Find the answer to your Linux question:
Page 1 of 2 1 2 LastLast
Results 1 to 10 of 13
I have installed squid proxy on my local machine (not a server). The intention is to use it as a content filter for the internet traffic. I have a list ...
Enjoy an ad free experience by logging in. Not a member yet? Register.
  1. #1
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170

    Question [SOLVED] Squid proxy, 2 minutes delay after boot?


    I have installed squid proxy on my local machine (not a server). The intention is to use it as a content filter for the internet traffic.

    I have a list of allowed sites and a list of forbidden sites. My Access Control Lists in squid.conf is defined as follows:
    Code:
    acl business_hours time M T W H F 9:00-18:00
    acl GoodSites dstdomain "/etc/squid/allowed-sites.squid"
    acl BadSites dstdomain "/etc/squid/restricted-sites.squid"
    http_access deny BadSites
    http_access deny business_hours !GoodSites
    Also, transparent proxy is enabled as follows:
    Code:
    http_port 3128 transparent
    The impact of squid filtering is immediately noticeable in the firefox, when starting and stopping the service.
    Code:
    [root@blnl]# service squid start
    [root@blnl]# service squid stop
    However, each time after booting my system, firefox can't open any web page for at least 2 minutes. Then everything starts working properly. ACL restrictions are also effective.

    To start squid at boot, I have used following command:
    Code:
    [root@blnl]# chkconfig squid on
    Is the 2 minutes delay after boot normal?
    How can I reduce this delay?
    When I bypass the squid proxy in firefox I get immediate access to all web pages. Of course, in that case squid can't control the content any more. So that is not what I want to do.

    Can someone please help me with this?

    Thanks,
    Boris
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

  2. #2
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170

    Exclamation

    Just an idea, why this is happening.

    I believe it might have something to do with the squid proxy starting before the network connection is available. Maybe that way squid is brought in some strange state? I don't know for sure, it's just a possibility.

    The reason why the network connection is established later is because it is protected by the Keyring. So in order to start the network connection I have to type the password.

    Is it possible to somehow link the squid proxy to this password as well, so that squid cannot start before the network connection is available?
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

  3. #3
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170

    Exclamation

    Quote Originally Posted by blnl View Post
    I believe it might have something to do with the squid proxy starting before the network connection is available. Maybe that way squid is brought in some strange state? I don't know for sure, it's just a possibility.
    By the way, this is not true. The squid is not starting before the network connection.
    With pgrep squid I found that squid is not running at all (although wireless network is already present). Actually squid starts about 2 minutes after the boot.

    Any ideas? I need some help here.
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

  4. $spacer_open
    $spacer_close
  5. #4
    Linux Newbie Ziplock's Avatar
    Join Date
    Jan 2009
    Location
    Adelaide
    Posts
    169
    Hi there,

    These kinds of delays have happened for me in the past when DNS is not working properly. i.e. you have a primary dns specified that can't be queried, or all the interfaces that you are listening on are not in /etc/hosts

    Check your configuration in the following files:

    /etc/resolv.conf
    /etc/hosts
    /etc/squid.conf

    Also, the squid log file, and generic log files may have some clues:

    /var/log/squid/access.log
    /var/log/squid/error.log
    /var/log/messages

  6. #5
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170

    Post

    I did not find anything strange in /var/log/squid/access.log, and /var/log/squid/error.log does not exist.

    However, in /var/log/messages I can see that squid always starts approximately 4 minutes after boot. Moreover, squid always starts after SuSEfirewall2. Is this coincidence or it there some dependency between SuSEfirewall2 and squid?
    Code:
    Apr  1 23:00:13 linux-kr6c syslog-ng[1830]: syslog-ng version 1.6.12 starting
    Apr  1 23:00:14 linux-kr6c firmware.sh[1987]: Cannot find  firmware file 'intel-ucode/06-0d-06'
    Apr  1 23:00:14 linux-kr6c hcid[1344]: HCI dev 0 registered
    Apr  1 23:00:14 linux-kr6c hcid[1344]: Starting SDP server
    Apr  1 23:00:14 linux-kr6c hcid[1344]: Registered manager path:/org/bluez/serial
    Apr  1 23:00:14 linux-kr6c hcid[1344]: Parsing /etc/bluetooth/network.conf failed: No such file or directory
    Apr  1 23:00:14 linux-kr6c hcid[1344]: bridge pan0 created
    Apr  1 23:00:14 linux-kr6c hcid[1344]: Registered manager path:/org/bluez/network
    Apr  1 23:00:14 linux-kr6c ifup: Service network not started and mode 'auto' -> skipping
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Registered server path:/org/bluez/network/nap
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Registered server path:/org/bluez/network/gn
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Registered server path:/org/bluez/network/panu
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Parsing /etc/bluetooth/input.conf failed: No such file or directory
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Registered input manager path:/org/bluez/input
    Apr  1 23:00:15 linux-kr6c hcid[1344]: HCI dev 0 up
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Device hci0 has been added
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Starting security manager 0
    Apr  1 23:00:15 linux-kr6c hcid[1344]: Device hci0 has been activated
    Apr  1 23:00:16 linux-kr6c SuSEfirewall2: batch committing...
    Apr  1 23:00:16 linux-kr6c SuSEfirewall2: Firewall rules set to CLOSE.
    Apr  1 23:00:18 linux-kr6c kernel: klogd 1.4.1, log source = /proc/kmsg started.
    Apr  1 23:00:18 linux-kr6c kernel: ttyS0: LSR safety check engaged!
    Apr  1 23:00:18 linux-kr6c kernel: ttyS2: LSR safety check engaged!
    Apr  1 23:00:18 linux-kr6c kernel: powernow: This module only works with AMD K7 CPUs
    Apr  1 23:00:18 linux-kr6c kernel: IA-32 Microcode Update Driver: v1.14a <tigran@aivazian.fsnet.co.uk>
    Apr  1 23:00:18 linux-kr6c kernel: Clocksource tsc unstable (delta = 252708184 ns)
    Apr  1 23:00:18 linux-kr6c kernel: Bluetooth: BNEP (Ethernet Emulation) ver 1.2
    Apr  1 23:00:18 linux-kr6c kernel: Bluetooth: BNEP filters: protocol multicast
    Apr  1 23:00:18 linux-kr6c kernel: Bridge firewalling registered
    Apr  1 23:00:18 linux-kr6c kernel: pan0: Dropping NETIF_F_UFO since no NETIF_F_HW_CSUM feature.
    Apr  1 23:00:18 linux-kr6c kernel: NET: Registered protocol family 10
    Apr  1 23:00:18 linux-kr6c kernel: lo: Disabled Privacy Extensions
    Apr  1 23:00:18 linux-kr6c kernel: ip6_tables: (C) 2000-2006 Netfilter Core Team
    Apr  1 23:00:18 linux-kr6c kernel: ip_tables: (C) 2000-2006 Netfilter Core Team
    Apr  1 23:00:18 linux-kr6c kernel: nf_conntrack version 0.5.0 (16384 buckets, 65536 max)
    Apr  1 23:00:18 linux-kr6c kernel: ttyS0: LSR safety check engaged!
    Apr  1 23:00:18 linux-kr6c kernel: ttyS2: LSR safety check engaged!
    Apr  1 23:00:19 linux-kr6c network: Starting the NetworkManager
    Apr  1 23:00:23 linux-kr6c nm-system-settings: Loaded plugin ifcfg-suse: (C) 2008 Novell, Inc.  To report bugs please use the NetworkManager mailing list.
    Apr  1 23:00:23 linux-kr6c nm-system-settings: Loaded plugin keyfile: (c) 2007 - 2008 Red Hat, Inc.  To report bugs please use the NetworkManager mailing list.
    Apr  1 23:00:23 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="error", sender=":1.7" (uid=0 pid=2190 comm="/usr/sbin/wpa_supplicant -c /etc/wpa_supplicant/wp") interface="(unset)" member="(unset)" error name="fi.epitest.hostap.WPASupplicant.InvalidInterface" requested_reply=0 destination=":1.5" (uid=0 pid=2186 comm="/usr/sbin/NetworkManager "))
    Apr  1 23:00:24 linux-kr6c nm-system-settings: Invalid hexadecimal WEP key.
    Apr  1 23:00:24 linux-kr6c nm-system-settings: Missing or invalid key management
    Apr  1 23:00:24 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="method_return", sender=":1.6" (uid=0 pid=2192 comm="/usr/sbin/nm-system-settings --config /etc/nm-syst") interface="(unset)" member="(unset)" error name="(unset)" requested_reply=0 destination=":1.5" (uid=0 pid=2186 comm="/usr/sbin/NetworkManager "))
    Apr  1 23:00:26 linux-kr6c kernel: ADDRCONF(NETDEV_UP): eth0: link is not ready
    Apr  1 23:00:26 linux-kr6c kernel: NET: Registered protocol family 17
    Apr  1 23:00:27 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/Xservers
    Apr  1 23:00:27 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/xdm-config
    Apr  1 23:00:27 linux-kr6c auditd[2293]: Started dispatcher: /sbin/audispd pid: 2295
    Apr  1 23:00:27 linux-kr6c auditd[2293]: Init complete, auditd 1.6.8 listening for events (startup state disable)
    Apr  1 23:00:27 linux-kr6c audispd: af_unix plugin initialized
    Apr  1 23:00:27 linux-kr6c audispd: audispd initialized with q_depth=64 and 1 active plugins
    Apr  1 23:00:29 linux-kr6c kernel: [drm] Initialized drm 1.1.0 20060810
    Apr  1 23:00:29 linux-kr6c kernel: ACPI: PCI Interrupt 0000:01:00.0[A] -> Link [C0C2] -> GSI 10 (level, low) -> IRQ 10
    Apr  1 23:00:29 linux-kr6c kernel: [drm] Initialized radeon 1.28.0 20060524 on minor 0
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Found user 'avahi' (UID 103) and group 'avahi' (GID 105).
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Successfully dropped root privileges.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: avahi-daemon 0.6.22 starting up.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Loading service file /etc/avahi/services/sftp-ssh.service.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Loading service file /etc/avahi/services/ssh.service.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Network interface enumeration completed.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Registering new address record for fe80::20e:35ff:feac:dd24 on eth1.*.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Server startup complete. Host name is linux-kr6c.local. Local service cookie is 2482567140.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Service "linux-kr6c" (/etc/avahi/services/ssh.service) successfully established.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Service "SFTP File Transfer on linux-kr6c" (/etc/avahi/services/sftp-ssh.service) successfully established.
    Apr  1 23:00:29 linux-kr6c avahi-daemon[2446]: Registering HINFO record with values 'I686'/'LINUX'.
    Apr  1 23:00:30 linux-kr6c kernel: agpgart: Found an AGP 2.0 compliant device at 0000:00:00.0.
    Apr  1 23:00:30 linux-kr6c kernel: agpgart: Putting AGP V2 device at 0000:00:00.0 into 1x mode
    Apr  1 23:00:30 linux-kr6c kernel: agpgart: Putting AGP V2 device at 0000:01:00.0 into 1x mode
    Apr  1 23:00:30 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/Xservers
    Apr  1 23:00:30 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/xdm-config
    Apr  1 23:00:30 linux-kr6c kernel: [drm] Setting GART location based on new memory map
    Apr  1 23:00:30 linux-kr6c kernel: [drm] Loading R300 Microcode
    Apr  1 23:00:30 linux-kr6c kernel: [drm] writeback test succeeded in 2 usecs
    Apr  1 23:00:31 linux-kr6c avahi-dnsconfd[2658]: Successfully connected to Avahi daemon.
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: ntpd 4.2.4p4@1.1520-o Mon Jan 19 14:44:51 UTC 2009 (1)
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: precision = 1.000 usec
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: ntp_io: estimated max descriptors: 1024, initial socket boundary: 16
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: Listening on interface #0 wildcard, 0.0.0.0#123 Disabled
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: Listening on interface #1 wildcard, ::#123 Disabled
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: Listening on interface #2 lo, ::1#123 Enabled
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: Listening on interface #3 eth1, fe80::20e:35ff:feac:dd24#123 Enabled
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: Listening on interface #4 lo, 127.0.0.1#123 Enabled
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: Listening on interface #5 lo, 127.0.0.2#123 Enabled
    Apr  1 23:00:31 linux-kr6c ntpd[2689]: kernel time sync status 0040
    Apr  1 23:00:32 linux-kr6c ntpd[2689]: frequency initialized 2.435 PPM from /var/lib/ntp/drift/ntp.drift
    Apr  1 23:00:32 linux-kr6c kernel: warning: `ntpd' uses deprecated v2 capabilities in a way that may be insecure.
    Apr  1 23:00:34 linux-kr6c sshd[2767]: Server listening on :: port 22.
    Apr  1 23:00:34 linux-kr6c sshd[2767]: Server listening on 0.0.0.0 port 22.
    Apr  1 23:00:36 linux-kr6c gconfd (boris-2832): starting (version 2.22.0), pid 2832 user 'boris'
    Apr  1 23:00:36 linux-kr6c kernel: eth1: no IPv6 routers present
    Apr  1 23:00:36 linux-kr6c gconfd (boris-2832): Resolved address "xml:readonly:/etc/gconf/gconf.xml.mandatory" to a read-only configuration source at position 0
    Apr  1 23:00:36 linux-kr6c gconfd (boris-2832): Resolved address "xml:readwrite:/home/boris/.gconf" to a writable configuration source at position 1
    Apr  1 23:00:36 linux-kr6c gconfd (boris-2832): Resolved address "xml:readonly:/etc/gconf/gconf.xml.defaults" to a read-only configuration source at position 2
    Apr  1 23:00:36 linux-kr6c gconfd (boris-2832): Resolved address "xml:readonly:/etc/gconf/gconf.xml.vendor" to a read-only configuration source at position 3
    Apr  1 23:00:36 linux-kr6c gconfd (boris-2832): Resolved address "xml:readonly:/etc/gconf/gconf.xml.schemas" to a read-only configuration source at position 4
    Apr  1 23:00:40 linux-kr6c seahorse-agent[2840]: Failed to send buffer
    Apr  1 23:00:40 linux-kr6c seahorse-agent[2840]: Failed to send buffer
    Apr  1 23:00:51 linux-kr6c hcid[1344]: Default passkey agent (:1.23, /org/bluez/passkey) registered
    Apr  1 23:00:51 linux-kr6c hcid[1344]: Default authorization agent (:1.23, /org/bluez/auth) registered
    Apr  1 23:00:55 linux-kr6c pulseaudio[3004]: pid.c: Stale PID file, overwriting.
    Apr  1 23:00:55 linux-kr6c pulseaudio[3004]: main.c: setrlimit(RLIMIT_NICE, (31, 31)) failed: Operation not permitted
    Apr  1 23:00:55 linux-kr6c pulseaudio[3004]: main.c: setrlimit(RLIMIT_RTPRIO, (9, 9)) failed: Operation not permitted
    Apr  1 23:00:57 linux-kr6c gconfd (boris-2832): Resolved address "xml:readwrite:/home/boris/.gconf" to a writable configuration source at position 0
    Apr  1 23:01:39 linux-kr6c kernel: ieee80211_crypt: registered algorithm 'WEP'
    Apr  1 23:01:40 linux-kr6c dhclient: Internet Systems Consortium DHCP Client V3.0.6
    Apr  1 23:01:40 linux-kr6c dhclient: Copyright 2004-2007 Internet Systems Consortium.
    Apr  1 23:01:40 linux-kr6c dhclient: All rights reserved.
    Apr  1 23:01:40 linux-kr6c dhclient: For info, please visit http://www.isc.org/sw/dhcp/
    Apr  1 23:01:40 linux-kr6c dhclient: 
    Apr  1 23:01:40 linux-kr6c dhclient: Listening on LPF/eth1/00:0e:35:ac:dd:24
    Apr  1 23:01:40 linux-kr6c dhclient: Sending on   LPF/eth1/00:0e:35:ac:dd:24
    Apr  1 23:01:40 linux-kr6c dhclient: Sending on   Socket/fallback
    Apr  1 23:01:44 linux-kr6c dhclient: DHCPDISCOVER on eth1 to 255.255.255.255 port 67 interval 4
    Apr  1 23:01:46 linux-kr6c dhclient: DHCPOFFER from 10.0.0.138
    Apr  1 23:01:46 linux-kr6c dhclient: DHCPREQUEST on eth1 to 255.255.255.255 port 67
    Apr  1 23:01:46 linux-kr6c dhclient: DHCPACK from 10.0.0.138
    Apr  1 23:01:46 linux-kr6c avahi-daemon[2446]: Joining mDNS multicast group on interface eth1.IPv4 with address 10.0.0.252.
    Apr  1 23:01:46 linux-kr6c avahi-daemon[2446]: New relevant interface eth1.IPv4 for mDNS.
    Apr  1 23:01:46 linux-kr6c avahi-daemon[2446]: Registering new address record for 10.0.0.252 on eth1.IPv4.
    Apr  1 23:01:46 linux-kr6c dhclient: bound to 10.0.0.252 -- renewal in 3167 seconds.
    Apr  1 23:01:48 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/autofs' exited with error status 1.
    Apr  1 23:01:49 linux-kr6c ntpd[3268]: ntpd 4.2.4p4@1.1520-o Mon Jan 19 14:44:51 UTC 2009 (1)
    Apr  1 23:01:49 linux-kr6c ntpd[3268]: precision = 2.000 usec
    Apr  1 23:01:49 linux-kr6c ntpd[3268]: ntp_io: estimated max descriptors: 1024, initial socket boundary: 16
    Apr  1 23:01:49 linux-kr6c ntpd[3268]: unable to bind to wildcard socket address 0.0.0.0 - another process may be running - EXITING
    Apr  1 23:01:49 linux-kr6c SuSEfirewall2: /var/lock/SuSEfirewall2.booting exists which means system boot in progress, exit.
    Apr  1 23:01:49 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/nfs' exited with error status 2.
    Apr  1 23:01:49 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="method_return", sender=":1.57" (uid=0 pid=3230 comm="/usr/lib/NetworkManager/nm-dispatcher.action ") interface="(unset)" member="(unset)" error name="(unset)" requested_reply=0 destination=":1.5" (uid=0 pid=2186 comm="/usr/sbin/NetworkManager "))
    Apr  1 23:03:46 linux-kr6c /usr/sbin/cron[3586]: (CRON) STARTUP (V5.0)
    Apr  1 23:03:46 linux-kr6c smartd[3595]: smartd 5.39 2008-05-08 21:56 [i686-pc-linux-gnu] (local build) Copyright (C) 2002-8 by Bruce Allen, http://smartmontools.sourceforge.net 
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Opened configuration file /etc/smartd.conf
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Drive: DEVICESCAN, implied '-a' Directive on line 29 of file /etc/smartd.conf
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Configuration file /etc/smartd.conf was parsed, found DEVICESCAN, scanning devices
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Problem creating device name scan list
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Device: /dev/sda, opened
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Device /dev/sda: using '-d sat' for ATA disk behind SAT layer.
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Device: /dev/sda, opened
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Device: /dev/sda, found in smartd database.
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Device: /dev/sda, is SMART capable. Adding to "monitor" list.
    Apr  1 23:03:46 linux-kr6c smartd[3595]: Monitoring 0 ATA and 1 SCSI devices
    Apr  1 23:03:47 linux-kr6c smartd[3632]: smartd has fork()ed into background mode. New PID=3632.
    Apr  1 23:03:47 linux-kr6c SuSEfirewall2: Setting up rules from /etc/sysconfig/SuSEfirewall2 ...
    Apr  1 23:03:47 linux-kr6c SuSEfirewall2: using default zone 'ext' for interface irda0
    Apr  1 23:03:47 linux-kr6c SuSEfirewall2: using default zone 'ext' for interface pan0
    Apr  1 23:03:47 linux-kr6c squid[3670]: Squid Parent: child process 3672 started
    Apr  1 23:03:47 linux-kr6c squid[3672]: Starting Squid Cache version 2.6.STABLE20 for i686-pc-linux-gnu...
    Apr  1 23:03:47 linux-kr6c squid[3672]: Process ID 3672
    Apr  1 23:03:47 linux-kr6c squid[3672]: With 4096 file descriptors available
    Apr  1 23:03:47 linux-kr6c squid[3672]: Using epoll for the IO loop
    Apr  1 23:03:47 linux-kr6c squid[3672]: DNS Socket created at 0.0.0.0, port 9729, FD 6
    Apr  1 23:03:47 linux-kr6c squid[3672]: Adding domain lan from /etc/resolv.conf
    Apr  1 23:03:47 linux-kr6c squid[3672]: Adding domain lan from /etc/resolv.conf
    Apr  1 23:03:47 linux-kr6c squid[3672]: Adding nameserver 10.0.0.138 from /etc/resolv.conf
    Apr  1 23:03:47 linux-kr6c squid[3672]: User-Agent logging is disabled.
    Apr  1 23:03:47 linux-kr6c squid[3672]: Referer logging is disabled.
    Apr  1 23:03:47 linux-kr6c SuSEfirewall2: batch committing...
    Apr  1 23:03:47 linux-kr6c squid[3672]: Unlinkd pipe opened on FD 11
    Apr  1 23:03:47 linux-kr6c squid[3672]: Swap maxSize 102400 KB, estimated 7876 objects
    Apr  1 23:03:47 linux-kr6c squid[3672]: Target number of buckets: 393
    Apr  1 23:03:47 linux-kr6c squid[3672]: Using 8192 Store buckets
    Apr  1 23:03:47 linux-kr6c squid[3672]: Max Mem  size: 8192 KB
    Apr  1 23:03:47 linux-kr6c squid[3672]: Max Swap size: 102400 KB
    Apr  1 23:03:47 linux-kr6c squid[3672]: Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
    Apr  1 23:03:48 linux-kr6c squid[3672]: Rebuilding storage in /var/cache/squid (CLEAN)
    Apr  1 23:03:48 linux-kr6c squid[3672]: Using Least Load store dir selection
    Apr  1 23:03:48 linux-kr6c squid[3672]: Set Current Directory to /var/cache/squid
    Apr  1 23:03:48 linux-kr6c squid[3672]: Loaded Icons.
    Apr  1 23:03:48 linux-kr6c squid[3672]: Accepting transparently proxied HTTP connections at 0.0.0.0, port 3128, FD 13.
    Apr  1 23:03:48 linux-kr6c squid[3672]: Accepting ICP messages at 0.0.0.0, port 3130, FD 14.
    Apr  1 23:03:48 linux-kr6c squid[3672]: HTCP Disabled.
    Apr  1 23:03:48 linux-kr6c squid[3672]: Accepting SNMP messages on port 3401, FD 15.
    Apr  1 23:03:48 linux-kr6c squid[3672]: WCCP Disabled.
    Apr  1 23:03:48 linux-kr6c squid[3672]: Pinger socket opened on FD 16
    Apr  1 23:03:48 linux-kr6c squid[3672]: Ready to serve requests.
    Apr  1 23:03:48 linux-kr6c SuSEfirewall2: Firewall rules successfully set
    Apr  1 23:03:48 linux-kr6c kernel: bootsplash: status on console 0 changed to on
    Apr  1 23:03:48 linux-kr6c squid[3672]: Store rebuilding is 52.2% complete
    Apr  1 23:03:48 linux-kr6c squid[3672]: Done reading /var/cache/squid swaplog (7843 entries)
    Apr  1 23:03:48 linux-kr6c squid[3672]: Finished rebuilding storage from disk.
    Apr  1 23:03:48 linux-kr6c squid[3672]:      7843 Entries scanned
    Apr  1 23:03:48 linux-kr6c squid[3672]:         0 Invalid entries.
    Apr  1 23:03:48 linux-kr6c squid[3672]:         0 With invalid flags.
    Apr  1 23:03:48 linux-kr6c squid[3672]:      7843 Objects loaded.
    Apr  1 23:03:48 linux-kr6c squid[3672]:         0 Objects expired.
    Apr  1 23:03:48 linux-kr6c squid[3672]:         0 Objects cancelled.
    Apr  1 23:03:48 linux-kr6c squid[3672]:         0 Duplicate URLs purged.
    Apr  1 23:03:48 linux-kr6c squid[3672]:         0 Swapfile clashes avoided.
    Apr  1 23:03:48 linux-kr6c squid[3672]:   Took 0.9 seconds (9154.7 objects/sec).
    Apr  1 23:03:48 linux-kr6c squid[3672]: Beginning Validation Procedure
    Apr  1 23:03:48 linux-kr6c squid[3672]:   Completed Validation Procedure
    Apr  1 23:03:48 linux-kr6c squid[3672]:   Validated 7843 Entries
    Apr  1 23:03:48 linux-kr6c squid[3672]:   store_swap_size = 92152k
    Apr  1 23:03:48 linux-kr6c squid[3672]: storeLateRelease: released 0 objects
    Apr  1 23:09:55 linux-kr6c squid[3672]: icmpSend: send: (111) Connection refused
    Apr  1 23:09:55 linux-kr6c squid[3672]: Closing Pinger socket on FD 16
    Is it not strange that squid starts after SuSEfirewall2?
    According to /etc/init.d/rc3.d/ squid should start before SuSEfirewall2.
    Code:
    lrwxrwxrwx 1 root root 15 2008-06-10 12:43 K01stopblktrace -> ../stopblktrace
    lrwxrwxrwx 1 root root 22 2008-06-10 12:57 K01SuSEfirewall2_setup -> ../SuSEfirewall2_setup
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 K10cron -> ../cron
    lrwxrwxrwx 1 root root  9 2008-06-10 12:51 K10smartd -> ../smartd
    lrwxrwxrwx 1 root root 17 2008-06-10 12:43 K11avahi-dnsconfd -> ../avahi-dnsconfd
    lrwxrwxrwx 1 root root 10 2008-06-10 12:43 K11postfix -> ../postfix
    lrwxrwxrwx 1 root root 12 2008-06-10 12:58 K12alsasound -> ../alsasound
    lrwxrwxrwx 1 root root 15 2008-06-10 12:43 K12avahi-daemon -> ../avahi-daemon
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 K12cups -> ../cups
    lrwxrwxrwx 1 root root 19 2008-06-10 12:46 K12java.binfmt_misc -> ../java.binfmt_misc
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 K12nscd -> ../nscd
    lrwxrwxrwx 1 root root 13 2008-06-10 12:48 K12powersaved -> ../powersaved
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 K12splash -> ../splash
    lrwxrwxrwx 1 root root  8 2009-03-19 01:27 K12squid -> ../squid
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 K12sshd -> ../sshd
    lrwxrwxrwx 1 root root  6 2008-10-26 18:16 K13ntp -> ../ntp
    lrwxrwxrwx 1 root root  8 2008-06-10 12:43 K14smbfs -> ../smbfs
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 K15auditd -> ../auditd
    lrwxrwxrwx 1 root root 10 2008-06-10 12:43 K15portmap -> ../portmap
    lrwxrwxrwx 1 root root 15 2008-06-10 12:43 K15splash_early -> ../splash_early
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 K16syslog -> ../syslog
    lrwxrwxrwx 1 root root 10 2008-06-10 12:43 K17network -> ../network
    lrwxrwxrwx 1 root root 12 2008-06-10 12:43 K19haldaemon -> ../haldaemon
    lrwxrwxrwx 1 root root 13 2008-06-10 12:43 K20consolekit -> ../consolekit
    lrwxrwxrwx 1 root root  8 2008-06-10 12:43 K21acpid -> ../acpid
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 K21dbus -> ../dbus
    lrwxrwxrwx 1 root root  8 2008-06-10 12:43 K21fbset -> ../fbset
    lrwxrwxrwx 1 root root 16 2008-06-10 12:43 K21microcode.ctl -> ../microcode.ctl
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 K21random -> ../random
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 K21resmgr -> ../resmgr
    lrwxrwxrwx 1 root root 21 2008-06-10 12:57 K21SuSEfirewall2_init -> ../SuSEfirewall2_init
    lrwxrwxrwx 1 root root  8 2008-06-10 12:43 S01acpid -> ../acpid
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 S01dbus -> ../dbus
    lrwxrwxrwx 1 root root  8 2008-06-10 12:43 S01fbset -> ../fbset
    lrwxrwxrwx 1 root root 16 2008-06-10 12:43 S01microcode.ctl -> ../microcode.ctl
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 S01random -> ../random
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 S01resmgr -> ../resmgr
    lrwxrwxrwx 1 root root 21 2008-06-10 12:57 S01SuSEfirewall2_init -> ../SuSEfirewall2_init
    lrwxrwxrwx 1 root root 13 2008-06-10 12:43 S02consolekit -> ../consolekit
    lrwxrwxrwx 1 root root 12 2008-06-10 12:43 S03haldaemon -> ../haldaemon
    lrwxrwxrwx 1 root root 10 2008-06-10 12:43 S05network -> ../network
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 S06syslog -> ../syslog
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 S07auditd -> ../auditd
    lrwxrwxrwx 1 root root 10 2008-06-10 12:43 S07portmap -> ../portmap
    lrwxrwxrwx 1 root root 15 2008-06-10 12:43 S07splash_early -> ../splash_early
    lrwxrwxrwx 1 root root  8 2008-06-10 12:43 S08smbfs -> ../smbfs
    lrwxrwxrwx 1 root root  6 2008-10-26 18:16 S09ntp -> ../ntp
    lrwxrwxrwx 1 root root 12 2008-06-10 12:58 S10alsasound -> ../alsasound
    lrwxrwxrwx 1 root root 15 2008-06-10 12:43 S10avahi-daemon -> ../avahi-daemon
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 S10cups -> ../cups
    lrwxrwxrwx 1 root root 19 2008-06-10 12:46 S10java.binfmt_misc -> ../java.binfmt_misc
    lrwxrwxrwx 1 root root  6 2008-06-10 12:43 S10kbd -> ../kbd
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 S10nscd -> ../nscd
    lrwxrwxrwx 1 root root 13 2008-06-10 12:48 S10powersaved -> ../powersaved
    lrwxrwxrwx 1 root root  9 2008-06-10 12:43 S10splash -> ../splash
    lrwxrwxrwx 1 root root  8 2009-03-19 01:27 S10squid -> ../squid
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 S10sshd -> ../sshd
    lrwxrwxrwx 1 root root 17 2008-06-10 12:43 S11avahi-dnsconfd -> ../avahi-dnsconfd
    lrwxrwxrwx 1 root root 10 2008-06-10 12:43 S11postfix -> ../postfix
    lrwxrwxrwx 1 root root  7 2008-06-10 12:43 S12cron -> ../cron
    lrwxrwxrwx 1 root root  9 2008-06-10 12:51 S12smartd -> ../smartd
    lrwxrwxrwx 1 root root 15 2008-06-10 12:43 S21stopblktrace -> ../stopblktrace
    lrwxrwxrwx 1 root root 22 2008-06-10 12:57 S21SuSEfirewall2_setup -> ../SuSEfirewall2_setup
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

  7. #6
    Linux Newbie Ziplock's Avatar
    Join Date
    Jan 2009
    Location
    Adelaide
    Posts
    169
    I think your firewall is messing you around. It is definitely started earlier than squid, but takes a little while to apply. It then applies halfway through the squid startup:

    Code:
    Apr  1 23:03:48 linux-kr6c squid[3672]: Ready to serve requests.
    Apr  1 23:03:48 linux-kr6c SuSEfirewall2: Firewall rules successfully set
    And probaby causes the following (Which I believe is squid trying to access an upstream cache you have configured?):

    Code:
    Apr  1 23:09:55 linux-kr6c squid[3672]: icmpSend: send: (111) Connection refused
    Apr  1 23:09:55 linux-kr6c squid[3672]: Closing Pinger socket on FD 16
    If you are able to without exposing yourself unnecessarily, shut down the firewall manually, and then stop and start squid manually and see if it starts quicker. If it does, it probably means that you have just made the firewall a bit too restrictive, and may have to have a look at the rules.

  8. #7
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170
    Hi Ziplock

    Thanks for the suggestions.

    Whenever I manually start squid, it works instantaneously. It does not matter if the firewall is on or off. The problem occurs only at boot.

    I shall try disabling the firewall at boot and see it the squid startup time improves.

    By the way, I did not configure any rules in the firewall. It still has the default settings from the openSUSE installation.
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

  9. #8
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170
    I have turned off the firewall, but it didn't improve squid startup time.
    Code:
    Apr  7 21:02:07 linux-kr6c syslog-ng[1849]: syslog-ng version 1.6.12 starting
    Apr  7 21:02:08 linux-kr6c firmware.sh[1865]: Cannot find  firmware file 'intel-ucode/06-0d-06'
    Apr  7 21:02:10 linux-kr6c hcid[1342]: HCI dev 0 registered
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Starting SDP server
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Registered manager path:/org/bluez/serial
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Parsing /etc/bluetooth/network.conf failed: No such file or directory
    Apr  7 21:02:10 linux-kr6c hcid[1342]: bridge pan0 created
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Registered manager path:/org/bluez/network
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Registered server path:/org/bluez/network/nap
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Registered server path:/org/bluez/network/gn
    Apr  7 21:02:10 linux-kr6c ifup: Service network not started and mode 'auto' -> skipping
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Registered server path:/org/bluez/network/panu
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Parsing /etc/bluetooth/input.conf failed: No such file or directory
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Registered input manager path:/org/bluez/input
    Apr  7 21:02:10 linux-kr6c hcid[1342]: HCI dev 0 up
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Device hci0 has been added
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Starting security manager 0
    Apr  7 21:02:10 linux-kr6c hcid[1342]: Device hci0 has been activated
    Apr  7 21:02:12 linux-kr6c kernel: klogd 1.4.1, log source = /proc/kmsg started.
    Apr  7 21:02:12 linux-kr6c kernel: type=1505 audit(1239130924.855:4): operation="profile_load" name="/sbin/syslog-ng" name2="default" pid=1558
    Apr  7 21:02:12 linux-kr6c kernel: type=1505 audit(1239130924.983:5): operation="profile_load" name="/sbin/syslogd" name2="default" pid=1564
    Apr  7 21:02:12 linux-kr6c kernel: ttyS0: LSR safety check engaged!
    Apr  7 21:02:12 linux-kr6c kernel: ttyS2: LSR safety check engaged!
    Apr  7 21:02:12 linux-kr6c kernel: IA-32 Microcode Update Driver: v1.14a <tigran@aivazian.fsnet.co.uk>
    Apr  7 21:02:12 linux-kr6c kernel: powernow: This module only works with AMD K7 CPUs
    Apr  7 21:02:12 linux-kr6c kernel: Clocksource tsc unstable (delta = -224009159 ns)
    Apr  7 21:02:12 linux-kr6c kernel: Bluetooth: BNEP (Ethernet Emulation) ver 1.2
    Apr  7 21:02:12 linux-kr6c kernel: Bluetooth: BNEP filters: protocol multicast
    Apr  7 21:02:12 linux-kr6c kernel: Bridge firewalling registered
    Apr  7 21:02:12 linux-kr6c kernel: pan0: Dropping NETIF_F_UFO since no NETIF_F_HW_CSUM feature.
    Apr  7 21:02:12 linux-kr6c kernel: ttyS0: LSR safety check engaged!
    Apr  7 21:02:12 linux-kr6c kernel: ttyS2: LSR safety check engaged!
    Apr  7 21:02:13 linux-kr6c network: Starting the NetworkManager
    Apr  7 21:02:17 linux-kr6c nm-system-settings: Loaded plugin ifcfg-suse: (C) 2008 Novell, Inc.  To report bugs please use the NetworkManager mailing list.
    Apr  7 21:02:17 linux-kr6c nm-system-settings: Loaded plugin keyfile: (c) 2007 - 2008 Red Hat, Inc.  To report bugs please use the NetworkManager mailing list.
    Apr  7 21:02:17 linux-kr6c nm-system-settings: Invalid hexadecimal WEP key.
    Apr  7 21:02:17 linux-kr6c nm-system-settings: Missing or invalid key management
    Apr  7 21:02:18 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="method_return", sender=":1.6" (uid=0 pid=2103 comm="/usr/sbin/nm-system-settings --config /etc/nm-syst") interface="(unset)" member="(unset)" error name="(unset)" requested_reply=0 destination=":1.5" (uid=0 pid=2097 comm="/usr/sbin/NetworkManager "))
    Apr  7 21:02:18 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="error", sender=":1.7" (uid=0 pid=2101 comm="/usr/sbin/wpa_supplicant -c /etc/wpa_supplicant/wp") interface="(unset)" member="(unset)" error name="fi.epitest.hostap.WPASupplicant.InvalidInterface" requested_reply=0 destination=":1.5" (uid=0 pid=2097 comm="/usr/sbin/NetworkManager "))
    Apr  7 21:02:21 linux-kr6c kernel: NET: Registered protocol family 17
    Apr  7 21:02:21 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/Xservers
    Apr  7 21:02:21 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/xdm-config
    Apr  7 21:02:22 linux-kr6c kernel: [drm] Initialized drm 1.1.0 20060810
    Apr  7 21:02:22 linux-kr6c kernel: ACPI: PCI Interrupt 0000:01:00.0[A] -> Link [C0C2] -> GSI 10 (level, low) -> IRQ 10
    Apr  7 21:02:22 linux-kr6c kernel: [drm] Initialized radeon 1.28.0 20060524 on minor 0
    Apr  7 21:02:23 linux-kr6c auditd[2480]: Started dispatcher: /sbin/audispd pid: 2492
    Apr  7 21:02:23 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/Xservers
    Apr  7 21:02:23 linux-kr6c logger: /etc/init.d/xdm: No changes for /etc/X11/xdm/xdm-config
    Apr  7 21:02:23 linux-kr6c auditd[2480]: Init complete, auditd 1.6.8 listening for events (startup state disable)
    Apr  7 21:02:23 linux-kr6c audispd: af_unix plugin initialized
    Apr  7 21:02:23 linux-kr6c audispd: audispd initialized with q_depth=64 and 1 active plugins
    Apr  7 21:02:23 linux-kr6c kernel: agpgart: Found an AGP 2.0 compliant device at 0000:00:00.0.
    Apr  7 21:02:23 linux-kr6c kernel: agpgart: Putting AGP V2 device at 0000:00:00.0 into 1x mode
    Apr  7 21:02:23 linux-kr6c kernel: agpgart: Putting AGP V2 device at 0000:01:00.0 into 1x mode
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Found user 'avahi' (UID 103) and group 'avahi' (GID 105).
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Successfully dropped root privileges.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: avahi-daemon 0.6.22 starting up.
    Apr  7 21:02:23 linux-kr6c kernel: [drm] Setting GART location based on new memory map
    Apr  7 21:02:23 linux-kr6c kernel: [drm] Loading R300 Microcode
    Apr  7 21:02:23 linux-kr6c kernel: [drm] writeback test succeeded in 2 usecs
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Loading service file /etc/avahi/services/sftp-ssh.service.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Loading service file /etc/avahi/services/ssh.service.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Network interface enumeration completed.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Registering HINFO record with values 'I686'/'LINUX'.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Server startup complete. Host name is linux-kr6c.local. Local service cookie is 644719144.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Service "linux-kr6c" (/etc/avahi/services/ssh.service) successfully established.
    Apr  7 21:02:23 linux-kr6c avahi-daemon[2541]: Service "SFTP File Transfer on linux-kr6c" (/etc/avahi/services/sftp-ssh.service) successfully established.
    Apr  7 21:02:24 linux-kr6c avahi-dnsconfd[2569]: Successfully connected to Avahi daemon.
    Apr  7 21:02:25 linux-kr6c ntpd[2618]: ntpd 4.2.4p4@1.1520-o Mon Jan 19 14:44:51 UTC 2009 (1)
    Apr  7 21:02:25 linux-kr6c ntpd[2618]: precision = 2.000 usec
    Apr  7 21:02:26 linux-kr6c kernel: NET: Registered protocol family 10
    Apr  7 21:02:26 linux-kr6c kernel: lo: Disabled Privacy Extensions
    Apr  7 21:02:26 linux-kr6c kernel: ADDRCONF(NETDEV_UP): eth0: link is not ready
    Apr  7 21:02:26 linux-kr6c kernel: ADDRCONF(NETDEV_UP): eth1: link is not ready
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: ntp_io: estimated max descriptors: 1024, initial socket boundary: 16
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: Listening on interface #0 wildcard, 0.0.0.0#123 Disabled
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: Listening on interface #1 wildcard, ::#123 Disabled
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: Listening on interface #2 lo, ::1#123 Enabled
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: Listening on interface #3 lo, 127.0.0.1#123 Enabled
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: Listening on interface #4 lo, 127.0.0.2#123 Enabled
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: kernel time sync status 0040
    Apr  7 21:02:26 linux-kr6c ntpd[2618]: frequency initialized 2.435 PPM from /var/lib/ntp/drift/ntp.drift
    Apr  7 21:02:26 linux-kr6c kernel: warning: `ntpd' uses deprecated v2 capabilities in a way that may be insecure.
    Apr  7 21:02:29 linux-kr6c sshd[2707]: Server listening on :: port 22.
    Apr  7 21:02:29 linux-kr6c sshd[2707]: Server listening on 0.0.0.0 port 22.
    Apr  7 21:02:30 linux-kr6c gconfd (boris-2757): starting (version 2.22.0), pid 2757 user 'boris'
    Apr  7 21:02:30 linux-kr6c gconfd (boris-2757): Resolved address "xml:readonly:/etc/gconf/gconf.xml.mandatory" to a read-only configuration source at position 0
    Apr  7 21:02:30 linux-kr6c gconfd (boris-2757): Resolved address "xml:readwrite:/home/boris/.gconf" to a writable configuration source at position 1
    Apr  7 21:02:30 linux-kr6c gconfd (boris-2757): Resolved address "xml:readonly:/etc/gconf/gconf.xml.defaults" to a read-only configuration source at position 2
    Apr  7 21:02:30 linux-kr6c gconfd (boris-2757): Resolved address "xml:readonly:/etc/gconf/gconf.xml.vendor" to a read-only configuration source at position 3
    Apr  7 21:02:30 linux-kr6c gconfd (boris-2757): Resolved address "xml:readonly:/etc/gconf/gconf.xml.schemas" to a read-only configuration source at position 4
    Apr  7 21:02:34 linux-kr6c seahorse-agent[2765]: Failed to send buffer
    Apr  7 21:02:34 linux-kr6c seahorse-agent[2765]: Failed to send buffer
    Apr  7 21:02:43 linux-kr6c hcid[1342]: Default passkey agent (:1.23, /org/bluez/passkey) registered
    Apr  7 21:02:43 linux-kr6c hcid[1342]: Default authorization agent (:1.23, /org/bluez/auth) registered
    Apr  7 21:02:47 linux-kr6c pulseaudio[2923]: pid.c: Stale PID file, overwriting.
    Apr  7 21:02:47 linux-kr6c pulseaudio[2923]: main.c: setrlimit(RLIMIT_NICE, (31, 31)) failed: Operation not permitted
    Apr  7 21:02:47 linux-kr6c pulseaudio[2923]: main.c: setrlimit(RLIMIT_RTPRIO, (9, 9)) failed: Operation not permitted
    Apr  7 21:02:50 linux-kr6c gconfd (boris-2757): Resolved address "xml:readwrite:/home/boris/.gconf" to a writable configuration source at position 0
    Apr  7 21:03:06 linux-kr6c kernel: ieee80211_crypt: registered algorithm 'WEP'
    Apr  7 21:03:06 linux-kr6c kernel: ADDRCONF(NETDEV_CHANGE): eth1: link becomes ready
    Apr  7 21:03:07 linux-kr6c dhclient: Internet Systems Consortium DHCP Client V3.0.6
    Apr  7 21:03:07 linux-kr6c dhclient: Copyright 2004-2007 Internet Systems Consortium.
    Apr  7 21:03:07 linux-kr6c dhclient: All rights reserved.
    Apr  7 21:03:07 linux-kr6c dhclient: For info, please visit http://www.isc.org/sw/dhcp/
    Apr  7 21:03:07 linux-kr6c dhclient: 
    Apr  7 21:03:07 linux-kr6c avahi-daemon[2541]: Registering new address record for fe80::20e:35ff:feac:dd24 on eth1.*.
    Apr  7 21:03:08 linux-kr6c dhclient: Listening on LPF/eth1/00:0e:35:ac:dd:24
    Apr  7 21:03:08 linux-kr6c dhclient: Sending on   LPF/eth1/00:0e:35:ac:dd:24
    Apr  7 21:03:08 linux-kr6c dhclient: Sending on   Socket/fallback
    Apr  7 21:03:10 linux-kr6c dhclient: DHCPDISCOVER on eth1 to 255.255.255.255 port 67 interval 6
    Apr  7 21:03:12 linux-kr6c dhclient: DHCPOFFER from 10.0.0.138
    Apr  7 21:03:12 linux-kr6c dhclient: DHCPREQUEST on eth1 to 255.255.255.255 port 67
    Apr  7 21:03:12 linux-kr6c dhclient: DHCPACK from 10.0.0.138
    Apr  7 21:03:12 linux-kr6c avahi-daemon[2541]: Joining mDNS multicast group on interface eth1.IPv4 with address 10.0.0.252.
    Apr  7 21:03:12 linux-kr6c avahi-daemon[2541]: New relevant interface eth1.IPv4 for mDNS.
    Apr  7 21:03:12 linux-kr6c avahi-daemon[2541]: Registering new address record for 10.0.0.252 on eth1.IPv4.
    Apr  7 21:03:12 linux-kr6c dhclient: bound to 10.0.0.252 -- renewal in 2713 seconds.
    Apr  7 21:03:16 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/autofs' exited with error status 1.
    Apr  7 21:03:16 linux-kr6c kernel: eth1: no IPv6 routers present
    Apr  7 21:03:16 linux-kr6c ntpd[3174]: ntpd 4.2.4p4@1.1520-o Mon Jan 19 14:44:51 UTC 2009 (1)
    Apr  7 21:03:16 linux-kr6c ntpd[3174]: precision = 1.000 usec
    Apr  7 21:03:16 linux-kr6c ntpd[3174]: ntp_io: estimated max descriptors: 1024, initial socket boundary: 16
    Apr  7 21:03:16 linux-kr6c ntpd[3174]: unable to bind to wildcard socket address 0.0.0.0 - another process may be running - EXITING
    Apr  7 21:03:17 linux-kr6c kernel: ip6_tables: (C) 2000-2006 Netfilter Core Team
    Apr  7 21:03:18 linux-kr6c kernel: ip_tables: (C) 2000-2006 Netfilter Core Team
    Apr  7 21:03:18 linux-kr6c SuSEfirewall2: SuSEfirewall2 not active
    Apr  7 21:03:18 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/netcontrol_global_hooks' exited with error status 1.
    Apr  7 21:03:18 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/nfs' exited with error status 2.
    Apr  7 21:03:18 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="method_return", sender=":1.50" (uid=0 pid=3132 comm="/usr/lib/NetworkManager/nm-dispatcher.action ") interface="(unset)" member="(unset)" error name="(unset)" requested_reply=0 destination=":1.5" (uid=0 pid=2097 comm="/usr/sbin/NetworkManager "))
    Apr  7 21:05:39 linux-kr6c ntpd[3500]: ntpd 4.2.4p4@1.1520-o Mon Jan 19 14:44:51 UTC 2009 (1)
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: precision = 1.000 usec
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: ntp_io: estimated max descriptors: 1024, initial socket boundary: 16
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #0 wildcard, 0.0.0.0#123 Disabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #1 wildcard, ::#123 Disabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #2 lo, ::1#123 Enabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #3 eth1, fe80::20e:35ff:feac:dd24#123 Enabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #4 lo, 127.0.0.1#123 Enabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #5 lo, 127.0.0.2#123 Enabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: Listening on interface #6 eth1, 10.0.0.252#123 Enabled
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: kernel time sync status 0040
    Apr  7 21:05:39 linux-kr6c ntpd[3501]: frequency initialized 2.435 PPM from /var/lib/ntp/drift/ntp.drift
    Apr  7 21:05:41 linux-kr6c /usr/sbin/cron[3627]: (CRON) STARTUP (V5.0)
    Apr  7 21:05:41 linux-kr6c smartd[3630]: smartd 5.39 2008-05-08 21:56 [i686-pc-linux-gnu] (local build) Copyright (C) 2002-8 by Bruce Allen, http://smartmontools.sourceforge.net 
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Opened configuration file /etc/smartd.conf
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Drive: DEVICESCAN, implied '-a' Directive on line 29 of file /etc/smartd.conf
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Configuration file /etc/smartd.conf was parsed, found DEVICESCAN, scanning devices
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Problem creating device name scan list
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Device: /dev/sda, opened
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Device /dev/sda: using '-d sat' for ATA disk behind SAT layer.
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Device: /dev/sda, opened
    Apr  7 21:05:41 linux-kr6c smartd[3630]: Device: /dev/sda, found in smartd database.
    Apr  7 21:05:42 linux-kr6c smartd[3630]: Device: /dev/sda, is SMART capable. Adding to "monitor" list.
    Apr  7 21:05:42 linux-kr6c smartd[3630]: Monitoring 0 ATA and 1 SCSI devices
    Apr  7 21:05:42 linux-kr6c smartd[3638]: smartd has fork()ed into background mode. New PID=3638.
    Apr  7 21:05:43 linux-kr6c kernel: bootsplash: status on console 0 changed to on
    Apr  7 21:05:43 linux-kr6c squid[3655]: Squid Parent: child process 3657 started
    Apr  7 21:05:43 linux-kr6c squid[3657]: Starting Squid Cache version 2.6.STABLE20 for i686-pc-linux-gnu...
    Apr  7 21:05:43 linux-kr6c squid[3657]: Process ID 3657
    Apr  7 21:05:43 linux-kr6c squid[3657]: With 4096 file descriptors available
    Apr  7 21:05:43 linux-kr6c squid[3657]: Using epoll for the IO loop
    Apr  7 21:05:43 linux-kr6c squid[3657]: DNS Socket created at 0.0.0.0, port 56670, FD 6
    Apr  7 21:05:43 linux-kr6c squid[3657]: Adding domain lan from /etc/resolv.conf
    Apr  7 21:05:43 linux-kr6c squid[3657]: Adding domain lan from /etc/resolv.conf
    Apr  7 21:05:43 linux-kr6c squid[3657]: Adding nameserver 10.0.0.138 from /etc/resolv.conf
    Apr  7 21:05:43 linux-kr6c squid[3657]: User-Agent logging is disabled.
    Apr  7 21:05:43 linux-kr6c squid[3657]: Referer logging is disabled.
    Apr  7 21:05:43 linux-kr6c squid[3657]: Unlinkd pipe opened on FD 11
    Apr  7 21:05:43 linux-kr6c squid[3657]: Swap maxSize 102400 KB, estimated 7876 objects
    Apr  7 21:05:43 linux-kr6c squid[3657]: Target number of buckets: 393
    Apr  7 21:05:43 linux-kr6c squid[3657]: Using 8192 Store buckets
    Apr  7 21:05:43 linux-kr6c squid[3657]: Max Mem  size: 8192 KB
    Apr  7 21:05:43 linux-kr6c squid[3657]: Max Swap size: 102400 KB
    Apr  7 21:05:43 linux-kr6c squid[3657]: Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
    Apr  7 21:05:43 linux-kr6c squid[3657]: Rebuilding storage in /var/cache/squid (CLEAN)
    Apr  7 21:05:43 linux-kr6c squid[3657]: Using Least Load store dir selection
    Apr  7 21:05:43 linux-kr6c squid[3657]: Set Current Directory to /var/cache/squid
    Apr  7 21:05:43 linux-kr6c squid[3657]: Loaded Icons.
    Apr  7 21:05:43 linux-kr6c squid[3657]: Accepting transparently proxied HTTP connections at 0.0.0.0, port 3128, FD 13.
    Apr  7 21:05:43 linux-kr6c squid[3657]: Accepting ICP messages at 0.0.0.0, port 3130, FD 14.
    Apr  7 21:05:43 linux-kr6c squid[3657]: HTCP Disabled.
    Apr  7 21:05:43 linux-kr6c squid[3657]: Accepting SNMP messages on port 3401, FD 15.
    Apr  7 21:05:43 linux-kr6c squid[3657]: WCCP Disabled.
    Apr  7 21:05:43 linux-kr6c squid[3657]: Pinger socket opened on FD 16
    Apr  7 21:05:43 linux-kr6c squid[3657]: Ready to serve requests.
    Apr  7 21:05:44 linux-kr6c squid[3657]: Store rebuilding is 51.6% complete
    Apr  7 21:05:44 linux-kr6c squid[3657]: Done reading /var/cache/squid swaplog (7931 entries)
    Apr  7 21:05:44 linux-kr6c squid[3657]: Finished rebuilding storage from disk.
    Apr  7 21:05:44 linux-kr6c squid[3657]:      7931 Entries scanned
    Apr  7 21:05:44 linux-kr6c squid[3657]:         0 Invalid entries.
    Apr  7 21:05:44 linux-kr6c squid[3657]:         0 With invalid flags.
    Apr  7 21:05:44 linux-kr6c squid[3657]:      7931 Objects loaded.
    Apr  7 21:05:44 linux-kr6c squid[3657]:         0 Objects expired.
    Apr  7 21:05:44 linux-kr6c squid[3657]:         0 Objects cancelled.
    Apr  7 21:05:44 linux-kr6c squid[3657]:         0 Duplicate URLs purged.
    Apr  7 21:05:44 linux-kr6c squid[3657]:         0 Swapfile clashes avoided.
    Apr  7 21:05:44 linux-kr6c squid[3657]:   Took 0.8 seconds (10156.4 objects/sec).
    Apr  7 21:05:44 linux-kr6c squid[3657]: Beginning Validation Procedure
    Apr  7 21:05:44 linux-kr6c squid[3657]:   Completed Validation Procedure
    Apr  7 21:05:44 linux-kr6c squid[3657]:   Validated 7931 Entries
    Apr  7 21:05:44 linux-kr6c squid[3657]:   store_swap_size = 92140k
    Apr  7 21:05:44 linux-kr6c squid[3657]: storeLateRelease: released 0 objects
    Apr  7 21:05:57 linux-kr6c squid[3657]: icmpSend: send: (111) Connection refused
    Apr  7 21:05:57 linux-kr6c squid[3657]: Closing Pinger socket on FD 16
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

  10. #9
    Linux Newbie Ziplock's Avatar
    Join Date
    Jan 2009
    Location
    Adelaide
    Posts
    169
    Hi there,

    Sorry about the delay, I've been on holidays...

    I found the following that might point you in the right direction:

    Re: [squid-users] what's the error of "icmpSend: send: (111) Connection refused" from Jm lists on 2006-12-29 (squid-users)

    It suggests that the pinger program is causing the error message, and may not have it's setuid bit set. I would try this first. It probably just means:

    Code:
    chmod u+s <pinger program>

  11. #10
    Linux Newbie blnl's Avatar
    Join Date
    Jan 2009
    Location
    The Netherlands
    Posts
    170
    Hi Ziplock,

    I do not understand this part about the pinger program. Sorry, I'm so called Linux newbie.

    I notice that you are focusing your attention on the last few lines in my log:
    Code:
    Apr  7 21:05:57 linux-kr6c squid[3657]: icmpSend: send: (111) Connection refused
    Apr  7 21:05:57 linux-kr6c squid[3657]: Closing Pinger socket on FD 16
    Don't take me wrong, I appreciate your help a lot, but I believe that this is not the issue we should be fixing right away.

    Maybe I was not clear in explaining the problem with squid, but in fact at this point (when the icmpSend issue is reported) I can already surf the Internet. So, this is not really of concern to me.

    In fact, I would like to get faster to this point. Somewhere in the log is a huge delay that makes me wait for about two minutes before I can surf the Internet. The relevant part of the log starts from the following line:
    Code:
    Apr  7 21:03:06 linux-kr6c kernel: ieee80211_crypt: registered algorithm 'WEP'
    I believe that this is the point where I enter my keyring password to release the WEP code. Shortly after that, the network connection is established and I can already fetch my eMail in Evolution. (I can also surf the Internet if I bypass the squid proxy in the FireFox settings). However, when I don't bypass the squid proxy then the following message appears in the FireFox window:
    Code:
    Proxy Server Refused Connection
    Approximately two minutes later I can surf the Internet. So somewhere between the registered algorithm 'WEP' and icmpSend: send: (111) Connection refused is my waiting time.

    By studying the log I have found following:
    Code:
    Apr  7 21:03:18 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/netcontrol_global_hooks' exited with error status 1.
    Apr  7 21:03:18 linux-kr6c nm-dispatcher.action: Script '/etc/NetworkManager/dispatcher.d/nfs' exited with error status 2.
    Apr  7 21:03:18 linux-kr6c dbus-daemon: Rejected send message, 14 matched rules; type="method_return", sender=":1.50" (uid=0 pid=3132 comm="/usr/lib/NetworkManager/nm-dispatcher.action ") interface="(unset)" member="(unset)" error name="(unset)" requested_reply=0 destination=":1.5" (uid=0 pid=2097 comm="/usr/sbin/NetworkManager "))
    This happens at 21:03:18. After that my computer is doing nothing for more than two minutes, until the next action that is logged at 21:05:39. Therefore, I believe that this is the issue that needs fixing.

    Please let me know what you think about this?
    Fedora_20@Dell_Latitude_E7440
    Ubuntu_14.04_LTS@HP_Compaq_DC7100

Page 1 of 2 1 2 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •