[squid-users] squid intercept config

Fri Mar 13 17:15:25 UTC 2015

On Friday 13 March 2015 at 17:47:44 (EU time), Monah Baki wrote:

> acl localnet src 10.0.0.0/8    # RFC1918 possible internal network
> acl localnet src 172.16.0.0/12    # RFC1918 possible internal network
> acl localnet src 192.168.0.0/16    # RFC1918 possible internal network
> acl localnet src fc00::/7       # RFC 4193 local private network range
> acl localnet src fe80::/10      # RFC 4291 link-local (directly plugged)
> machines
> 
> acl SSL_ports port 443
> acl Safe_ports port 80        # http
> acl Safe_ports port 21        # ftp
> acl Safe_ports port 443        # https
> acl Safe_ports port 70        # gopher
> acl Safe_ports port 210        # wais
> acl Safe_ports port 1025-65535    # unregistered ports
> acl Safe_ports port 280        # http-mgmt
> acl Safe_ports port 488        # gss-http
> acl Safe_ports port 591        # filemaker
> acl Safe_ports port 777        # multiling http
> acl CONNECT method CONNECT
> 
> http_access deny !Safe_ports
> 
> http_access deny CONNECT !SSL_ports
> 
> http_access allow localhost manager
> http_access deny manager
> 
> #http_access deny to_localhost
> 
> http_access allow localnet
> http_access allow localhost

You've got the standard references here (and above, for cache manager access) 
for localhost, and yet I don't see it defined anywhere - have you deliberately 
removed it?

> http_access deny all
> 
> http_port 3128
> http_port 3129 intercept
> 
> cache_dir ufs /usr/local/squid/var/cache/squid 350000 16 256
> 
> 
> refresh_pattern ^ftp:        1440    20%    10080
> refresh_pattern ^gopher:    1440    0%    1440
> refresh_pattern -i (/cgi-bin/|\?) 0    0%    0
> refresh_pattern .        0    20%    4320
> 
> half_closed_clients off
> quick_abort_min 0 KB
> quick_abort_max 0 KB
> vary_ignore_expire on
> reload_into_ims on
> memory_pools off
> cache_mem 4096 MB
> visible_hostname isn-phc-cache
> minimum_object_size 0 bytes
> maximum_object_size 512 MB
> maximum_object_size 512 KB
> ipcache_size 1024
> ipcache_low 90
> ipcache_high 95
> cache_swap_low 98
> cache_swap_high 100
> fqdncache_size 16384
> retry_on_error on
> offline_mode off
> logfile_rotate 10
> dns_nameservers 8.8.8.8 41.78.211.30

> access.log:
> 
> 1426267535.210    198 10.0.0.23 TCP_MISS/200 412 GET
> http://jadserve.postrelease.com/trk.gif? - ORIGINAL_DST/54.225.133.227
> image/gif

I see quote a lot of entries in your access log for things to do with advert 
servers.  Are you certain that these objects haven't been marked by the server 
as "nocache" or similar?

Try accessing something simple and plain, such as the squid project home page 
http://www.squid-cache.org/ and see what shows up in your access log.

Also, try configuring a browser to use the proxy listening on port 3128 and see 
if that starts showing you cache hits.

Regards,

Antony.

-- 
Late in 1972 President Richard Nixon announced that the rate of increase of 
inflation was decreasing.   This was the first time a sitting president used a 
third derivative to advance his case for re-election.

 - Hugo Rossi, Notices of the American Mathematical Society

                                                   Please reply to the list;
                                                         please *don't* CC me.