Zentyal AD and acts as a remote desktop host.
Users use some thin client and connect via RDP to Windows Server 2012 R2 and want to use Nethserver proxy.
Is this correct so far? Which browser is used? I’ll try to reproduce but I need all details.
Yes, Same scenario we are using
Active Directory is on Zentyal. ( V5)
Nethserver is joined to Zentyal AD (Domain join)
Windows Server 2012 R2 is joined to Zentyal AD and acts as a remote desktop host (Remote Desktop using Vspare l300 N-computing Device)
All client machines (Windows server 2012 r2, Ubuntu 14.04, Windows 7) are joined to DC (Domain join) and all machines are using thin client (N computing for RDP)
Once we enable dns_v4_first on in squid config file, there is no problem in ubuntu its working fine. but when its come to window in chrome browser every 30 min asking the username password pop up. Once we enter the user name and password its not cleared.
We are trying to access internet explorer same as chrome browser. But we can’t able to save password in IE, Because it’s joined in domain and using FQDN in proxy settings. It’s not asking for any password. But we put IP address in proxy settings it asking password and once we enter its not cleared asking again and again same as chrome.
Maybe we enable cookies in chrome maybe its help. I don’t know just asking for suggestion.
I tried this two options. What is the difference between this two options.
For domain users it worked without password window. I didn’t use web content filter in my tests, so please try if something changes if you disable it.
I could only reproduce the issue with a non domain user. It’s not possible to use chrome to connect to the proxy because it falls back to NTLM mode…in this case it does not work (tried user@domain, domain\user… without success)
Only possibility was to use Internet Explorer one time and save credentials (the domain is recognized correctly, but it should also work with “otherdomain\user”):
zentyal.domain.local - Zentyal 5.1 AD: domain(.local), created “testuser” and “newuser”, under computers you should see the Nethserver and the Windows Server:
testvm2.domain.local - Nethserver 7.5 joined to AD, enabled authenticated proxy, dns_v4_first on
win2012r2.domain.local - Windows Server 12R2 joined to Zentyal AD, installed RDS role (quick setup, all on one machine)
@mrmarkuz
For domain users it worked without password But its work only 1 hrs after that is asking password popup message and its not get cleared.
We are trying all those possible ways as mentioned above. Nothing work perfectly. The Internet Explorer not save the credentials it asking again and again (same as chrome). I don’t know what to do now, we are getting trouble in this issue. once enter the credentials in the manager after that IE and chrome asking password again and again.
Why its not working any windows machines. much better in Linux machines. we need solution for this issue.
We need to update NS version 7.4 to 7.5 that’s what you are saying.
But in version 7.5 there is no update regarding web proxy (squid) as I go through the release post (7.5). Then how its work.
Release notes are for ISO releases (when a new NethServer version is published). It does not contain all the minor updates to packages released after the ISO.
Would be nice to give a feedback anyway. As you know this package is in testing, also positive feedback is very welcome, not only if there are problems. This is a good way to contribute to this project. Test and report.