Delay pool not working after quota exceeded

Posted on 2009-02-19
Last Modified: 2013-12-16
I have configure delay pool in squid to restrict download speed for particular file extension like .exe, .iso etc... I have restrict download speed by using the LDAP user name.  Delay pool is working fine. The problem is when the squish quota exceeds the delay pool is not working. Users can able to download files at full speed. If the quota not execeeds means delay pool working fine.

Kindly see my squid code

acl ldapauth proxy_auth REQUIRED
acl SQUISHLOC dst adminlinux
 acl SQUISHED1 proxy_auth -i "/etc/squid/squished"
# acl SQUISHED2 ident    "/etc/squid/squished"
acl SQUISHED3 src        "/etc/squid/squished"
# Error info that says you're squished
deny_info SQUISHED1
# deny_info http://adminlinux/squish/?squished& SQUISHED2
deny_info SQUISHED3
# HTTP access controls for squish
http_access allow SQUISHLOC
 http_access deny SQUISHED1
# http_access deny SQUISHED2
http_access deny SQUISHED3

delay_pools 1
delay_class 1 1
delay_parameters 1 1000/1000
acl our_networks src  
acl DelayDownload url_regex -i "/etc/delaydownload"
delay_access 1 allow DelayDownload
http_access allow ldapauth !SQUISHED1
Question by:rajasekarramasamy
    1 Comment
    LVL 27

    Accepted Solution

    to figure out what's going wrong, enable quid ACL debug in squid.conf:

    debug_options ALL,1 33,2

    or more detailed:
    debug_options ALL,1 33,2 28,9

    then restart squid and see what happens and what rule allows access to users with overlimits.
    Read here for more info:

    Write Comment

    Please enter a first name

    Please enter a last name

    We will never share this with anyone.

    Featured Post

    Why You Should Analyze Threat Actor TTPs

    After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

    rdate is a Linux command and the network time protocol for immediate date and time setup from another machine. The clocks are synchronized by entering rdate with the -s switch (command without switch just checks the time but does not set anything). …
    I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension ( This reminded me of questions tha…
    Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
    Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

    759 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    12 Experts available now in Live!

    Get 1:1 Help Now