Article delegate-en/5028 of [1-5044] on the server delegate.cloudapp.net:119
  upper oldest olders older1 this newer1 newers latest
search
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
[Reference:<_A5027@delegate-en.ML_>]
Newsgroups: mail-lists.delegate-en

[DeleGate-En] Re: DeleGate Proxy forwarding
28 Mar 2012 18:17:04 GMT "Gary Burch" <puijqbdyi-4fukxtanktt6.ml@delegate.org>

Hi,

Many thanks for your time, but I still seem to be doing something wrong.
I've initialised delegate with:

dg9_9_7.exe -P888 -fv SERVER=http PROXY=pxyshf.gb-home.net:8888
MYAUTH="GB-HOME\pbtest:Pa55w0rd:http-proxy" ADMIN=admin@gb-home..

but the upstream proxy still reports connections forwarded from DeleGate
as anonymous connections.

Am I doing something wrong with the Delegate configuration?

Thanks again,
Gary

-----Original Message-----
From: Yutaka Sato [mailto:feedback@delegate.org] 
Sent: 28 March 2012 10:34
To: feedback@delegate.org
Cc: Gary Burch
Subject: Re: [DeleGate-En] DeleGate Proxy forwarding

Hi,

In message <_A5026@delegate-en.ML_>
on 03/28/12(01:20:50) you "Gary Burch" <puijqbdyi-4fukxtanktt6.ml@delegate.org>
wrote:
 |I was wondering if you could help me with an unusual setup of
DeleGate.
 |I would like to configure it to forward all requests it receives onto
an  |upstream proxy, and to always use a specific username to
authenticate to  |that proxy.  I have tried several combinations of
FORWARD and MYAUTH,  |but I always get a 407 or a 503 error.

I don't think your usage is unusual and I can test it as follows:

## an upstream HTTP proxy that requires User=u and Pass=p delegated
-P9999 -fv SERVER=http AUTHORIZER="-list{u:p}"

## your HTTP proxy forwarding to the upstream proxy with a given auth.
info.
delegated -P9998 -fv SERVER=http PROXY=localhost:9999
MYAUTH="u:p:http-proxy"

## a HTTP client using your proxy
delegated -Fdget -fv PROXY=localhost:9998 http://www.delegate.org -h -c


Cheers,
Yutaka
--
  9 9   Yutaka Sato (CSDP,ITIL-F,OCUP-A,Security+,ISTQB-F)
 ( ~ )  National Institute of Advanced Industrial Science and Technology
_<   >_ 1-1-4 Umezono, Tsukuba, Ibaraki, 305-8568 Japan
Do the more with the less -- B. Fuller

C:\Program Files\Delegate>dg9_9_7.exe -P888 -fv SERVER=http PROXY=pxyshf.gb-home.net:8888 MYAUTH="GB-HOME\pbtest:Pa55w0rd:http-proxy" ADMIN=avatar@gb-home.net
03/28 18:10:38.60 [42640] 0+0: --- [ssl] 0 dglibssl.dll
03/28 18:10:38.60 [42640] 0+0: --- [ssl] 0 ssl.dll
03/28 18:10:38.60 [42640] 0+0: --- [ssl] 0 ssl
03/28 18:10:38.60 [42640] 0+0: ## cannot load ssl
03/28 18:10:38.60 [42640] 0+0: --- [libeay32] 0 dgliblibeay32.dll
03/28 18:10:38.60 [42640] 0+0: --- [C:\Program Files\Delegate\libeay32.dll]
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] 10000000 C:\Program Files\Delegate\libeay32.dll
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] optional: SSL_set_SSL_CTX
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] optional: SSL_get_servername
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] optional: SSL_get_servername_type
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] optional: SSL_CTX_callback_ctrl
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] optional: SSL_CTX_use_certificate_chain_file
03/28 18:10:38.62 [42640] 0+0: --- [libeay32] optional: SSL_CTX_set_session_id_context
03/28 18:10:38.63 [42640] 0+0: --- [libeay32] optional: SSL_CTX_set_generate_session_id
03/28 18:10:38.63 [42640] 0+0: ---- [libeay32] loaded 112 syms, unknown=47+7, already=0
03/28 18:10:38.63 [42640] 0+0: --- [ssleay32] 0 dglibssleay32.dll
03/28 18:10:38.63 [42640] 0+0: --- [C:\Program Files\Delegate\ssleay32.dll]
03/28 18:10:38.65 [42640] 0+0: --- [ssleay32] FE0000 C:\Program Files\Delegate\ssleay32.dll
03/28 18:10:38.65 [42640] 0+0: ---- [ssleay32] loaded 112 syms, unknown=0+0, already=57
03/28 18:10:38.65 [42640] 0+0: ---- unknown = 0+0, already = 57 / 112
03/28 18:10:38.65 [42640] 0+0: +++ loaded OpenSSL 0.9.8g 19 Oct 2007
03/28 18:10:38.65 [42640] 0+0: ... testing resolver[SYS] with 'WWW.DeleGate.ORG'

03/28 18:10:38.65 [42640] 0+0: ... you can suppress this test by RES_WAIT=0
03/28 18:10:38.67 [42640] 0+0: ... gethostname(galaxy)
03/28 18:10:38.67 [42640] 0+0: configuring default RESOLV ...
03/28 18:10:38.67 [42640] 0+0: ... gethostname()='galaxy'
03/28 18:10:38.67 [42640] 0+0: ... SYS: galaxy -> 192.168.1.100
03/28 18:10:38.67 [42640] 0+0: connectTO: assume in non-blocking mode
03/28 18:10:38.78 [42640] 0+0: ## connect[6] TIMEOUT(100)
03/28 18:10:38.78 [42640] 0+0: {R} No local NS (192.168.1.100:53)
03/28 18:10:38.78 [42640] 0+0: ... NIS not available (no default domain)
03/28 18:10:38.78 [42640] 0+0: ... export RES_ORDER=CFDS
03/28 18:10:38.78 [42640] 0+0: {R} confid(detected)[2479703d66e7c19c2fff4ce97b5bf852]<-[]
03/28 18:10:38.78 [42640] 0+0: export RESOLV=cache,file,dns,sys (set by default)

SRCSIGN=
BLDSIGN=
03/28 18:10:38.79 [42640] 0+0: --INITIALIZATION START-12032818+0000: 9.9.7 on WindowsNT--
03/28 18:10:38.79 [42640] 0+0: BINSHELL=/bin/sh
03/28 18:10:38.79 [42640] 0+0: MAXIMA=delegated:16 for small mem=101M
03/28 18:10:38.79 [42640] 0+0: server_open(delegate,:888,listen=20)
03/28 18:10:38.81 [42640] 0+0: server_open(delegate,:888) BOUND
03/28 18:10:38.81 [42640] 0+0: DGROOT=C:/Program Files/DeleGate^M
03/28 18:10:38.81 [42640] 0+0: <DeleGate/9.9.7> [42640] -P888 READY^M
03/28 18:10:38.81 [42640] 0+0: HostID: 2008/10/18/17/33-8A (WindowsNT) galaxy (tz=0 db=-1 dl=1)
<DeleGate/9.9.7> [42640] -P888 READY
03/28 18:10:38.82 [42640] 0+0: --- [dgzlib1] 0 dglibdgzlib1.dll
03/28 18:10:38.82 [42640] 0+0: --- [C:\Program Files\Delegate\dgzlib1.dll]
03/28 18:10:38.82 [42640] 0+0: --- [dgzlib1] 1140000 C:\Program Files\Delegate\dgzlib1.dll
03/28 18:10:38.82 [42640] 0+0: ---- [dgzlib1] loaded 20 syms, unknown=0+0, already=0
03/28 18:10:38.82 [42640] 0+0: +++ loaded Zlib 1.2.3.f-DeleGate-v3
(WIN) 17:10:38.822 [42640] ERROR: PAM module is not built in.
03/28 18:10:38.84 [42640] 0+0: --- [pam] 0 dglibpam.dll
03/28 18:10:38.84 [42640] 0+0: --- [pam] 0 pam.dll
03/28 18:10:38.84 [42640] 0+0: --- [pam] 0 pam
03/28 18:10:38.84 [42640] 0+0: ## cannot load pam
Config: WindowsNT; FileSize-Bits=64/64,32/32,32,32; socket=8192/8192; sockpair=8192/8192,2016++u; char=signed; thread=Winthread/win,44/128; zlib=56,310256; pam=0; stty=none/NA; addr=A/4577C0/126E58; fmem=101/0/511M; MSC=1400
DGROOT=C:/Program Files/DeleGate
ADMIN=avatar@gb-home.net
AIST-Product-ID: 2000-ETL-198715-01, H14PRO-049, H15PRO-165, H18PRO-443
Copyright (c) 1994-2000 Yutaka Sato and ETL,AIST,MITI
Copyright (c) 2001-2010 National Institute of Advanced Industrial Science and Technology (AIST)
BLDSIGN=9.9.7:20100331192714+0900:c818055001ce9bd3::-
HostID: 2008/10/18/17/33-8A (WindowsNT) galaxy (tz=0 db=-1 dl=1)
Loaded: OpenSSL 0.9.8g 19 Oct 2007
Loaded: Zlib 1.2.3.f-DeleGate-v3
03/28 18:10:38.85 [42640] 0+0: PORT= 888/11 (3,120)
03/28 18:10:38.87 [42640] 0+0: OWNER=nobody => OWNER=?/?(?/?)
03/28 18:10:38.87 [42640] 0+0: ----[ROUTE] path part as ConnectFlags {/}
03/28 18:10:38.87 [42640] 0+0: MYAUTH=GB-HOME\pbtest:****:http-proxy:*:*
03/28 18:10:38.87 [42640] 0+0: REMITTABLE = http,https/{80,443},gopher,ftp,wais
03/28 18:10:38.87 [42640] 0+0: #### gzip/gunzip = dynamically linked
03/28 18:10:38.87 [42640] 0+0: ADMIN=avatar@gb-home.net protocol=http(specialist)
03/28 18:10:38.88 [42640] 0+0: #### CACHE DISABLED #### Cache directory seems not exist: C:/Program Files/DeleGate/cache
03/28 18:10:38.88 [42640] 0+0: MOUNT[0]X[2] /-/builtin/icons/* = default
03/28 18:10:38.88 [42640] 0+0: MOUNT[1]X[3] /-/* = forbidden,from=!.RELIABLE,default
03/28 18:10:38.88 [42640] 0+0: MOUNT[2]X[0] /-* = default
03/28 18:10:38.88 [42640] 0+0: MOUNT[3]X[1] /=* = default
03/28 18:10:38.90 [42640] 0+0: MOUNT[4]=[4] /favicon.ico builtin:icons/ysato/default.ico default,direction=fo,onerror=404,expires=15m
03/28 18:10:38.90 [42640] 0+0: #### stack size limit = FFFFFFFF (-1)
03/28 18:10:38.90 [42640] 0+0: Stay open PIDFILE for accept() lock[fd=15]
03/28 18:10:38.90 [42640] 0+0: StickyReport[16,17]127.0.0.1:27988><127.0.0.1:27989 8192/8192 8192/40960
03/28 18:10:38.90 [42640] 0+0: env[28] LIBPATH=.;C:\Program Files\Delegate;C:/Program Files/DeleGate/lib;dg9_9_7.exe;C:/Program Files/DeleGate/etc
03/28 18:10:38.92 [42640] 0+0: env[32] RESOLV=cache,file,dns,sys
03/28 18:10:38.92 [42640] 0+0: arg[3] SERVER=http
03/28 18:10:38.92 [42640] 0+0: arg[4] PROXY=pxyshf.gb-home.net:8888
03/28 18:10:38.92 [42640] 0+0: arg[5] MYAUTH=
03/28 18:10:38.92 [42640] 0+0: arg[6] ADMIN=avatar@gb-home.net
03/28 18:10:38.92 [42640] 0+0: DELEGATE_Modified[1]: 4f73460e 1332954638
03/28 18:10:38.92 [42640] 0+0: --INITIALIZATION DONE-12032818+0000: 9.9.7 on WindowsNT--
03/28 18:10:38.95 [42640] 0+0: logMMap: 1620000 5456
03/28 18:10:38.95 [42640] 0+0: LOG-Socketpair[21,22]
(WIN) 17:11:54.039 [42640] spawn() = 1440 [41108], children(alive=1/1) 0.031s
03/28 18:11:54.04 [42640] 1+0: spawn() = 1440 [41108], children(alive=1/1) 0.031s
03/28 18:11:54.06 [41108] 0+0: {R} confid(RESOLV)[3e440c122a2e1717cd6e15e779afa58b]<-[]
03/28 18:11:54.06 [41108] 0+0: --unsetenv RES_ORDER=CFDS (RESOLV=CFDS)
03/28 18:11:54.06 [41108] 1+0: MAXIMA=delegated:16 for small mem=99M
03/28 18:11:54.06 [41108] 1+0: Stay open PIDFILE for accept() lock[fd=23]
03/28 18:11:54.06 [41108] 1+1: ----[ROUTE] path part as ConnectFlags {/}
03/28 18:11:58.57 [41108] 1+1: gethostbyaddr(192.168.2.167) unknown[4.50s]
03/28 18:11:58.57 [41108] 1+1: (0) accepted [59] -@[192.168.2.167]192.168.2.167:56036 (4.562s)(1)
03/28 18:11:58.57 [41108] 1+1: Proxy: host=192.168.2.167; User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; gb-home.net; gb-home); DIRECT
03/28 18:11:58.57 [41108] 1+1: HCKA:[0] Keep-Alive; host=192.168.2.167; (User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; Trident/5.0; gb-home.net; gb-home))
03/28 18:11:58.59 [41108] 1+1: REQUEST - GET http://www.npl.co.uk/science-technology/time-frequency/time/products-and-services/msf-radio-time-signal HTTP/1.1^M
03/28 18:12:00.01 [41108] 1+1: ## hostIFto 192.168.2.167 < 192.168.2.100 (ffffff00)
03/28 18:12:00.02 [41108] 1+1: PATH> http://www.npl.co.uk:80!galaxy.gb-home.net:888!192.168.2.167:56036!anonymous@192.168.2.167;1332954718
03/28 18:12:00.02 [41108] 1+1: REQUEST = [http://www.npl.co.uk:80/] GET /science-technology/time-frequency/time/products-and-services/msf-radio-time-signal HTTP/1.1^M
03/28 18:12:00.02 [41108] 1+1: ROUTE: http://pxyshf.gb-home.net:8888//
03/28 18:12:00.02 [41108] 1+1: connectTO: assume in non-blocking mode
03/28 18:12:00.02 [41108] 1+1: ConnectToServer connected [34] {192.168.1.218:8888 <- 192.168.1.217:27996} [0.000s]
03/28 18:12:00.02 [41108] 1+1: willSTLS_SV[http]: ServerFlags=8000 128FC8
03/28 18:12:00.02 [41108] 1+1: HTTP => (www.npl.co.uk:80) GET /science-technology/time-frequency/time/products-and-services/msf-radio-time-signal HTTP/1.1^M
03/28 18:12:00.02 [41108] 1+1: #PROXY REQUEST = GET http://www.npl.co.uk/science-technology/time-frequency/time/products-and-services/msf-radio-time-signal HTTP/1.1^M
03/28 18:12:00.02 [41108] 1+1: MYAUTH=GB-HOME\pbtest:**** for http-proxy:pxyshf.gb-home.net:8888
03/28 18:12:00.02 [41108] 1+1: ## GEN Proxy-Authorization: Basic R0ItSE9NRVxwYnRlc3Q6UGE1NXcwcmQ= [GB-HOME\pbtest:Pa55w0rd]
03/28 18:12:00.04 [41108] 1+1: HTTP error request: GET http://www.npl.co.uk/science-technology/time-frequency/time/products-and-services/msf-radio-time-signal HTTP/1.1^M
03/28 18:12:00.04 [41108] 1+1: HTTP error status: 502 Proxy Error ( The ISA Server denied the specified Uniform Resource Locator (URL).  )
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Via: 1.1 DEFIANT^M
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Connection: close^M
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Proxy-Connection: close^M
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Pragma: no-cache^M
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Cache-Control: no-cache^M
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Content-Type: text/html^M
03/28 18:12:00.06 [41108] 1+1: HTTP error header: Content-Length: 4052  ^M
03/28 18:12:00.06 [41108] 1+1: #HT11 SERVER ver[HTTP/1.1] conn[close]
03/28 18:12:00.06 [41108] 1+1: HTTP error header: ^M
03/28 18:12:00.06 [41108] 1+1: HTTP/1.1 502 Content-{Type:text/html Encoding:[/] Leng:4052} KA:0/0 Server:
03/28 18:12:00.09 [41108] 1+1: SOCKET recv(34)=0 error=0 [0.000] TCP AF_INET :27996 << :8888
03/28 18:12:00.09 [41108] 1+1: ####Gzip [0.000000] - 4052 => 1492 [37=>39]
03/28 18:12:00.09 [41108] 1+1: putMIMEmsg: Content-Length: 4052 -> 1492 (1689 -197) [gzip]
03/28 18:12:00.09 [41108] 1+1: #CEcl put Content-Encoding:gzip
03/28 18:12:00.09 [41108] 1+1: HTTP transmitted: 255head+4052/4052body=>0txt+0bin->1492/1492, 12i/2o/0f/0.1 ---z-
03/28 18:12:00.09 [41108] 1+1: #HT11 EOF from the client (2)
03/28 18:12:00.09 [41108] 1+1: #HT11 close svsokcs[35,36]
03/28 18:12:00.09 [41108] 1+1: HCKA:[0] closed -- s:bad status: -502
03/28 18:12:00.10 [41108] 1+1: disconnected [59] -@[192.168.2.167]192.168.2.167:56036 (6.094s)(0)192.168.2.167 - - [28/Mar/2012:18:12:00 +0000] "GET http://www.npl.co.uk/science-technology/time-frequency/time/products-and-services/msf-radio-time-signal HTTP/1.1" 502 4052 0*0.000+0.062:RP:0s
03/28 18:12:30.10 [41108] 1+1: StickyServer done [timeout] 1 req / 1+0/1 conn /36 sec
(WIN) 17:12:30.210 [42640] wait3(N) = 1440 [41108] 0, children(alive=0/1) 0.09s
03/28 18:12:30.21 [42640] 1+0: wait3(N) = 1440 [41108] 0, children(alive=0/1) 0.09s

  admin search upper oldest olders older1 this newer1 newers latest
[Top/Up] [oldest] - [Older+chunk] - [Newer+chunk] - [newest + Check]
@_@V