Search squid archive

Re: auth, ssl bump and analyzing logs

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 14/07/2016 7:45 p.m., Marko Cupać wrote:
> Hi,
> 
> is there a way to parse squid access.log in a way that only traffic
> that was served to clients count?

Unless you are using a custom log. That is the only data that gets
logged in the size field of access.log.

> I used to parse access.log with
> calamaris, and I was getting useful info from it, but since I introduced
> authentication and ssl bumping I suspect I am getting very large
> numbers for ERRORs (I guess as a result of auth 407's etc.)

Perhapse. Or...

> 
> # Incoming TCP-requests by status
> status         request      %    Byte       %   sec  kB/sec 
> ------------- --------- ------ -------- ------ ---- ------- 
> HIT               89540   6.20    1703M   4.07    0  182.82 
> MISS             698904  48.37   18055M  43.13    2   16.34 
> ERROR            656402  45.43   22105M  52.80    1   49.58 
> ------------- --------- ------ -------- ------ ---- ------- 
> Sum             1444846 100.00   41862M 100.00    1   26.83
> 

There are several more types of transaction status than HIT, MISS, ERROR
in modern Squid logs. Perhapse the problem is that your Calamaris does
not handle those other transaction types.

Amos
_______________________________________________
squid-users mailing list
squid-users@xxxxxxxxxxxxxxxxxxxxx
http://lists.squid-cache.org/listinfo/squid-users




[Index of Archives]     [Linux Audio Users]     [Samba]     [Big List of Linux Books]     [Linux USB]     [Yosemite News]

  Powered by Linux