[squid-users] Question about traffic calculate

Tiraen tiraen at gmail.com
Fri Jun 8 14:56:31 UTC 2018


Small clarification

If the normal behavior of the proxy server described above is correct, then
maybe there are other methods of gathering information on traffic in online
mode?

Perhaps there are other solutions besides log parsing?

2018-06-06 12:21 GMT+03:00 Tiraen <tiraen at gmail.com>:

> >If you are using SSL-Bump features, please consider Squid-4 instead
>
> It is not used at all.Squid does not work with ssl. Frontend only
>
>
> Concerning incorrectly specified options at build
>
> Here on this squid happens the same thing:
>
> * squid3 -v*
> *Squid Cache: Version 3.4.8*
> * linux*
> *configure options:  '--build=x86_64-linux-gnu' '--prefix=/usr'
> '--includedir=${prefix}/include' '--mandir=${prefix}/share/man'
> '--infodir=${prefix}/share/info' '--sysconfdir=/etc' '--localstatedir=/var'
> '--libexecdir=${prefix}/lib/squid3' '--srcdir=.'
> '--disable-maintainer-mode' '--disable-dependency-tracking'
> '--disable-silent-rules' '--datadir=/usr/share/squid3'
> '--sysconfdir=/etc/squid3' '--mandir=/usr/share/man' '--enable-inline'
> '--disable-arch-native' '--enable-async-io=8'
> '--enable-storeio=ufs,aufs,diskd,rock' '--enable-removal-policies=lru,heap'
> '--enable-delay-pools' '--enable-cache-digests' '--enable-icap-client'
> '--enable-follow-x-forwarded-for'
> '--enable-auth-basic=DB,fake,getpwnam,LDAP,MSNT,MSNT-multi-domain,NCSA,NIS,PAM,POP3,RADIUS,SASL,SMB'
> '--enable-auth-digest=file,LDAP' '--enable-auth-negotiate=kerberos,wrapper'
> '--enable-auth-ntlm=fake,smb_lm'
> '--enable-external-acl-helpers=file_userip,kerberos_ldap_group,LDAP_group,session,SQL_session,unix_group,wbinfo_group'
> '--enable-url-rewrite-helpers=fake' '--enable-eui' '--enable-esi'
> '--enable-icmp' '--enable-zph-qos' '--enable-ecap' '--disable-translation'
> '--with-swapdir=/var/spool/squid3' '--with-logdir=/var/log/squid3'
> '--with-pidfile=/var/run/squid3.pid' '--with-filedescriptors=65536'
> '--with-large-files' '--with-default-user=proxy' '--enable-build-info=
> linux' '--enable-linux-netfilter' 'build_alias=x86_64-linux-gnu' 'CFLAGS=-g
> -O2 -fPIE -fstack-protector-strong -Wformat -Werror=format-security -Wall'
> 'LDFLAGS=-fPIE -pie -Wl,-z,relro -Wl,-z,now' 'CPPFLAGS=-D_FORTIFY_SOURCE=2'
> 'CXXFLAGS=-g -O2 -fPIE -fstack-protector-strong -Wformat
> -Werror=format-security'*
>
>
> *no out data*
>
>
> *Connection: 0x7f18ee951c58*
> * FD 15, read 10070, wrote 19018*
> * FD desc: Reading next request*
> * in: buf 0x7f18ee952070, offset 0, size 4096*
> * remote: 127.0.0.1:52827 <http://127.0.0.1:52827>*
> * local: 127.0.0.1:8080 <http://127.0.0.1:8080>*
> * nrequests: 38*
> *uri http://icanhazip.com/ <http://icanhazip.com/>*
> *logType TCP_MISS*
> *out.offset 0, out.size 0*
> *req_sz 265*
> *entry 0x7f18ee3bc740/F9929050DEE6E67D2DF51EDCBC0CB80F*
> *start 1528276856.390709 (2.640371 seconds ago)*
> *username*
> *delay_pool 0*
>
> *Connection: 0x7f18ee874168*
> * FD 13, read 10070, wrote 19018*
> * FD desc: Reading next request*
> * in: buf 0x7f18ee86bb60, offset 0, size 4096*
> * remote: 127.0.0.1:52825 <http://127.0.0.1:52825>*
> * local: 127.0.0.1:8080 <http://127.0.0.1:8080>*
> * nrequests: 38*
> *uri http://icanhazip.com/ <http://icanhazip.com/>*
> *logType TCP_MISS*
> *out.offset 0, out.size 0*
> *req_sz 265*
> *entry 0x7f18ee87fde0/560E3AC236A180ECB815B5B41527D2BA*
> *start 1528276856.368609 (2.662471 seconds ago)*
> *username*
>
>
> *delay_pool 0*
>
>
>
> 2018-06-06 7:51 GMT+03:00 Amos Jeffries <squid3 at treenet.co.nz>:
>
>> On 06/06/18 07:12, Tiraen wrote:
>> > /The second transaction has not yet reached that state despite 81017sec
>> > having past.
>> > /
>> > Thank you for clarification.
>> >
>> > About squid version
>> >
>> > /squid -v/
>> > /Squid Cache: Version 3.5.27/
>> ...
>>
>> If you are using SSL-Bump features, please consider Squid-4 instead. The
>> strangely long timeouts on transactions is likely to be a side effect of
>> on old behaviour in Squid-3 seen with transactions that were bumped.
>>
>>
>> > '--enable-ssl'
>> > '--with-open-ssl=/etc/ssl/openssl.cnf'
>>
>> Two problems with the above:
>>
>>  1) the option name is "--with-openssl".
>>
>>  2) that option takes the directory PATH where the OpenSSL development
>> files were installed. If using the OS provided library package *omit*
>> the =PATH portion.
>>
>>
>> Amos
>>
>
>
>
> --
> With best regards,
>
> Vyacheslav Yakushev,
>
> Unix system administrator
>
> https://t.me/kelewind
>



-- 
With best regards,

Vyacheslav Yakushev,

Unix system administrator

https://t.me/kelewind
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180608/7927f34d/attachment.html>


More information about the squid-users mailing list