[squid-users] Squid.out reports errors for lines that do not exist in squid.conf
Cheadle, Edward
Edward.Cheadle at cambiahealth.com
Wed Jun 6 23:11:56 UTC 2018
Squid version 3.5.27-1.el6
Linux: Amazon Linux AMI 2018.03.0
I saw the warning messages below in squid.out, did some research and found out that the messagesseemed to be caused the two lines:
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
From http://www.squid-cache.org/Versions/v3/3.5/cfgman/acl.html I see that both these two acl’s are now predefined and are not shown in the recommended configuration.
I suspect the person that installed squid for us found an older conf file from somewhere.
2018/06/06 20:49:29| WARNING: (B) '127.0.0.1' is a subnetwork of (A) '127.0.0.1'
2018/06/06 20:49:29| WARNING: because of this '127.0.0.1' is ignored to keep splay tree searching predictable
2018/06/06 20:49:29| WARNING: You should probably remove '127.0.0.1' from the ACL named 'localhost'
The FATAL error messages below is because I added a line with dstdomain in it when there were already an entry with dstdom_regex in it.
I assume that is the “type” that is talked about.
2018/06/06 20:49:29| aclParseAclLine: ACL 'aws_s3' already exists with different type.
FATAL: Bungled /etc/squid/squid.conf line 254: acl aws_s3 dstdomain -n .s3.amazonaws.com
The issue is that I removed line 254 and I removed both of the lines above and yet I restart squid and continue to get these errors.
Does squid compile the rules and keep them somewhere, and I need to do something else than service squid restart to get rid of rules?
IMPORTANT NOTICE: This communication, including any attachment, contains information that may be confidential or privileged, and is intended solely for the entity or individual to whom it is addressed. If you are not the intended recipient, you should delete this message and are hereby notified that any disclosure, copying, or distribution of this message is strictly prohibited. Nothing in this email, including any attachment, is intended to be a legally binding signature.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180606/25a8c8a8/attachment.html>
More information about the squid-users
mailing list