On Fri, May 04, 2007 at 10:02:28AM +0200, Jerome wrote: > How to log access by reverse proxy ? And in which file ? > access.log ? You can log it into whatever file you want. I'm using squid as a reverse proxy for two sites, which I want to log separately. You can do this by defining access lists which match the kind of traffic you want to log for each site, then apply them to an access log. acl consumer_site dstdomain .consumer.com acl corporate_site dstdomain .corporate.com access_log /var/log/web/consumer.log combined consumer_site access_log /var/log/web/corporate.log combined corporate_site Where "combined" is the log format to use. I defined this myself, which you might want to do in order to capture the information you want. The ACL name on the end restricts logging to only requests which match the given ACL. Here's my log format; you can find the various tags in the stock squid.conf comments: logformat combined %>a %ui %un [%tg] "%rm %ru HTTP/%rv" %Hs %<st "%{Referer}>h" "%{User-Agent}>h" %Ss:%Sh %mt This should all be on a single line without the excess whitespace, and must be defined before you reference it in the access_log lines. Again, "combined" is just a tag you assign to it. For your forward proxying, you can just use the standard: access_log /var/log/squid/access.log squid This will log all requests in squid's normal log format. You might want to define an ACL which excludes your hosted sites, and apply it to this log file. If you leave it as-is, access to your hosted sites will be logged both to the access.log and to the site-specific log.