Boa tarde,
Atualizamos um servidor do 10.04 para o 14.04 e deu conflito com o squid por conta da mudança de squid par squid3, o qual foi resolvido.
No entanto, o squid não está registrando os acessos.
O que eu fiz? Temos um outro servidor onde os acessos são registrados, está funcionando (mas em outra localização), peguei e copiei o squid.conf, adaptando para a rede problemática. Mesmo assim, não registra.
Segue os dados:
squid.conf (mydomain.tld foi alterado para preservar os dados):
http_port 3128 transparent
append_domain .inst.mydomain.tld
acl all src "/etc/squid3/ips-rede"
acl analistas src "/etc/squid3/ips-free"
acl servidores src 10.13.2.0/24
##acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
visible_hostname none
acl SSL_ports port 443 # https
acl SSL_ports port 563 # snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 22 # voip
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl Unsafe_ports port 9666
acl purge method PURGE
acl CONNECT method CONNECT
acl download urlpath_regex "/etc/squid3/downloads"
acl blockedsites url_regex -i "/etc/squid3/proibidos"
acl blacklist-origem src "/etc/squid3/blacklist-origem"
#acl blacklist-origem url_regex -i "/etc/squid3/blacklist-origem"
acl allowedsites url_regex -i "/etc/squid3/permitidos"
acl allowtimedsites url_regex -i "/etc/squid3/allowtimedsites"
acl proxys url_regex -i "/etc/squid3/proxys"
acl allowall url_regex -i "/etc/squid3/allowall"
###
#cls de tempo
acl manha time MTWHF 07:00-11:45
acl almoco time MTWHF 11:45-13:30
acl tarde time MTWHF 13:30-18:00
acl noite time MTWHF 18:00-23:30
#
http_access allow manager localhost
http_access deny blacklist-origem
###
http_access allow allowtimedsites servidores almoco
http_access allow allowtimedsites servidores noite
http_access allow allowedsites servidores
http_access allow allowall
http_access allow analistas
http_access deny blockedsites
http_access deny proxys
http_access deny download
###
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny Unsafe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow all
icp_access allow all
http_port 3128
hierarchy_stoplist cgi-bin ?
##access_log /var/log/squid3/access.log squid
access_log stdio:/var/log/squid3/access.log squid
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl apache rep_header Server ^Apache
#broken_vary_encoding allow apache
#extension_methods REPORT MERGE MKACTIVITY CHECKOUT
hosts_file /etc/hosts
coredump_dir /var/spool/squid3
Após reiniciar, encontro essa entrada em /var/log/syslog:
Sep 24 10:34:56 U13S001 kernel: [ 3995.905472] init: squid3 main process (3339) killed by KILL signal
mas o processo está rodando:
# ps aux | grep squid
proxy 3296 0.0 4.2 113400 20080 ? Ss 10:20 0:00 /usr/sbin/squid3 -N -YC -f /etc/squid3/squid.conf
root 3318 0.0 0.1 11744 892 pts/0 S+ 10:33 0:00 grep --color=auto squid
e no firewall existe as regras para redirecionar para o squid:
# iptables -t nat -vnL
Chain PREROUTING (policy ACCEPT 40267 packets, 7367K bytes)
pkts bytes target prot opt in out source destination
31316 1721K REDIRECT tcp -- wccp1 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 redir ports 3128
Chain INPUT (policy ACCEPT 63848 packets, 8669K bytes)
pkts bytes target prot opt in out source destination
Chain OUTPUT (policy ACCEPT 22295 packets, 1596K bytes)
pkts bytes target prot opt in out source destination
Chain POSTROUTING (policy ACCEPT 22295 packets, 1596K bytes)
pkts bytes target prot opt in out source destination
Alguém poderia dar uma ideia de como resolver esse problema?
Obrigado,