<div dir="ltr">Hi Antony.<div><br></div><div>The URL is www..<a href="http://yasudamaritima.com.br">yasudamaritima.com.br</a>, but according to the user, you have to navigate and authenticate to the portion of the site which is supposed to show the window, but the window is blank.</div><div><br></div><div>The squid.log captured during the user session is below:</div><div><br></div><div><div>1444152953.106 0 192.168.0.38 TCP_MISS/000 0 GET <a href="http://www.yasuda.com.br/favicon.ico">http://www.yasuda.com.br/favicon.ico</a> - DIRECT/<a href="http://www.yasuda.com.br">www.yasuda.com.br</a> -</div><div>1444152953.428 0 192.168.0.38 TCP_IMS_HIT/304 295 GET <a href="http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/Extra-corretor.jpg">http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/Extra-corretor.jpg</a> - NONE/- image/jpeg</div><div>1444152953.428 0 192.168.0.38 TCP_IMS_HIT/304 295 GET <a href="http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/04-Corretor-ps_venda.jpg">http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/04-Corretor-ps_venda.jpg</a> - NONE/- image/jpeg</div><div>1444152953.429 0 192.168.0.38 TCP_IMS_HIT/304 295 GET <a href="http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/post_corretor8.jpg">http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/post_corretor8.jpg</a> - NONE/- image/jpeg</div><div>1444152953.431 0 192.168.0.38 TCP_IMS_HIT/304 295 GET <a href="http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/31-Segurado-RC_BAB.jpg">http://seguros.yasudamaritima.com.br/hubfs/IMG_Posts/31-Segurado-RC_BAB.jpg</a> - NONE/- image/jpeg</div><div>1444152953.782 180 192.168.0.38 TCP_MISS/302 1012 GET <a href="http://www.google-analytics.com/r/collect">http://www.google-analytics.com/r/collect</a>? - DIRECT/<a href="http://173.194.118.6">173.194.118.6</a> text/html</div><div>1444152954.023 0 192.168.0.38 TCP_IMS_HIT/304 301 GET <a href="http://s7.addthis.com/layers.d3089ff8d4aa15672ac8.js">http://s7.addthis.com/layers.d3089ff8d4aa15672ac8.js</a> - NONE/- text/javascript</div><div>1444152954.034 0 192.168.0.38 TCP_IMS_HIT/304 301 GET <a href="http://s7.addthis.com/hi-res-css.cfeefd4edd0cdaff82be.js">http://s7.addthis.com/hi-res-css.cfeefd4edd0cdaff82be.js</a> - NONE/- text/javascript</div><div>1444152954.082 0 192.168.0.38 TCP_IMS_HIT/304 311 GET <a href="http://s7.addthis.com/sh.3aa0e79cb54fea3f63d7daa9.html">http://s7.addthis.com/sh.3aa0e79cb54fea3f63d7daa9.html</a> - NONE/- text/html</div><div>1444152954.096 0 192.168.0.38 TCP_IMS_HIT/304 301 GET <a href="http://s7.addthis.com/menu.ee745c37cc4914e21ca8.js">http://s7.addthis.com/menu.ee745c37cc4914e21ca8.js</a> - NONE/- text/javascript</div><div>1444152954.289 426 192.168.0.38 TCP_MISS/200 21476 GET <a href="http://js.hs-analytics.net/analytics/1444153200000/503280.js">http://js.hs-analytics.net/analytics/1444153200000/503280.js</a> - DIRECT/<a href="http://184.28.143.227">184.28.143.227</a> text/javascript</div><div>1444152954.771 322 192.168.0.38 TCP_MISS/200 961 GET <a href="http://m.addthis.com/live/red_lojson/300lo.json">http://m.addthis.com/live/red_lojson/300lo.json</a>? - DIRECT/<a href="http://104.16.23.235">104.16.23.235</a> application/javascript</div><div>1444152955.317 324 192.168.0.38 TCP_MISS/200 412 GET <a href="http://track.hubspot.com/__ptq.gif">http://track.hubspot.com/__ptq.gif</a>? - DIRECT/<a href="http://54.164.53.68">54.164.53.68</a> image/gif</div><div>1444152959.736 10073 192.168.0.38 TCP_MISS/200 228 CONNECT <a href="http://www.gstatic.com:443">www.gstatic.com:443</a> - DIRECT/<a href="http://173.194.118.23">173.194.118.23</a> -</div><div>1444152969.735 14738 192.168.0.38 TCP_MISS/200 4526 CONNECT <a href="http://fbstatic-a.akamaihd.net:443">fbstatic-a.akamaihd.net:443</a> - DIRECT/<a href="http://201.6.6.163">201.6.6.163</a> -</div><div>1444152969.735 15418 192.168.0.38 TCP_MISS/200 3789 CONNECT <a href="http://s-static.ak.facebook.com:443">s-static.ak.facebook.com:443</a> - DIRECT/<a href="http://172.229.62.110">172.229.62.110</a> -</div><div>1444152969.736 15432 192.168.0.38 TCP_MISS/200 3789 CONNECT <a href="http://s-static.ak.facebook.com:443">s-static.ak.facebook.com:443</a> - DIRECT/<a href="http://172.229.62.110">172.229.62.110</a> -</div><div>1444152969.736 14716 192.168.0.38 TCP_MISS/200 262 CONNECT <a href="http://www.facebook.com:443">www.facebook.com:443</a> - DIRECT/<a href="http://31.13.85.8">31.13.85.8</a> -</div><div>1444152969.998 146 192.168.0.38 TCP_MISS/200 3010 POST <a href="http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/LoadUsuario.aspx">http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/LoadUsuario.aspx</a> - DIRECT/<a href="http://201.85.62.34">201.85.62.34</a> text/html</div><div>1444152970.071 17 192.168.0.38 TCP_MISS/200 366 GET <a href="http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/dynaTraceMonitor">http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/dynaTraceMonitor</a>? - DIRECT/<a href="http://201.85.62.34">201.85.62.34</a> text/plain</div><div>1444152970.116 53 192.168.0.38 TCP_MISS/302 943 GET <a href="http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/WebForms/default.aspx">http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/WebForms/default.aspx</a>? - DIRECT/<a href="http://201.85.62.34">201.85.62.34</a> text/html</div><div>1444152977.019 10383 192.168.0.38 TCP_MISS/200 103653 CONNECT <a href="http://portalweb.yasudamaritima.com.br:443">portalweb.yasudamaritima.com.br:443</a> - DIRECT/<a href="http://201.85.63.40">201.85.63.40</a> -</div><div>1444152977.030 10382 192.168.0.38 TCP_MISS/200 2265 CONNECT <a href="http://portalweb.yasudamaritima.com.br:443">portalweb.yasudamaritima.com.br:443</a> - DIRECT/<a href="http://201.85.63.40">201.85.63.40</a> -</div><div>1444152977.049 10412 192.168.0.38 TCP_MISS/200 798 CONNECT <a href="http://portalweb.yasudamaritima.com.br:443">portalweb.yasudamaritima.com.br:443</a> - DIRECT/<a href="http://201.85.63.40">201.85.63.40</a> -</div><div>1444152979.735 13068 192.168.0.38 TCP_MISS/200 137 CONNECT <a href="http://portalweb.yasudamaritima.com.br:443">portalweb.yasudamaritima.com.br:443</a> - DIRECT/<a href="http://201.85.63.40">201.85.63.40</a> -</div><div>1444152979.759 16391 192.168.0.38 TCP_MISS/200 151066 CONNECT <a href="http://portalweb.yasudamaritima.com.br:443">portalweb.yasudamaritima.com.br:443</a> - DIRECT/<a href="http://201.85.63.40">201.85.63.40</a> -</div><div>1444153020.403 65399 192.168.0.38 TCP_MISS/200 17889 CONNECT <a href="http://www.facebook.com:443">www.facebook.com:443</a> - DIRECT/<a href="http://31.13.85.8">31.13.85.8</a> -</div><div>1444153078.755 115395 192.168.0.38 TCP_MISS/200 3678 CONNECT <a href="http://www.linkedin.com:443">www.linkedin.com:443</a> - DIRECT/<a href="http://108.174.12.129">108.174.12.129</a> -</div><div>1444153079.087 142525 192.168.0.38 TCP_MISS/200 64000 CONNECT <a href="http://www.google.com.br:443">www.google.com.br:443</a> - DIRECT/<a href="http://173.194.118.23">173.194.118.23</a> -</div><div>1444153079.087 129438 192.168.0.38 TCP_MISS/200 7529 CONNECT <a href="http://www.gstatic.com:443">www.gstatic.com:443</a> - DIRECT/<a href="http://173.194.118.23">173.194.118.23</a> -</div><div>1444153079.087 125913 192.168.0.38 TCP_MISS/200 807 CONNECT <a href="http://apis.google.com:443">apis.google.com:443</a> - DIRECT/<a href="http://173.194.118.2">173.194.118.2</a> -</div><div>1444153079.087 125915 192.168.0.38 TCP_MISS/200 618 CONNECT <a href="http://s7.addthis.com:443">s7.addthis.com:443</a> - DIRECT/<a href="http://104.16.27.35">104.16.27.35</a> -</div><div>1444153079.087 125453 192.168.0.38 TCP_MISS/200 50115 CONNECT <a href="http://platform.linkedin.com:443">platform.linkedin.com:443</a> - DIRECT/<a href="http://184.86.193.85">184.86.193.85</a> -</div><div>1444153079.087 125421 192.168.0.38 TCP_MISS/200 445 CONNECT <a href="http://connect.facebook.net:443">connect.facebook.net:443</a> - DIRECT/<a href="http://172.230.53.221">172.230.53.221</a> -</div><div>1444153079.087 124998 192.168.0.38 TCP_MISS/200 624 CONNECT <a href="http://stats.g.doubleclick.net:443">stats.g.doubleclick.net:443</a> - DIRECT/<a href="http://64.233.190.154">64.233.190.154</a> -</div><div>1444153079.088 108930 192.168.0.38 TCP_MISS/200 35399 GET <a href="http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/WebForms/ConsultaCalculo.aspx">http://syasweb.yasuda.com.br:9080/SyasWeb/Auto/WebForms/ConsultaCalculo.aspx</a> - DIRECT/<a href="http://201.85.62.34">201.85.62.34</a> text/html</div><div>1444153079.088 124444 192.168.0.38 TCP_MISS/200 1010 CONNECT <a href="http://syndication.twitter.com:443">syndication.twitter.com:443</a> - DIRECT/<a href="http://199.16.158.49">199.16.158.49</a> -</div></div><div><br></div><div><br></div><div>And here is my squid.conf.</div><div><br></div><div><div>[root@fw squid]# grep -v "^$" /etc/squid/squid.conf</div><div>http_port <a href="http://192.168.0.254:3128">192.168.0.254:3128</a></div><div>visible_hostname <a href="http://fw.akium.com.br">fw.akium.com.br</a></div><div>cache_mem 64 MB</div><div>cache_dir ufs /cache 5000 24 24</div><div>cache_swap_low 90</div><div>cache_swap_high 95</div><div>maximum_object_size 1 MB</div><div>maximum_object_size_in_memory 64 KB</div><div>minimum_object_size 1 KB</div><div>acl QUERY urlpath_regex cgi-bin \?</div><div>acl GOVDOMAIN dstdomain .<a href="http://gov.br">gov.br</a></div><div>cache deny GOVDOMAIN</div><div>cache deny QUERY</div><div>#logformat squid %tl %6tr %>a %Ss/%03Hs %<st %rm %ru %un %Sh/%<A %mt</div><div>access_log /var/log/squid/access.log squid</div><div>refresh_pattern ^ftp: 1440 20% 10080</div><div>refresh_pattern ^gopher: 1440 0% 1440</div><div>refresh_pattern . 0 20% 4320</div><div>error_directory /etc/squid/errors</div><div>#acl all src 0.0.0.0</div><div>acl manager proto cache_object</div><div>acl localhost src <a href="http://127.0.0.1/255.255.255.255">127.0.0.1/255.255.255.255</a></div><div>acl rede_local src <a href="http://192.168.0.0/255.255.255.0">192.168.0.0/255.255.255.0</a></div><div>acl to_localhost dst <a href="http://127.0.0.0/8">127.0.0.0/8</a></div><div>acl servidor src 192.168.0.254</div><div>acl downloads_mime rep_mime_type -i "/etc/squid/regras/mime_download"</div><div>acl block_words_ulrs url_regex -i "/etc/squid/regras/blocked_word_url"</div><div>acl block_msn_client req_mime_type ^application/x-msn-messenger</div><div>acl unblock_sites url_regex -i "/etc/squid/regras/unblocked_sites"</div><div>acl unblock_download_sites url_regex -i "/etc/squid/regras/unblocked_download_sites"</div><div>acl unblock_selected_sites url_regex -i "/etc/squid/regras/unblocked_selected_sites"</div><div>acl google_talk url_regex -i "/etc/squid/regras/block_google_talk"</div><div>acl imessengers url_regex -i "/etc/squid/regras/block_imessengers"</div><div>acl liberados_selected src "/etc/squid/regras/maquinas_selected"</div><div>acl liberados src "/etc/squid/regras/maquinas_liberadas"</div><div>acl interno dstdomain <a href="http://akium.com.br">akium.com.br</a></div><div>acl SSL_ports port 443 563 9043 448</div><div>acl Safe_ports port 80 # http</div><div>acl Safe_ports port 81 86 # Apache - Dansguardian error page</div><div>acl Safe_ports port 99</div><div>acl Safe_ports port 21 # ftp</div><div>acl Safe_ports port 443 563 # https, snews</div><div>acl Safe_ports port 70 # gopher</div><div>acl Safe_ports port 210 1015 # wais</div><div>acl Safe_ports port 1025-65535 # unregistered ports</div><div>acl Safe_ports port 280 # http-mgmt</div><div>acl Safe_ports port 488 # gss-http</div><div>acl Safe_ports port 591 # filemaker</div><div>acl Safe_ports port 777 # multiling http</div><div>acl Safe_ports port 1011 # Sincor</div><div>acl Safe_ports port 9043 # AdmSeg</div><div>acl Safe_ports port 448 # AdmSeg</div><div>acl CONNECT method CONNECT</div><div>http_access deny google_talk</div><div>http_access allow manager localhost</div><div>http_access deny manager</div><div>http_access deny !Safe_ports</div><div>http_access deny CONNECT !SSL_ports</div><div>#always_direct allow interno</div><div>http_access allow localhost</div><div>http_access allow servidor</div><div>http_access allow unblock_sites</div><div>http_access allow unblock_selected_sites liberados_selected</div><div>http_access allow liberados</div><div>http_access deny imessengers</div><div>deny_info <a href="http://192.168.0.254/im.html">http://192.168.0.254/im.html</a> imessengers</div><div>http_access deny block_words_ulrs</div><div>deny_info <a href="http://192.168.0.254/words.html">http://192.168.0.254/words.html</a> block_words_ulrs</div><div>http_access allow rede_local</div><div>http_access deny all</div><div>http_reply_access allow liberados</div><div>http_reply_access allow unblock_download_sites</div><div>http_reply_access deny downloads_mime</div><div>http_reply_access allow all</div><div>icp_access allow all</div><div>coredump_dir /var/spool/squid</div><div>[root@fw squid]#</div></div><div><br></div><div>Appreciate your help!</div><div><br></div><div>Att.<br></div><div class="gmail_extra"><div><div class="gmail_signature"><div dir="ltr"><br>Cristiano Nunes<br><br></div></div></div>
<br><div class="gmail_quote">2015-10-06 13:30 GMT-03:00 Antony Stone <span dir="ltr"><<a href="mailto:Antony.Stone@squid.open.source.it" target="_blank">Antony.Stone@squid.open.source.it</a>></span>:<br><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex"><span class="">On Tuesday 06 October 2015 at 17:40:11, Cristiano Nunes wrote:<br>
<br>
> I have a Squid Version 3.9.Stable13 which is working perfect.<br>
><br>
> Today I received a complanint of a users which is not able to browse a<br>
> brazilian site.<br>
><br>
> Squid log shows no DENY at all but the site only shows a white screen with<br>
> no errors.<br>
><br>
> I thought this was a site bug. So I set up a NAT to the user and for my<br>
> surprise the site worked flawless.<br>
><br>
> The site seems to user ports http(80) / https(443) and http(9080) all<br>
> theses are not blocked by Squid.<br>
><br>
> What could be the cause to this site not work through Squid.<br>
<br>
</span>That's a bit hard for us to tell without knowing:<br>
<br>
- the site the user was trying to access (so we can see what sort of HTML it<br>
returns, or try it on our own Squid setups, for example)<br>
<br>
- your Squid configuration (so we can see why the access ought to have worked)<br>
<br>
- what showed up in the Squid log file when the user tried to access the site<br>
(so we can see what Squid was asked to do, what it did, and what the result<br>
was).<br>
<br>
<br>
I suggest you:<br>
<br>
- tell us the URL<br>
<br>
- post your squid.conf without blank lines or comments (obscuring any<br>
sensitive data, if present)<br>
<br>
- post the Squid access log for the session (removing detail from any other<br>
sessions so long as you're sure they are unrelated).<br>
<br>
<br>
That may give us some useful information to work on.<br>
<br>
<br>
Regards,<br>
<br>
<br>
Antony.<br>
<span class=""><font color="#888888"><br>
--<br>
You can tell that the day just isn't going right when you find yourself using<br>
the telephone before the toilet.<br>
<br>
Please reply to the list;<br>
please *don't* CC me.<br>
_______________________________________________<br>
squid-users mailing list<br>
<a href="mailto:squid-users@lists.squid-cache.org">squid-users@lists.squid-cache.org</a><br>
<a href="http://lists.squid-cache.org/listinfo/squid-users" rel="noreferrer" target="_blank">http://lists.squid-cache.org/listinfo/squid-users</a><br>
</font></span></blockquote></div><br></div></div>