Good day!
I have a problem with squid proxy in intercept ssl_bump mode.Into access.log I have errors: TCP_MISS_ABORTED/000
My squid configuration, access.log, cache.log in attachment.
Thank you!
--
С уважением, Дмитрий Ермаков.
2015/02/13 21:16:42 kid1| Current Directory is / 2015/02/13 21:16:42 kid1| Starting Squid Cache version 3.5.1 for i486-pc-linux-gnu... 2015/02/13 21:16:42 kid1| Service Name: squid 2015/02/13 21:16:42 kid1| Process ID 32428 2015/02/13 21:16:42 kid1| Process Roles: worker 2015/02/13 21:16:42 kid1| With 65535 file descriptors available 2015/02/13 21:16:42 kid1| Initializing IP Cache... 2015/02/13 21:16:42 kid1| DNS Socket created at [::], FD 7 2015/02/13 21:16:42 kid1| DNS Socket created at 0.0.0.0, FD 8 2015/02/13 21:16:42 kid1| Adding nameserver 8.8.8.8 from /etc/resolv.conf 2015/02/13 21:16:42 kid1| helperOpenServers: Starting 5/50 'ssl_crtd' processes 2015/02/13 21:16:42 kid1| Logfile: opening log daemon:/var/log/squid3/access.log 2015/02/13 21:16:42 kid1| Logfile Daemon: opening log /var/log/squid3/access.log 2015/02/13 21:16:42 kid1| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec 2015/02/13 21:16:42 kid1| Store logging disabled 2015/02/13 21:16:42 kid1| Swap maxSize 0 + 262144 KB, estimated 20164 objects 2015/02/13 21:16:42 kid1| Target number of buckets: 1008 2015/02/13 21:16:42 kid1| Using 8192 Store buckets 2015/02/13 21:16:42 kid1| Max Mem size: 262144 KB 2015/02/13 21:16:42 kid1| Max Swap size: 0 KB 2015/02/13 21:16:42 kid1| Using Least Load store dir selection 2015/02/13 21:16:42 kid1| Current Directory is / 2015/02/13 21:16:42 kid1| Finished loading MIME types and icons. 2015/02/13 21:16:42 kid1| HTCP Disabled. 2015/02/13 21:16:42 kid1| Squid plugin modules loaded: 0 2015/02/13 21:16:42 kid1| Adaptation support is off. 2015/02/13 21:16:42 kid1| Accepting HTTP Socket connections at local=[::]:3130 remote=[::] FD 23 flags=9 2015/02/13 21:16:42 kid1| Accepting NAT intercepted HTTP Socket connections at local=[::]:3128 remote=[::] FD 24 flags=41 2015/02/13 21:16:42 kid1| Accepting NAT intercepted SSL bumped HTTPS Socket connections at local=[::]:3127 remote=[::] FD 25 flags=41 2015/02/13 21:16:43 kid1| storeLateRelease: released 0 objects 2015/02/13 21:17:26 kid1| Preparing for shutdown after 66 requests 2015/02/13 21:17:26 kid1| Waiting 30 seconds for active connections to finish 2015/02/13 21:17:26 kid1| Closing HTTP port [::]:3130 2015/02/13 21:17:26 kid1| Closing HTTP port [::]:3128 2015/02/13 21:17:26 kid1| Closing HTTPS port [::]:3127 2015/02/13 21:17:26 kid1| Shutdown: NTLM authentication. 2015/02/13 21:17:26 kid1| Shutdown: Negotiate authentication. 2015/02/13 21:17:26 kid1| Shutdown: Digest authentication. 2015/02/13 21:17:26 kid1| Shutdown: Basic authentication. 2015/02/13 21:17:57 kid1| Shutting down... 2015/02/13 21:17:57 kid1| storeDirWriteCleanLogs: Starting... 2015/02/13 21:17:57 kid1| Finished. Wrote 0 entries. 2015/02/13 21:17:57 kid1| Took 0.00 seconds ( 0.00 entries/sec). CPU Usage: 0.880 seconds = 0.660 user + 0.220 sys Maximum Resident Size: 87968 KB Page faults with physical i/o: 0 2015/02/13 21:17:57 kid1| Logfile: closing log daemon:/var/log/squid3/access.log 2015/02/13 21:17:57 kid1| Logfile Daemon: closing log daemon:/var/log/squid3/access.log 2015/02/13 21:17:57 kid1| Open FD UNSTARTED 7 DNS Socket IPv6 2015/02/13 21:17:57 kid1| Open FD READ/WRITE 8 DNS Socket IPv4 2015/02/13 21:17:57 kid1| Open FD READ/WRITE 10 ssl_crtd #1 2015/02/13 21:17:57 kid1| Open FD UNSTARTED 12 ssl_crtd #2 2015/02/13 21:17:57 kid1| Open FD UNSTARTED 14 ssl_crtd #3 2015/02/13 21:17:57 kid1| Open FD UNSTARTED 16 ssl_crtd #4 2015/02/13 21:17:57 kid1| Open FD UNSTARTED 18 ssl_crtd #5 2015/02/13 21:17:57 kid1| Open FD UNSTARTED 21 IPC UNIX STREAM Parent 2015/02/13 21:17:57 kid1| Squid Cache (Version 3.5.1): Exiting normally.
acl localnet src 192.168.100.0/24 acl SSL_ports port 443 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 # https acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT http_access deny !Safe_ports http_access deny CONNECT !SSL_ports http_access allow localhost manager http_access deny manager http_access allow localnet http_access allow localhost http_access deny all http_port 3130 http_port 3128 intercept https_port 3127 intercept ssl-bump generate-host-certificates=on dynamic_cert_mem_cache_size=8MB cert=/etc/squid3/ssl_certs/squidCA.pem acl broken_sites dstdomain .example.com acl broken_sites dstdomain "/etc/squid3/adapted_sites/files.mail.ru" sslproxy_cafile /etc/ssl/certs/ca-certificates.crt ssl_bump none localhost ssl_bump none broken_sites ssl_bump server-first all sslcrtd_program /usr/lib/squid3/ssl_crtd -s /var/squid/ssl_db -M 4MB sslcrtd_children 50 acl no_cache dstdomain "/etc/squid3/adapted_sites/files.mail.ru" cache deny no_cache cache allow all refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320
1423851413.365 235 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.150:443 - ORIGINAL_DST/217.69.141.150 - 1423851413.368 228 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.150:443 - ORIGINAL_DST/217.69.141.150 - 1423851413.565 178 192.168.100.111 TCP_MISS/410 291 GET https://jim24.mail.ru/connect? - ORIGINAL_DST/217.69.141.150 text/html 1423851413.570 228 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.150:443 - ORIGINAL_DST/217.69.141.150 - 1423851413.670 81 192.168.100.111 TCP_MISS/410 291 POST https://jim24.mail.ru/helper? - ORIGINAL_DST/217.69.141.150 text/html 1423851413.904 233 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.180.77:443 - ORIGINAL_DST/94.100.180.77 - 1423851413.943 240 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.139.56:443 - ORIGINAL_DST/217.69.139.56 - 1423851413.950 236 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.139.56:443 - ORIGINAL_DST/217.69.139.56 - 1423851413.974 309 192.168.100.111 TAG_NONE/200 0 CONNECT 185.5.137.172:443 - ORIGINAL_DST/185.5.137.172 - 1423851414.018 312 192.168.100.111 TAG_NONE/200 0 CONNECT 185.5.137.172:443 - ORIGINAL_DST/185.5.137.172 - 1423851414.051 244 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.181.219:443 - ORIGINAL_DST/94.100.181.219 - 1423851414.117 154 192.168.100.111 TCP_MISS/200 651 GET https://jiml.mail.ru/user/status? - ORIGINAL_DST/217.69.139.56 application/json 1423851414.202 175 192.168.100.111 TCP_MISS/200 329 GET https://waerr.radar.imgsmail.ru/update? - ORIGINAL_DST/185.5.137.172 image/gif 1423851414.210 151 192.168.100.111 TCP_MISS/200 408 GET https://rs.mail.ru/d1346376.gif? - ORIGINAL_DST/94.100.181.219 image/gif 1423851414.249 77 192.168.100.111 TCP_MISS/200 408 GET https://rs.mail.ru/d706711.gif? - ORIGINAL_DST/94.100.180.77 image/gif 1423851414.550 313 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.180.174:443 - ORIGINAL_DST/94.100.180.174 - 1423851414.673 309 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.139.174:443 - ORIGINAL_DST/217.69.139.174 - 1423851414.777 306 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851414.834 154 192.168.100.111 TCP_MISS/200 329 GET https://mrilog.mail.ru/empty.gif? - ORIGINAL_DST/217.69.139.174 image/gif 1423851414.955 167 192.168.100.111 TCP_MISS/200 2462 GET https://jim25.mail.ru/communicate.html? - ORIGINAL_DST/217.69.141.151 text/html 1423851415.299 233 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.190.95:443 - ORIGINAL_DST/94.100.190.95 - 1423851415.450 303 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851415.626 163 192.168.100.111 TCP_MISS/200 669 GET https://jim25.mail.ru/connect? - ORIGINAL_DST/217.69.141.151 application/json 1423851416.000 307 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851416.014 310 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851416.106 83 192.168.100.111 TCP_MISS/200 669 GET https://jim25.mail.ru/connect? - ORIGINAL_DST/217.69.141.151 application/json 1423851416.245 80 192.168.100.111 TCP_MISS/200 394 POST https://jim25.mail.ru/wp? - ORIGINAL_DST/217.69.141.151 text/html 1423851416.410 232 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851416.420 236 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851416.506 78 192.168.100.111 TCP_MISS/200 957 GET https://jim25.mail.ru/connect? - ORIGINAL_DST/217.69.141.151 application/json 1423851416.619 80 192.168.100.111 TCP_MISS/200 394 POST https://jim25.mail.ru/wp? - ORIGINAL_DST/217.69.141.151 text/html 1423851416.792 242 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851416.796 241 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.151:443 - ORIGINAL_DST/217.69.141.151 - 1423851416.909 96 192.168.100.111 TCP_MISS/200 721 GET https://jim25.mail.ru/connect? - ORIGINAL_DST/217.69.141.151 application/json 1423851433.265 253 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.181.219:443 - ORIGINAL_DST/94.100.181.219 - 1423851433.284 267 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.181.219:443 - ORIGINAL_DST/94.100.181.219 - 1423851433.442 77 192.168.100.111 TCP_MISS/200 408 GET https://rs.mail.ru/d440893.gif? - ORIGINAL_DST/94.100.181.219 image/gif 1423851433.508 242 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.181.219:443 - ORIGINAL_DST/94.100.181.219 - 1423851433.592 76 192.168.100.111 TCP_MISS/200 321 GET https://rs.mail.ru/sb440893.gif? - ORIGINAL_DST/94.100.181.219 image/gif 1423851433.735 251 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.181.219:443 - ORIGINAL_DST/94.100.181.219 - 1423851436.106 249 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.190.95:443 - ORIGINAL_DST/94.100.190.95 - 1423851436.121 255 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.190.95:443 - ORIGINAL_DST/94.100.190.95 - 1423851436.220 260 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.184.41:443 - ORIGINAL_DST/94.100.184.41 - 1423851436.239 258 192.168.100.111 TAG_NONE/200 0 CONNECT 94.100.184.41:443 - ORIGINAL_DST/94.100.184.41 - 1423851436.284 331 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.138:443 - ORIGINAL_DST/217.69.141.138 - 1423851436.360 247 192.168.100.111 TAG_NONE/200 0 CONNECT 128.140.168.248:443 - ORIGINAL_DST/128.140.168.248 - 1423851436.378 254 192.168.100.111 TAG_NONE/200 0 CONNECT 128.140.168.248:443 - ORIGINAL_DST/128.140.168.248 - 1423851436.461 210 192.168.100.111 TCP_MISS/200 966 GET https://ssl.files.mail.ru/cgi-bin/files/fajaxcall? - ORIGINAL_DST/94.100.184.41 text/plain 1423851436.463 322 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.144:443 - ORIGINAL_DST/217.69.141.144 - 1423851436.528 157 192.168.100.111 TCP_MISS/304 371 GET https://img.imgsmail.ru/mail/ru/images/popupbox_tail.gif - ORIGINAL_DST/128.140.168.248 - 1423851436.528 141 192.168.100.111 TCP_MISS/304 372 GET https://img.imgsmail.ru/mail/ru/images/ru/_sp_ico.png? - ORIGINAL_DST/128.140.168.248 - 1423851436.654 159 192.168.100.111 TCP_MISS/200 329 GET https://mail.radar.imgsmail.ru/update? - ORIGINAL_DST/217.69.141.144 image/gif 1423851436.657 159 192.168.100.111 TCP_MISS/200 329 GET https://mail.radar.imgsmail.ru/update? - ORIGINAL_DST/217.69.141.138 image/gif 1423851437.135 244 192.168.100.111 TAG_NONE/200 0 CONNECT 128.140.171.172:443 - ORIGINAL_DST/128.140.171.172 - 1423851437.395 250 192.168.100.111 TCP_MISS/200 552 OPTIONS https://upload196.files.mail.ru/upload_ext_1394/? - ORIGINAL_DST/128.140.171.172 - 1423851437.493 92 192.168.100.111 TCP_MISS_ABORTED/000 0 POST https://upload196.files.mail.ru/upload_ext_1394/? - ORIGINAL_DST/128.140.171.172 - 1423851437.865 245 192.168.100.111 TAG_NONE/200 0 CONNECT 128.140.171.172:443 - ORIGINAL_DST/128.140.171.172 - ##after this error in log, I have error "Can not upload file" in browser. 1423851437.957 82 192.168.100.111 TCP_MISS_ABORTED/000 0 POST https://upload196.files.mail.ru/upload_ext_1394/? - ORIGINAL_DST/128.140.171.172 - 1423851440.091 310 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.144:443 - ORIGINAL_DST/217.69.141.144 - 1423851440.093 308 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.144:443 - ORIGINAL_DST/217.69.141.144 - 1423851440.097 306 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.144:443 - ORIGINAL_DST/217.69.141.144 - 1423851440.192 85 192.168.100.111 TCP_MISS/200 329 GET https://mail.radar.imgsmail.ru/update? - ORIGINAL_DST/217.69.141.144 image/gif 1423851440.220 307 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.144:443 - ORIGINAL_DST/217.69.141.144 - 1423851440.227 309 192.168.100.111 TAG_NONE/200 0 CONNECT 217.69.141.144:443 - ORIGINAL_DST/217.69.141.144 - 1423851440.270 76 192.168.100.111 TCP_MISS/200 329 GET https://mail.radar.imgsmail.ru/update? - ORIGINAL_DST/217.69.141.144 image/gif 1423851440.274 78 192.168.100.111 TCP_MISS/200 329 GET https://mail.radar.imgsmail.ru/update? - ORIGINAL_DST/217.69.141.144 image/gif 1423851473.129 56160 192.168.100.111 TCP_MISS_ABORTED/000 0 GET https://jim25.mail.ru/connect? - ORIGINAL_DST/217.69.141.151 -
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users