Re logging, does this eventually get logged by Squid, somewhere?
For this implementation, I was going to use pfSense. Turns out that Sarg is no longer included in the package list for pfSense (current version).On Tue, May 10, 2016 at 2:43 PM, J Green <corpengineer@xxxxxxxxx> wrote:
Very interesting, thank you both.On Tue, May 10, 2016 at 2:23 PM, Yuri Voinov <yvoinov@xxxxxxxxx> wrote:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
11.05.16 2:57, Eliezer Croitoru пишет:
>
> Hey,
>
>
>
> You can always use a TOS from squid to mark connections and\or users and to somehow create some policy case on that.
Sure, Eliezer. I've forgot about TOS. Good point.
>
> I have used more then once the Linux "tc" to "jail" a user which was abusing his unbound bandwidth policy.
>
> I do not like the idea but I have asked couple networking experts about the most used approach compared to the most efficient and it's seems pretty reasonable from the business aspect of networking to slow(not hog) a user.
> Specifically there are places which defines the Internet as a WEB only ie port 80 and 443 and for HTTP only traffic.
>
> For these purposes squid is great while there are other approaches to the subject.
>
>
>
> Eliezer
>
>
>
> ----
>
> Eliezer Croitoru <http://ngtech.co.il/lmgtfy/>
> Linux System Administrator
> Mobile: +972-5-28704261
> Email: eliezer@xxxxxxxxxxxx
>
>
>
> *From:*squid-users [mailto:squid-users-bounces@xxxxxxxxxxxxxxxxxxxxx] *On Behalf Of *J Green
> *Sent:* Tuesday, May 10, 2016 8:42 PM
> *To:* Yuri Voinov
> *Cc:* squid-users@xxxxxxxxxxxxxxxxxxxxx
> *Subject:* Re: Can Traffic Management Settings be configured for other TCP protocols?
>
>
>
> That is fair, re intended use. But yes, management want to know if users are attempting to circumvent policy. Re analyzing logs, I did not see this logged anywhere. Is there perhaps a debug mode which I need to enable?
>
> Thank you.
>
>
>
> On Tue, May 10, 2016 at 10:29 AM, Yuri Voinov <yvoinov@xxxxxxxxx <mailto:yvoinov@xxxxxxxxx>> wrote:
>
>
> First, upload is PUT method usage. Most common HTTP/HTTPS is GET/HEAD methods.
>
> Second, logging of all things is not my goal.
>
> For me, it is sufficient that the restrictions imposed by me in accordance with the policy. The amount of downloads for my count analyzers logs, if management is interesting to read the reports independently.
>
> 10.05.16 23:25, J Green пишет:
> > So back to the intended use cases for HTTP, HTTPS, & FTP , how can you log violations of maximum download/upload size? I see an error message generated on the client system, but not w/in Squid. Thank you.
>
> > On Mon, May 9, 2016 at 10:12 AM, Yuri Voinov <yvoinov@xxxxxxxxx <mailto:yvoinov@xxxxxxxxx> <mailto:yvoinov@xxxxxxxxx> <mailto:yvoinov@xxxxxxxxx>> wrote:
>
>
> > Squid is not a proxy server every imaginable the TCP-usage protocol.
>
> > AFAIK HTTP/HTTPS/FTP. That's all, folks.
>
>
> > 09.05.16 23:07, J Green пишет:
> > > Hello all:
>
>
>
> > > Can Traffic Management Settings be configured for TCP
> > protocols other than HTTP?
>
>
>
> > > Would like to limit maximum upload and download sizes for
> > other TCP protocols: SMB, NFS, FTP, and RDP.
>
>
>
> > > Is this possible? If so, how?
>
>
>
> > > Thank you.
>
>
>
>
>
>
>
>
>
> > > _______________________________________________
>
> > > squid-users mailing list
>
> > > squid-users@xxxxxxxxxxxxxxxxxxxxx <mailto:squid-users@xxxxxxxxxxxxxxxxxxxxx> <mailto:squid-users@xxxxxxxxxxxxxxxxxxxxx> <mailto:squid-users@xxxxxxxxxxxxxxxxxxxxx>
>
> > > http://lists.squid-cache.org/listinfo/squid-users
>
>
>
> > _______________________________________________
> > squid-users mailing list
> > squid-users@xxxxxxxxxxxxxxxxxxxxx <mailto:squid-users@xxxxxxxxxxxxxxxxxxxxx> <mailto:squid-users@xxxxxxxxxxxxxxxxxxxxx> <mailto:squid-users@xxxxxxxxxxxxxxxxxxxxx>
> > http://lists.squid-cache.org/listinfo/squid-users
>
>
>
>
>
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
iQEcBAEBCAAGBQJXMlFEAAoJENNXIZxhPexGO6AH/RsDrJKihobs93E9OLhT7uuB
6KjX5eSfcNzYmTX1QsTn4SDf2l3HaItZ5jPuSFGSBMTuGo0RaHc0Y+YIcRO8CuOG
PQDBPXff2Vg16o06Ty78XLUAfWUr1q4uu6G5Vp8F2cLWSjk7thuFu9XoYe5Q2z1V
yN99aV/Kol+Om//eSPOf3hre3ONYRFn2lR+GJET9QNfogiRakpFOzeeGp3fXQgzA
S6n2MfhyhYRO3lDtjGcrWDoR5Tz8OdKlReuwHqtkuQi/OA95O9CpfwnEnORGLVN6
G4H0pG7MrXBbl5zRhspkr9BNvtunkFsSnUlcUhBtKj1RhsC7H9g7lvkE8QKphIU=
=kDA0
-----END PGP SIGNATURE-----
_______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users