[squid-users] squid unable to start on CentOS 6.5
Derek Cole
derek.cole at gmail.com
Mon Dec 22 23:35:15 UTC 2014
Here is the output of the "squid -k parse" command, AFTER making the
changes suggested by Eliezer
2014/12/22 18:34:40| Startup: Initializing Authentication Schemes ...
2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'basic'
2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'digest'
2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'negotiate'
2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'ntlm'
2014/12/22 18:34:40| Startup: Initialized Authentication.
2014/12/22 18:34:40| Processing Configuration File: /etc/squid/squid.conf
(depth 0)
2014/12/22 18:34:40| Processing: visible_hostname BrowserAccess
2014/12/22 18:34:40| Processing: acl SSL_ports port 443
2014/12/22 18:34:40| Processing: acl Safe_ports port 80 # http
2014/12/22 18:34:40| Processing: acl Safe_ports port 21 # ftp
2014/12/22 18:34:40| Processing: acl Safe_ports port 443 # https
2014/12/22 18:34:40| Processing: acl Safe_ports port 70 # gopher
2014/12/22 18:34:40| Processing: acl Safe_ports port 210 # wais
2014/12/22 18:34:40| Processing: acl Safe_ports port 1025-65535 #
unregistered ports
2014/12/22 18:34:40| Processing: acl Safe_ports port 280 # http-mgmt
2014/12/22 18:34:40| Processing: acl Safe_ports port 488 # gss-http
2014/12/22 18:34:40| Processing: acl Safe_ports port 591 # filemaker
2014/12/22 18:34:40| Processing: acl Safe_ports port 777 # multiling
http
2014/12/22 18:34:40| Processing: acl CONNECT method CONNECT
2014/12/22 18:34:40| Processing: http_access deny !Safe_ports
2014/12/22 18:34:40| Processing: http_access deny CONNECT !SSL_ports
2014/12/22 18:34:40| Processing: http_access allow localhost manager
2014/12/22 18:34:40| Processing: http_access deny manager
2014/12/22 18:34:40| Processing: http_access allow localhost
2014/12/22 18:34:40| Processing: http_access allow all
2014/12/22 18:34:40| Processing: http_access deny all
2014/12/22 18:34:40| Processing: http_port 3128
2014/12/22 18:34:40| Processing: coredump_dir /var/spool/squid
2014/12/22 18:34:40| Processing: refresh_pattern ^ftp: 1440 20%
10080
2014/12/22 18:34:40| Processing: refresh_pattern ^gopher: 1440 0%
1440
2014/12/22 18:34:40| Processing: refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
2014/12/22 18:34:40| Processing: refresh_pattern . 0 20% 4320
2014/12/22 18:34:40| Initializing https proxy context
On Mon, Dec 22, 2014 at 6:25 PM, Derek Cole <derek.cole at gmail.com> wrote:
> Thanks for taking a look.
>
> I did try what you suggested, change the "http_port 3128" line back to
> default, and also I tried to launch squid with the default squid.conf from
> the RPM install. Both cases still result in a failed launch.
>
>
> sharadchhetri.com/2014/03/15/install-configure-transparent-squid-proxy-server-rhelcentos-6-x/
>
> This link is the link I was using when I initially set this up, and got it
> working on the first machine. I am essentially using iptables to route
> traffic to squid, and then squid is routing to the internet.
>
> Is there anything else I can check, with respect to selinux, etc that
> would determine if it's actually running or something?
>
> Thanks
>
> On Mon, Dec 22, 2014 at 6:18 PM, Eliezer Croitoru <eliezer at ngtech.co.il>
> wrote:
>
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> OK Amos gave you a suggestion which will cover everything but from
>> reading the squid.conf I would first try to understand:
>> What do you want squid to do for you?
>>
>> You need to remove the "all" acl line and change the http_port from
>> what it is to the defaults "http_port 3128".
>> Did you tried to remove squid.conf and run it using the default
>> squid.conf?
>>
>> Eliezer
>>
>>
>> On 12/23/2014 12:57 AM, Derek Cole wrote:
>> > visible_hostname BrowserAccess #acl localnet src 10.1.1.0/24 #
>> > RFC1918 possible internal network #acl localnet src 10.22.0.0/23
>> > acl all src 0.0.0.0/255.255.255.255 acl SSL_ports port 443 acl
>> > Safe_ports port 80 # http acl Safe_ports port 21 # ftp
>> > acl Safe_ports port 443 # https acl Safe_ports port 70 #
>> > gopher acl Safe_ports port 210 # wais acl Safe_ports port
>> > 1025-65535 # unregistered ports acl Safe_ports port 280 #
>> > http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports
>> > port 591 # filemaker acl Safe_ports port 777 # multiling
>> > http acl CONNECT method CONNECT http_access deny !Safe_ports
>> > http_access deny CONNECT !SSL_ports http_access allow localhost
>> > manager http_access deny manager #http_access allow localnet
>> > http_access allow localhost http_access allow all http_access deny
>> > all http_port 3128 accel vhost allow-direct coredump_dir
>> > /var/spool/squid refresh_pattern ^ftp: 1440 20% 10080
>> > refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i
>> > (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320
>>
>> -----BEGIN PGP SIGNATURE-----
>> Version: GnuPG v1
>>
>> iQEcBAEBAgAGBQJUmKbFAAoJENxnfXtQ8ZQUd6AH/jkZV2m6wpiaSyRrhAnQ1OmK
>> Yc7EJt9BiyrPKi5AhiCTG1LfySYVWM1J1krdH4xoXVQB543Xnz0TLA5ul7YZrkSt
>> s+EGMO9GJbPnzA1gjwurBz1sRDOnmd30Yc6f8sT51hJ++csVWld5PTbfCbluun95
>> UZwUgPl+CfUKDhot/JuobRiPd90UayuEprYcIpH4I5dbPCZlSRliXNZKzVAqE9Ht
>> 9iIeOPuvPXKw1nWawmKxj4sytX79iNxeJ8PrXxPyCYxf8zeFHSMetA3pe2rcYQgK
>> y2V3aNRCdVY+VSolTkUcE+GmItbM3B//XV4CRb3CNRNsdl2cHFOglvPc8mWmodI=
>> =DX3j
>> -----END PGP SIGNATURE-----
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20141222/504b4641/attachment-0001.html>
More information about the squid-users
mailing list