Hi list.
I just upgraded Squid from 3.1 to 3.2 on my Freebsd version 8.3
In my squid.conf I had the following lines that I got complaints from
when starting squid after the upgrade.
-------------------------------------------------------------------
Define access control lists
# acl all is defined by default in version 3.0 STABLE
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
--------------------------------------------------------------------
----------------------------------------------------------------------
squid Ncd10
2012/11/20 16:12:45| WARNING: (B) '127.0.0.1' is a subnetwork of (A)
'127.0.0.1'
2012/11/20 16:12:45| WARNING: because of this '127.0.0.1' is ignored to
keep splay tree searching predictable
2012/11/20 16:12:45| WARNING: You should probably remove '127.0.0.1'
from the ACL named 'localhost'
2012/11/20 16:12:45| WARNING: (B) '127.0.0.1' is a subnetwork of (A)
'127.0.0.1'
2012/11/20 16:12:45| WARNING: because of this '127.0.0.1' is ignored to
keep splay tree searching predictable
2012/11/20 16:12:45| WARNING: You should probably remove '127.0.0.1'
from the ACL named 'localhost'
2012/11/20 16:12:45| WARNING: (B) '127.0.0.0/8' is a subnetwork of (A)
'127.0.0.0/8'
2012/11/20 16:12:45| WARNING: because of this '127.0.0.0/8' is ignored
to keep splay tree searching predictable
2012/11/20 16:12:45| WARNING: You should probably remove '127.0.0.0/8'
from the ACL named 'to_localhost'
----------------------------------------------------------------------
I commented out the lines and squid seems to start.
Now the users get:
---------------------------------------------------------------------
CacheHost: machine01.domain.country
ErrPage: ERR_ACCESS_DENIED
Err: [none]
TimeStamp: Wed, 21 Nov 2012 07:47:59 GMT
ClientIP: "removed for security"
HTTP Request:
GET / HTTP/1.1
Host: www.somewhere.here
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:16.0) Gecko/20100101
Firefox/16.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8
Accept-Language: sv-SE,sv;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
Cookie: CP=null*; Vizzit=pn1180RxoESjRcHErLVI3Q==:1328713777
Via: 1.1 machine01.domain.country (squid/3.2.3)
X-Forwarded-For: "removed for security"
Cache-Control: max-age=259200
Connection: keep-alive
---------------------------------------------------------------------
I have compiled squid with the same parameters, Please see below, so I
do not really understand why this happens.
----------------------------------------------------------------------
Squid 3.1
SQUID_KERB-AUTH X (ON)
SQUID_NIS_AUTH X (ON)
SQUID_IPV6 X (ON)
SQUID_DELAY_POOLS X (ON)
SQUID_SNMP X (ON)
SQUID_HTCP X (ON)
SQUID_WCCP X (ON)
SQUID_IPFW X (ON)
SQUID_PF X (ON)
SQUID_AUFS X (ON)
SQUID_KQUEUE X (ON)
Squid 3.2
AUTH_KERB X (ON)
AUTH_NIS X (ON)
DELAY_POOLS X (ON)
FS_AUFS X (ON)
HTCP X (ON)
IPV6 X (ON)
KQUEUE X (ON)
SNMP X (ON)
TP_IPFW X (ON)
TP_PF X (ON)
WCCP X (ON)
----------------------------------------------------------------------
At the moment I've reverted back to 3.1 but I would like to make a
successful upgrade :-)
Thanks
/Leslie
