Hello,our access.log is filled up to 95% with useless entrys: 192.168.12.84 - - [18/Sep/2017:15:22:40 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3990 TAG_NONE:HIER_NONE 192.168.12.117 - - [18/Sep/2017:15:22:40 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3991 TAG_NONE:HIER_NONE 192.168.12.84 - - [18/Sep/2017:15:22:41 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3990 TAG_NONE:HIER_NONE 192.168.12.118 - - [18/Sep/2017:15:22:41 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3991 TAG_NONE:HIER_NONE 192.168.12.121 - - [18/Sep/2017:15:22:41 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3991 TAG_NONE:HIER_NONE 192.168.13.60 - - [18/Sep/2017:15:22:41 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3990 TAG_NONE:HIER_NONE 192.168.12.89 - - [18/Sep/2017:15:22:41 +0200] "POST /SpamResolverNG/SpamResolverNG.dll?DoNewRequest HTTP/1.1" 400 3990 TAG_NONE:HIER_NONE ... I think, the antivirus on several workstations will produce these entrys. How can I get rid of them? What I've tried: 1.)acl logNoSpamresolver url_regex -i SpamResolverNG access_log /var/log/squid/access.log common !logNoSpamresolver This will not filter the entrys from access.log 2.) acl logNoSpamresolver url_regex -i http access_log /var/log/squid/access.log common logNoSpamresolver Now only urls with "http" will be loggeg, https or other are ignored too Does anybody know a solution for this problem? Holger -- Sent from: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-Users-f1019091.html _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
