Re: Squid 2.6 Access Log Not showing access to websites

[Amos Jeffries <squid3@xxxxxxxxxxxxx>]

Kirtimaan wrote:
> Hello Amos,
>
>   > Does it stop working when Squid not running?
>
> To my surprise, I can use internet even when squid service is down. So
> now it means that squid is not configured properly ?
> How I can verify this, please guide.

You have already verified. It's definitely an interception problem 
outside of Squid. How its solved will depend on your systems. Was it 
WCCP, iptables (REDIRECT), transparent policy routing, other firewall 
interception?

I don't have a lot of time this week but I'll see what I can do. With 
the answer to the above question, locate the Squid wiki FAQ entries for 
your interception/transparency type and check that your config matches.

http://wiki.squid-cache.org/SquidFaq/

Amos

> Thanks,
> Kirtimaan
>
> Amos Jeffries wrote:
> > Kirtimaan wrote:
> > > Hello Amos,
> > >
> > > Thanks for reply.  How I can check if any log restriction is applied 
> > > or not ?
> >
> > The options I mentioned will have ACL on them in your squid.conf.
> >
> > > I don't face any problem accessing internet using system as a gateway 
> > > and DNS while SQUID is running.
> >
> > Does it stop working when Squid not running?
> >
> > Amos
> >
> > > Thanks.
> > >
> > > Amos Jeffries wrote:
> > > > Kirtimaan wrote:
> > > > > Hello,
> > > > >
> > > > > I have Squid 2.6 STABLE 16, installed on a fedora core 7 box. This 
> > > > > is a transparent proxy and all other window system on network use 
> > > > > fedora box IP as gateway and DNS server. There is only one ACL 
> > > > > defined and that is ALLOW all as there is no need to block access. 
> > > > > Though, there should be logging of sites accessed by users in 
> > > > > network along with their IP address. I checked access.log file and 
> > > > > it shows only entries like
> > > > >
> > > > > *********
> > > > > 1212550126.877      2 192.168.1.4 TCP_DENIED/403 1391 GET 
> > > > > http://fedbox/favicon.ico - NONE/- text/html
> > > > > *********
> > > > >
> > > > > where mglcl is the host name of the fedora box. It doesn't log the 
> > > > > access to out side websites. If there is any configuration setting 
> > > > > which can be turn on to start logging access of sites by user?
> > > >
> > > > log_access and access_log options both accept ACL.
> > > > By default every request is logged. If you have not configured a log 
> > > > restriction then your interception(transparent) is failing.
> > > >
> > > > Amos


--
Please use Squid 2.7.STABLE1 or 3.0.STABLE6