[squid-users] squid-users Digest, Vol 15, Issue 71
Patrick Flaherty
vze2k3sa at verizon.net
Tue Nov 17 14:55:32 UTC 2015
Hello,
Here is my squid config.
-Patrick
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
# Squid Proxy Configuration
http_port 3128
# acl and http_access to ("whitelist.txt")
acl whitelist dstdomain "c:/squid/etc/squid/whitelist.txt"
http_access allow whitelist
# network source of proxy traffic
acl localnet src 0.0.0.0/0.0.0.0
# acl directives for ports and protocols
acl http proto http
acl https proto https
acl port_80 port 80
acl sslports port 443
acl CONNECT method CONNECT
# rules allowing proxy access
http_access allow http port_80 whitelist localnet
http_access allow https sslports whitelist localnet
# dns servers (Change dns_nameservers to client dns servers for consistency and better performance)
dns_nameservers 8.8.8.8 8.8.4.4
# cache web pages directory
#cache_dir ufs C:/Squid/var/cache/squid 100 16 256
cache_mem 64 MB
# log file roll weekly
logfile_rotate 7
# access log rules
logformat squid %tl %6tr %>a %Ss/%03>Hs %<st %rm %ru %un %Sh/%<A %mt
# catch-all rule
http_access deny all
-----Original Message-----
From: squid-users [mailto:squid-users-bounces at lists.squid-cache.org] On Behalf Of squid-users-request at lists.squid-cache.org
Sent: Tuesday, November 17, 2015 9:01 AM
To: squid-users at lists.squid-cache.org
Subject: squid-users Digest, Vol 15, Issue 71
Send squid-users mailing list submissions to
squid-users at lists.squid-cache.org
To subscribe or unsubscribe via the World Wide Web, visit
http://lists.squid-cache.org/listinfo/squid-users
or, via email, send a message with subject or body 'help' to
squid-users-request at lists.squid-cache.org
You can reach the person managing the list at
squid-users-owner at lists.squid-cache.org
When replying, please edit your Subject line so it is more specific than "Re: Contents of squid-users digest..."
Today's Topics:
1. (113) Software caused connection abort (Patrick Flaherty)
----------------------------------------------------------------------
Message: 1
Date: Tue, 17 Nov 2015 09:00:30 -0500
From: "Patrick Flaherty" <vze2k3sa at verizon.net>
To: <squid-users at lists.squid-cache.org>
Subject: [squid-users] (113) Software caused connection abort
Message-ID: <004801d12140$527ccff0$f7766fd0$@verizon.net>
Content-Type: text/plain; charset="iso-2022-jp"
Hello,
I trying to back into the error below that shows up in my cache log with reasonable frequency. Please see below the conversation that created this error. It seems to happen after an “Encryption Alert” where I then see RST packets.
Any help or insight would be greatly appreciated.
Thanks
Patrick
kid1| local=192.168.1.1:3128 remote=192.168.1.216:61171 FD 9 flags=1:
read/write failure: (113) Software caused connection abort
----------------------------------------------------------------------------
----------------------------------------------------------------------------
----------------------------
No. Time Source Destination
Protocol Length Info
310 2015-11-17 08:42:11.549082000 192.168.1.216 192.168.1.1
TCP 66 61171→3128 [SYN] Seq=0 Win=8192 Len=0 MSS=1460 WS=4
SACK_PERM=1
Frame 310: 66 bytes on wire (528 bits), 66 bytes captured (528 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 0, Len: 0
No. Time Source Destination
Protocol Length Info
311 2015-11-17 08:42:11.549381000 192.168.1.1 192.168.1.216
TCP 66 3128→61171 [SYN, ACK] Seq=0 Ack=1 Win=65535 Len=0 MSS=1460
WS=4 SACK_PERM=1
Frame 311: 66 bytes on wire (528 bits), 66 bytes captured (528 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 0, Ack: 1, Len: 0
No. Time Source Destination
Protocol Length Info
312 2015-11-17 08:42:11.549424000 192.168.1.216 192.168.1.1
TCP 54 61171→3128 [ACK] Seq=1 Ack=1 Win=65700 Len=0
Frame 312: 54 bytes on wire (432 bits), 54 bytes captured (432 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 1, Ack: 1, Len: 0
No. Time Source Destination
Protocol Length Info
313 2015-11-17 08:42:11.549745000 192.168.1.216 192.168.1.1
HTTP 286 CONNECT www.smart911.com:443 HTTP/1.1
Frame 313: 286 bytes on wire (2288 bits), 286 bytes captured (2288 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 1, Ack: 1, Len: 232
Hypertext Transfer Protocol
No. Time Source Destination
Protocol Length Info
314 2015-11-17 08:42:11.573548000 192.168.1.1 192.168.1.216
HTTP 93 HTTP/1.1 200 Connection established
Frame 314: 93 bytes on wire (744 bits), 93 bytes captured (744 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 1, Ack: 233, Len: 39
Hypertext Transfer Protocol
No. Time Source Destination
Protocol Length Info
315 2015-11-17 08:42:11.573973000 192.168.1.216 192.168.1.1
TLSv1 270 Client Hello
Frame 315: 270 bytes on wire (2160 bits), 270 bytes captured (2160 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 233, Ack: 40, Len: 216
Hypertext Transfer Protocol
Secure Sockets Layer
No. Time Source Destination
Protocol Length Info
316 2015-11-17 08:42:11.600880000 192.168.1.1 192.168.1.216
TLSv1 199 Server Hello, Change Cipher Spec, Encrypted Handshake
Message
Frame 316: 199 bytes on wire (1592 bits), 199 bytes captured (1592 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 40, Ack: 449, Len: 145
Hypertext Transfer Protocol
Secure Sockets Layer
No. Time Source Destination
Protocol Length Info
317 2015-11-17 08:42:11.601318000 192.168.1.216 192.168.1.1
TLSv1 113 Change Cipher Spec, Encrypted Handshake Message
Frame 317: 113 bytes on wire (904 bits), 113 bytes captured (904 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 449, Ack: 185, Len: 59
Hypertext Transfer Protocol
Secure Sockets Layer
No. Time Source Destination
Protocol Length Info
318 2015-11-17 08:42:11.601634000 192.168.1.216 192.168.1.1
TLSv1 912 Application Data, Application Data
Frame 318: 912 bytes on wire (7296 bits), 912 bytes captured (7296 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 508, Ack: 185, Len: 858
Hypertext Transfer Protocol
Secure Sockets Layer
No. Time Source Destination
Protocol Length Info
319 2015-11-17 08:42:11.602016000 192.168.1.1 192.168.1.216
TCP 60 3128→61171 [ACK] Seq=185 Ack=1366 Win=211624 Len=0
Frame 319: 60 bytes on wire (480 bits), 60 bytes captured (480 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 185, Ack: 1366, Len: 0
No. Time Source Destination
Protocol Length Info
320 2015-11-17 08:42:11.661770000 192.168.1.1 192.168.1.216
TLSv1 395 Application Data
Frame 320: 395 bytes on wire (3160 bits), 395 bytes captured (3160 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 185, Ack: 1366, Len: 341
Hypertext Transfer Protocol
Secure Sockets Layer
No. Time Source Destination
Protocol Length Info
321 2015-11-17 08:42:11.662675000 192.168.1.216 192.168.1.1
TCP 54 61171→3128 [FIN, ACK] Seq=1366 Ack=526 Win=65172 Len=0
Frame 321: 54 bytes on wire (432 bits), 54 bytes captured (432 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 1366, Ack: 526, Len: 0
No. Time Source Destination
Protocol Length Info
322 2015-11-17 08:42:11.662848000 192.168.1.1 192.168.1.216
TLSv1 91 Encrypted Alert
Frame 322: 91 bytes on wire (728 bits), 91 bytes captured (728 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 526, Ack: 1366, Len: 37
Hypertext Transfer Protocol
Secure Sockets Layer
No. Time Source Destination
Protocol Length Info
323 2015-11-17 08:42:11.662877000 192.168.1.216 192.168.1.1
TCP 54 61171→3128 [RST, ACK] Seq=1367 Ack=563 Win=0 Len=0
Frame 323: 54 bytes on wire (432 bits), 54 bytes captured (432 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 1367, Ack: 563, Len: 0
No. Time Source Destination
Protocol Length Info
324 2015-11-17 08:42:11.663343000 192.168.1.1 192.168.1.216
TCP 60 3128→61171 [ACK] Seq=563 Ack=1367 Win=211624 Len=0
Frame 324: 60 bytes on wire (480 bits), 60 bytes captured (480 bits) on interface 0
Ethernet II, Src: CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4), Dst:
CadmusCo_60:e7:c8 (08:00:27:60:e7:c8)
Internet Protocol Version 4, Src: 192.168.1.1 (192.168.1.1), Dst: 192.168.1.
216 (192.168.1.216)
Transmission Control Protocol, Src Port: 3128 (3128), Dst Port: 61171 (61171), Seq: 563, Ack: 1367, Len: 0
No. Time Source Destination
Protocol Length Info
325 2015-11-17 08:42:11.663358000 192.168.1.216 192.168.1.1
TCP 54 61171→3128 [RST] Seq=1367 Win=0 Len=0
Frame 325: 54 bytes on wire (432 bits), 54 bytes captured (432 bits) on interface 0
Ethernet II, Src: CadmusCo_60:e7:c8 (08:00:27:60:e7:c8), Dst:
CadmusCo_c2:e9:c4 (08:00:27:c2:e9:c4)
Internet Protocol Version 4, Src: 192.168.1.216 (192.168.1.216), Dst:
192.168.1.1 (192.168.1.1)
Transmission Control Protocol, Src Port: 61171 (61171), Dst Port: 3128 (3128), Seq: 1367, Len: 0
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20151117/bcaae0cd/attachment.html>
------------------------------
Subject: Digest Footer
_______________________________________________
squid-users mailing list
squid-users at lists.squid-cache.org
http://lists.squid-cache.org/listinfo/squid-users
------------------------------
End of squid-users Digest, Vol 15, Issue 71
*******************************************
More information about the squid-users
mailing list