Squid3 [RESOLVIDO]

1. Squid3 [RESOLVIDO]

stringuetta
(usa Linux Mint)

Enviado em 09/01/2013 - 21:15h

Olá senhores, eu atualizei meu squid para a versão 3, porém está dando erro quando tento inicializa-lo, li alguns posts aqui mesmo no VOL, porém nenhum deles resolveu o problema, no momento de iniciar ele apresenta o seguinte erro: Starting Squid HTTP Proxy 3.x: squid32013/01/09 18:22:07| WARNING: Netmasks are deprecated. Please use CIDR masks instead.

Meu squid.conf



http_port 3128 transparent

hierarchy_stoplist cgi-bin ?

acl QUERY urlpath_regex cgi-bin \?

no_cache deny QUERY



request_header_max_size 15 KB

error_directory /usr/share/squid3/errors/Portuguese



cache_mem 64 MB

maximum_object_size_in_memory 64 KB



maximum_object_size 32 MB

minimum_object_size 0 KB



cache_swap_low 90

cache_swap_high 95



client_persistent_connections on

server_persistent_connections on



memory_pools off

uri_whitespace allow



dns_nameservers 127.0.0.1 200.204.0.10 208.67.220.220

dns_timeout 30 seconds

client_lifetime 24 hours



cache_dir diskd /var/spool/squid3 2048 64 64 Q1=72 Q2=72



memory_replacement_policy heap GDSF

cache_replacement_policy heap GDSF



cache_access_log /var/log/squid3/access.log

cache_store_log none

debug_options ALL,1

log_fqdn off

client_netmask 255.255.255.255



ftp_user webmaster@kernel.org



half_closed_clients off



quick_abort_min 0 KB

quick_abort_max 0 KB

connect_timeout 120 seconds

redirect_children 5



cache_mgr stringuetta@gmail.com

visible_hostname proxy.stringuetta.com.br

unique_hostname proxy.stringuetta.com.br



refresh_pattern ^ftp:  15 20% 2280

refresh_pattern ^gopher: 15 0% 2280

refresh_pattern .  15 20% 2280



acl redelocal src 192.168.2.0/24

acl manager proto cache_object

acl localhost src 127.0.0.1/32

acl SSL_ports port 443 563 3306 465 995

acl Safe_ports port 80  # http

acl Safe_ports port 21  # ftp

acl Safe_ports port 26  # tcp

acl Safe_ports port 443 563 # https, snews

acl Safe_ports port 70  # gopher

acl Safe_ports port 210  # wais

acl Safe_ports port 1025-65535 # unregistered ports

acl Safe_ports port 280  # http-mgmt

acl Safe_ports port 488  # gss-http

acl Safe_ports port 591  # filemaker

acl Safe_ports port 777  # multiling http

acl Safe_ports port 901  # SWAT

acl purge method PURGE

acl CONNECT method CONNECT

http_access allow manager localhost

http_access deny manager

http_access allow purge localhost

http_access deny purge

http_access deny !Safe_ports

http_access deny CONNECT !SSL_ports

http_access allow localhost



acl manager proto cache_object

acl webserver src 192.168.2.0/255.255.255.255

http_access allow manager webserver

http_access deny manager



acl allowed-especial src "/etc/squid3/ips-especiais"

acl allowed-hosts src "/etc/squid3/ips-autorizados"

acl denied-hosts src "/etc/squid3/ips-bloqueados"

acl allowed-sites url_regex -i "/etc/squid3/sites-liberados"

acl denied-bloqueados url_regex -i "/etc/squid3/sites-bloqueados"

acl extban url_regex -i \.avi \.zip \.mp3 \.torrent \.rar \.dat \.bat \.wmv \.exe

http_access allow allowed-especial

http_access deny extban

http_access deny denied-hosts

http_access allow allowed-hosts

http_access deny denied-bloqueados

http_access allow allowed-sites

#http_access allow allowed-sites !denied-bloqueados 



http_access deny redelocal

http_access deny all

0 0

Quote

2. MELHOR RESPOSTA

fernando_mlc
(usa Debian)

Enviado em 10/01/2013 - 15:45h

Cara pelo logs vc ver que alguma coisa com mascara

tenta desabilitar a tag

#client_netmask 255.255.255.255

faz um teste.!!

0 0

Quote

3. Re: Squid3 [RESOLVIDO]

stringuetta
(usa Linux Mint)

Enviado em 10/01/2013 - 18:00h

fernando_mlc, obrigado pela colaboração, realmente era este o problema, porém não com o "client_netmask" e sim com os IPS agregados na lista de bloqueados e autorizados, substitui a mascara como ele solicita de 255.255.255.255 para /32 e foi resolvido o problema.

0 0

Quote