Search squid archive

Squid stopped working after update.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Mandriva Linux 2007, Squid Cache: Version 2.6.STABLE1


Here's an odd thing: I ran updates on my server after a rather lengthy period of not updating -- I hate it when the lying bastage mirrors stop working, but anyway...

After this lengthy upgrade, Squid updated to ver. 2.6.STABLE1 and stopped working. The process was still up, but when I configured the browser to use the proxy, it claimed it couldn't find the proxy I had configured.

I looked at the config files and everything seemed okay. I checked the logs and it looked like there was a failure related to how it was resolving http. I'd like to be more articulate about that error, but I punted and uninstalled/reinstalled squid and squidGuard from the main_update repositories.

The reinstall went okay and I've modified the new config files so that Squid and squidGuard run and should be working fine (when did squidGuard become a "url_rewriter_program"?), but now when I point a browser to a website under the proxy, it just times out.

I've tried disabling IP tables on client and server, and disabling squidGuard but nothing has helped.

Here's the config:

http_port 3128
http_port 8080
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl Apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
url_rewrite_program /usr/bin/squidGuard -d -c /etc/squid/squidGuard.conf
refresh_pattern ^ftp:           1440    20%     10080
refresh_pattern ^gopher:        1440    0%      1440
refresh_pattern .               0       20%     4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80          # http
acl Safe_ports port 21          # ftp
acl Safe_ports port 443 563     # https, snews
acl Safe_ports port 70          # gopher
acl Safe_ports port 210         # wais
acl Safe_ports port 1025-65535  # unregistered ports
acl Safe_ports port 280         # http-mgmt
acl Safe_ports port 488         # gss-http
acl Safe_ports port 591         # filemaker
acl Safe_ports port 777         # multiling http
acl CONNECT method CONNECT
acl mynetwork src 192.168.1.0/255.255.255.0
acl alexa src "/etc/squid/bad_1s"
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow mynetwork
acl our_networks src 192.168.1.0/24
http_access allow our_networks
http_access allow localhost
http_reply_access allow all
icp_access allow all
cache_effective_user squid
cache_effective_group squid
visible_hostname shuttle.adams-lan.local
deny_info ERR_CUSTOM_ACCESS_DENIED mynetwork
coredump_dir /var/spool/squid

Logs don't seem to be showing much about squid that I can see:

# tail syslog
Apr 5 12:49:58 shuttle smbd[5948]: getpeername failed. Error was Transport endpoint is not connected Apr 5 12:49:58 shuttle smbd[19212]: [2007/04/05 12:49:58, 0] lib/util_sock.c:get_peer_addr(1229) Apr 5 12:49:58 shuttle smbd[19212]: getpeername failed. Error was Transport endpoint is not connected Apr 5 12:49:58 shuttle smbd[19212]: [2007/04/05 12:49:58, 0] lib/util_sock.c:write_data(562) Apr 5 12:49:58 shuttle smbd[19212]: write_data: write failure in writing to client 0.0.0.0. Error Connection reset by peer Apr 5 12:49:58 shuttle smbd[19212]: [2007/04/05 12:49:58, 0] lib/util_sock.c:send_smb(769) Apr 5 12:49:58 shuttle smbd[19212]: Error writing 4 bytes to client. -1. (Connection reset by peer) Apr 5 12:50:01 shuttle crond[19223]: (mail) CMD (/usr/bin/python -S /usr/lib/mailman/cron/gate_news) Apr 5 12:51:04 shuttle mon[6299]: failure for servers http 1175799064 localhost Apr 5 12:54:47 shuttle mon[6299]: failure for servers telnet 1175799287 localhost

Running a "tail -n 1000 /var/log/syslog|grep squid" yields exactly nothing.



The only references in /var/log/messages tell me that the databases are updating properly:

# tail -n 10000 /var/log/messages|grep squid
Apr  5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squid
Apr  5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squid/admin.acl
Apr  5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squid/config
Apr  5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squidguard
Apr 5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squidguard/admin.acl
Apr  5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squidguard/config
Apr  5 02:16:26 shuttle logger: - /share/scripts/squid_update.sh
Apr 5 03:01:01 shuttle crond[22881]: (root) CMD (/etc/squid/blacklist-update all) Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/squidGuard.log from 660 to 640 Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard from 771 to 751 Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/squidGuard.error from 660 to 640 Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/update.log from 660 to 640 Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/custom.log from 660 to 640 Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/blocked.log from 660 to 640 Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/advertising.log from 660 to 640



# tail access.log
1175798813.718 1754 192.168.1.100 TCP_MISS/200 4806 GET http://www.fulldls.com/rss.php - DIRECT/66.29.9.69 text/xml 1175798822.053 2088 192.168.1.100 TCP_MISS/200 10020 GET http://www.squid-cache.org/mailing-lists.html - DIRECT/12.160.37.9 text/html 1175799083.226 498 192.168.1.100 TCP_MISS/302 785 GET http://fxfeeds.mozilla.org/rss20.xml - DIRECT/63.245.209.21 text/html 1175799083.828 600 192.168.1.100 TCP_REFRESH_MISS/200 13460 GET http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml - DIRECT/212.58.240.130 application/xml 1175799295.144 419 192.168.1.100 TCP_MISS/200 5791 GET http://login.yahoo.com/config/login? - DIRECT/209.191.92.114 text/html 1175799295.458 314 192.168.1.100 TCP_MISS/302 1185 POST http://login.yahoo.com/config/login - DIRECT/209.191.92.114 text/html 1175799295.721 251 192.168.1.100 TCP_MISS/302 587 GET http://mail.yahoo.com/ - DIRECT/209.191.92.114 text/html 1175799296.402 670 192.168.1.100 TCP_MISS/200 17262 GET http://us.f318.mail.yahoo.com/ym/login? - DIRECT/68.142.207.12 text/html 1175799304.308 10845 192.168.1.100 TCP_MISS/200 4636 CONNECT gmail.google.com:443 - DIRECT/64.233.163.107 - 1175799304.503 11041 192.168.1.100 TCP_MISS/200 5532 CONNECT gmail.google.com:443 - DIRECT/64.233.163.107 -



# tail store.log
1175798798.727 SWAPOUT 00 000003F0 6F3E3CC291C548A0033ABA4E3C3232DE 200 1175798798 1175798644 -1 application/octet-stream 9895/9895 GET http://rss.thepiratebay.org/206 1175798813.718 RELEASE -1 FFFFFFFF 994824389CBC32D9C053969C372B232C 200 1175798407 -1 -1 text/xml 4503/4503 GET http://www.fulldls.com/rss.php 1175798822.044 SWAPOUT 00 000003F1 D3934E64C0F5283C604E9B98F7C2FCBB 200 1175798821 1162769601 1175885221 text/html 9547/9547 GET http://www.squid-cache.org/mailing-lists.html 1175799083.226 RELEASE -1 FFFFFFFF 20CEE6A980843607F2F7627B1D921D1A 302 1175798553 -1 -1 text/html 342/342 GET http://fxfeeds.mozilla.org/rss20.xml 1175799083.564 RELEASE 00 00000156 3BE61D572C49B5960B9A518C69EC65AA 200 1175795477 1175795289 1175795537 application/xml 13030/-340 GET http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml 1175799083.825 SWAPOUT 00 000003F2 01CFAF7534CDCB5774D0B8E0B412F616 200 1175799083 1175798237 1175799143 application/xml 13043/13043 GET http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml 1175799295.144 RELEASE -1 FFFFFFFF EF5DBA12B3AB057DDA3AE1FF86A8029C 200 1175799294 -1 -1 text/html 5059/5059 GET http://login.yahoo.com/config/login? 1175799295.458 RELEASE -1 FFFFFFFF 520AF5CD70DD68D13ADBB5AC97515458 302 1175799295 -1 789343200 text/html -1/0 POST http://login.yahoo.com/config/login 1175799295.721 RELEASE -1 FFFFFFFF D02E5843E527BB9CD08E9BEA74DD3E96 302 1175799295 -1 789343200 text/html -1/0 GET http://mail.yahoo.com/ 1175799296.402 RELEASE -1 FFFFFFFF B1A7853BFA30401120D2F54189C8AEBC 200 1175799295 -1 -1 text/html 16664/16664 GET http://us.f318.mail.yahoo.com/ym/login?


# tail -n 25 cache.log
2007/04/05 08:39:58| Initialising SSL.
2007/04/05 08:39:58| parseEtcHosts: /etc/hosts: (13) Permission denied
2007/04/05 08:39:58| User-Agent logging is disabled.
2007/04/05 08:39:58| Referer logging is disabled.
2007/04/05 08:39:58| DNS Socket created at 0.0.0.0, port 1330, FD 8
2007/04/05 08:39:58| Adding domain adams-lan.local from /etc/resolv.conf
2007/04/05 08:39:58| Adding nameserver 205.171.2.65 from /etc/resolv.conf
2007/04/05 08:39:58| Adding nameserver 205.171.3.65 from /etc/resolv.conf
2007/04/05 08:39:58| Adding nameserver 192.168.1.105 from /etc/resolv.conf
2007/04/05 08:39:58| Accepting proxy HTTP connections at 0.0.0.0, port 3128, FD 9. 2007/04/05 08:39:58| Accepting proxy HTTP connections at 0.0.0.0, port 8080, FD 10.
2007/04/05 08:39:58| Accepting ICP messages at 0.0.0.0, port 3130, FD 11.
2007/04/05 08:39:58| Accepting HTCP messages on port 4827, FD 12.
2007/04/05 08:39:58| Accepting SNMP messages on port 3401, FD 14.
2007/04/05 08:39:58| WCCP Disabled.
2007/04/05 08:39:58| Pinger socket opened on FD 15
2007/04/05 08:39:58| Loaded Icons.
2007/04/05 08:39:58| eventCleanup
2007/04/05 08:39:58| Ready to serve requests.
2007/04/05 09:00:24| icmpSend: send: (111) Connection refused
2007/04/05 09:00:24| Closing Pinger socket on FD 15
2007/04/05 09:22:44| NETDB state saved; 0 entries, 0 msec
2007/04/05 10:23:45| NETDB state saved; 0 entries, 0 msec
2007/04/05 11:34:43| NETDB state saved; 0 entries, 0 msec
2007/04/05 12:28:23| NETDB state saved; 0 entries, 0 msec


Anybody know what is oing on here?

Thanks.

Mark

_________________________________________________________________
Need a break? Find your escape route with Live Search Maps. http://maps.live.com/?icid=hmtag3


[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux