Squid Logging - Linux Forums

Register|FAQ|Member List|Calendar|Unanswered Posts|Forum Rules|Today's Posts|Advanced Search |

Welcome to Linux Forums! With a comprehensive Linux Forum, information on various types of Linux software and many Linux Reviews articles, we have all the knowledge you need a click away, or accessible via our knowledgeable members.

Write an article for LinuxForums Today! Win Great Prizes!

New to Linux Forums? Register here for free!

		Linux Forums > GNU Linux Zone > Servers > Squid Logging

Servers Anything server related, Apache, MySQL, Samba, server security, sendmail, exim, etc

Site Navigation
Linux Articles
Linux Forums
Linux Downloads
Linux Hosting
Free Magazines
Job Board
IRC Chat
RSS Feeds

Linux Forum Topics
Linux Forums
Linux Forums Site News
Your Distro
Redhat / Fedora Linux Help Ubuntu Help SuSE Linux Help Mandriva Linux Help Slackware Linux Help Debian Linux Help Gentoo Linux Help Knoppix Help Forum Other Distributions
Linux Resources
Linux Tutorials, HOWTO's & Reference Material
GNU Linux Zone
Wireless Internet Linux Newbie Installation Misc Linux Applications Servers Linux Networking Peripherals / Hardware Linux Desktop / X-Windows Linux Programming & Scripting Gaming / Games / Multimedia / Entertainment Linux Security The Linux Kernel Linux On Laptops / Netbooks / Minibooks Wine Art & Imaging in Linux
The Community
The Coffee Lounge Comments / Feedback / Suggestions Everything BSD

Reply

06-17-2006	#1 (permalink)
shacall Just Joined! Join Date: Jun 2006 Posts: 1	Squid Logging Hello all, I have a strange issue with the Squid logging. Before I get into it...I'm running the same setup/config files on 2 other servers just fine. This one, for some reason, has issues. Here are my versions: Squid Cache: Version 2.5.STABLE12 SquidGuard: 1.2.0 Sleepycat Software: Berkeley DB 3.2.9: (January 24, 2001) Fedora Core release 5 (Bordeaux) My issue: I'm using squidGuard as the redirector within Squid. Squid and squidGuard both start up and run fine. SquidGuard is denying adult sites (as I've imposed the policy)...which is good. The issue that I have, is that the squid log files are NOT logging the denied sites as TCP_DENIED. They're being logged as TCP_HIT or TCP_MISS. For example: I point my browser to http://0-0-0.com. SquidGuard denies me Within /var/log/squid/access.log, the following is logged: 1150513485.588 50 172.16.0.188 TCP_HIT/200 780 GET http://0-0-0.com/ - NONE/- text/html Why isn't it logging it as a TCP_DENIED???? I've checked and changed the perms numerous times, thinking it's a permissions problem....but to no avail. Other info: [root@server squid]# ps auxww \| grep squid root 11524 0.0 0.0 3660 504 pts/1 S+ 19:45 0:00 tail -f /var/log/squid/access.log root 13301 0.0 0.0 6488 892 ? Ss 20:23 0:00 /usr/sbin/squid -f /etc/squid/squid.conf -d 5 squid 13303 0.0 0.5 8840 5220 ? S 20:23 0:00 (squid) -f /etc/squid/squid.conf -d 5 squid 13304 0.0 0.1 3340 1064 ? Ss 20:23 0:00 (squidGuard) -c /usr/local/squidGuard/squidGuard.conf squid 13305 0.0 0.0 3332 868 ? Ss 20:23 0:00 (squidGuard) -c /usr/local/squidGuard/squidGuard.conf squid 13306 0.0 0.0 3332 864 ? Ss 20:23 0:00 (squidGuard) -c /usr/local/squidGuard/squidGuard.conf squid 13307 0.0 0.0 3332 864 ? Ss 20:23 0:00 (squidGuard) -c /usr/local/squidGuard/squidGuard.conf squid 13308 0.0 0.0 1440 292 ? Ss 20:23 0:00 (unlinkd) [root@server squid]# grep "squidGuard" /etc/squid/squid.conf redirect_program /usr/local/bin/squidGuard -c /usr/local/squidGuard/squidGuard.conf [root@server squid]# cat /usr/local/squidGuard/squidGuard.conf logdir /usr/local/squidGuard/log dbhome /usr/local/squidGuard/db/blacklists destination adult { domainlist adult/domains urllist adult/urls } destination warez { domainlist warez/domains urllist warez/urls } acl { default { pass !adult all pass !warez all redirect http://127.0.0.1/squid_deny.html } } Thanks in advance for your input!!!

Reply

« Previous Thread | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is Off Trackbacks are Off Pingbacks are Off Refbacks are Off

Free Magazines

Run Your Own Web Server Using Linux & Apache - Free 191 Page Preview
Learn about everything you'll need to build and maintain your Linux servers, and to deploy Web applications to them.
subscribe

Open Source Security Myths Dispelled
Dispel the five major myths surrounding Open Source Security and gain the tools necessary to make a truly informed decision for your IT organization
subscribe

InformationWeek
InformationWeek is the only newsweekly you'll need to stay on top of the latest developments in information technology.
subscribe

All times are GMT. The time now is 05:35 AM.