zelo
25-02-2007, 19:11
squid.conf
http_port 3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
debug_options ALL,1
client_netmask 255.255.255.255
dns_nameservers
visible_hostname proxy
redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
redirect_children 5
redirector_bypass on
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl nn-bank src 192.168.102.0/24
acl m-bank src 192.168.0.205/32
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow nn-bank
http_access allow m-bank
http_access allow localhost
http_reply_access allow all
icp_access allow all
error_directory /usr/lib/squid/errors/Russian-1251
coredump_dir /var/spool/squid
...с таким конфигом делаю в Linux Mandrake:
service squid start
...пишет
Запускается squid [OK]
...ps -A показывает что сквид запущен в двух экземплярах.
...при попытке другой машины зайти через него на сайт, один из процессов squid меняет pid (перезапускается тобишь), сайт не загружатся, браузер пишет что страницу невозможно отобразить, во!
...чо за дела??? :-)
...помогить ребята! ...за ранее пасиБ!
При запуске в режиме отладки:
[root@localhost squid]# squid -NCd1
Пишет это:
2007/02/25 19:08:48| Starting Squid Cache version 2.5.STABLE3 for i586-mandrake-linux-gnu...
2007/02/25 19:08:48| Process ID 5704
2007/02/25 19:08:48| With 1024 file descriptors available
2007/02/25 19:08:48| Performing DNS Tests...
2007/02/25 19:08:48| Successful DNS name lookup tests...
2007/02/25 19:08:48| DNS Socket created at 0.0.0.0, port 32774, FD 4
2007/02/25 19:08:48| Adding nameserver 192.168.102.100 from /etc/resolv.conf
2007/02/25 19:08:48| helperOpenServers: Starting 5 'squidGuard' processes
2007/02/25 19:08:49| User-Agent logging is disabled.
2007/02/25 19:08:49| Unlinkd pipe opened on FD 14
2007/02/25 19:08:49| Swap maxSize 102400 KB, estimated 7876 objects
2007/02/25 19:08:49| Target number of buckets: 393
2007/02/25 19:08:49| Using 8192 Store buckets
2007/02/25 19:08:49| Max Mem size: 8192 KB
2007/02/25 19:08:49| Max Swap size: 102400 KB
2007/02/25 19:08:49| Rebuilding storage in /var/spool/squid (CLEAN)
2007/02/25 19:08:49| Using Least Load store dir selection
2007/02/25 19:08:49| Set Current Directory to /var/spool/squid
2007/02/25 19:08:49| Loaded Icons.
2007/02/25 19:08:49| Accepting HTTP connections at 0.0.0.0, port 3128, FD 15.
2007/02/25 19:08:49| Accepting ICP messages at 0.0.0.0, port 3130, FD 16.
2007/02/25 19:08:49| Accepting HTCP messages on port 4827, FD 17.
2007/02/25 19:08:49| Accepting SNMP messages on port 3401, FD 18.
2007/02/25 19:08:49| WCCP Disabled.
2007/02/25 19:08:49| Ready to serve requests.
2007/02/25 19:08:49| Done scanning /var/spool/squid swaplog (0 entries)
2007/02/25 19:08:49| Finished rebuilding storage from disk.
2007/02/25 19:08:49| 0 Entries scanned
2007/02/25 19:08:49| 0 Invalid entries.
2007/02/25 19:08:49| 0 With invalid flags.
2007/02/25 19:08:49| 0 Objects loaded.
2007/02/25 19:08:49| 0 Objects expired.
2007/02/25 19:08:49| 0 Objects cancelled.
2007/02/25 19:08:49| 0 Duplicate URLs purged.
2007/02/25 19:08:49| 0 Swapfile clashes avoided.
2007/02/25 19:08:49| Took 0.3 seconds ( 0.0 objects/sec).
2007/02/25 19:08:49| Beginning Validation Procedure
2007/02/25 19:08:49| Completed Validation Procedure
2007/02/25 19:08:49| Validated 0 Entries
2007/02/25 19:08:49| store_swap_size = 0k
2007/02/25 19:08:50| storeLateRelease: released 0 objects
Затем, как только с компьютера в сети производится загрузка сайта через этот прокси, происходит следующее:
2007/02/25 19:09:35| WARNING: redirector #1 (FD 6) exited
2007/02/25 19:09:41| WARNING: redirector #2 (FD 7) exited
2007/02/25 19:09:42| WARNING: redirector #3 (FD 8) exited
2007/02/25 19:09:44| WARNING: redirector #4 (FD 9) exited
2007/02/25 19:09:44| storeDirWriteCleanLogs: Starting...
2007/02/25 19:09:44| WARNING: Closing open FD 15
2007/02/25 19:09:44| Finished. Wrote 0 entries.
2007/02/25 19:09:44| Took 0.0 seconds ( 0.0 entries/sec).
FATAL: Too few redirector processes are running
Aborted
[root@localhost squid]#
....вот таки дела!
http_port 3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
debug_options ALL,1
client_netmask 255.255.255.255
dns_nameservers
visible_hostname proxy
redirect_program /usr/bin/squidGuard -c /etc/squid/squidGuard.conf
redirect_children 5
redirector_bypass on
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl nn-bank src 192.168.102.0/24
acl m-bank src 192.168.0.205/32
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow nn-bank
http_access allow m-bank
http_access allow localhost
http_reply_access allow all
icp_access allow all
error_directory /usr/lib/squid/errors/Russian-1251
coredump_dir /var/spool/squid
...с таким конфигом делаю в Linux Mandrake:
service squid start
...пишет
Запускается squid [OK]
...ps -A показывает что сквид запущен в двух экземплярах.
...при попытке другой машины зайти через него на сайт, один из процессов squid меняет pid (перезапускается тобишь), сайт не загружатся, браузер пишет что страницу невозможно отобразить, во!
...чо за дела??? :-)
...помогить ребята! ...за ранее пасиБ!
При запуске в режиме отладки:
[root@localhost squid]# squid -NCd1
Пишет это:
2007/02/25 19:08:48| Starting Squid Cache version 2.5.STABLE3 for i586-mandrake-linux-gnu...
2007/02/25 19:08:48| Process ID 5704
2007/02/25 19:08:48| With 1024 file descriptors available
2007/02/25 19:08:48| Performing DNS Tests...
2007/02/25 19:08:48| Successful DNS name lookup tests...
2007/02/25 19:08:48| DNS Socket created at 0.0.0.0, port 32774, FD 4
2007/02/25 19:08:48| Adding nameserver 192.168.102.100 from /etc/resolv.conf
2007/02/25 19:08:48| helperOpenServers: Starting 5 'squidGuard' processes
2007/02/25 19:08:49| User-Agent logging is disabled.
2007/02/25 19:08:49| Unlinkd pipe opened on FD 14
2007/02/25 19:08:49| Swap maxSize 102400 KB, estimated 7876 objects
2007/02/25 19:08:49| Target number of buckets: 393
2007/02/25 19:08:49| Using 8192 Store buckets
2007/02/25 19:08:49| Max Mem size: 8192 KB
2007/02/25 19:08:49| Max Swap size: 102400 KB
2007/02/25 19:08:49| Rebuilding storage in /var/spool/squid (CLEAN)
2007/02/25 19:08:49| Using Least Load store dir selection
2007/02/25 19:08:49| Set Current Directory to /var/spool/squid
2007/02/25 19:08:49| Loaded Icons.
2007/02/25 19:08:49| Accepting HTTP connections at 0.0.0.0, port 3128, FD 15.
2007/02/25 19:08:49| Accepting ICP messages at 0.0.0.0, port 3130, FD 16.
2007/02/25 19:08:49| Accepting HTCP messages on port 4827, FD 17.
2007/02/25 19:08:49| Accepting SNMP messages on port 3401, FD 18.
2007/02/25 19:08:49| WCCP Disabled.
2007/02/25 19:08:49| Ready to serve requests.
2007/02/25 19:08:49| Done scanning /var/spool/squid swaplog (0 entries)
2007/02/25 19:08:49| Finished rebuilding storage from disk.
2007/02/25 19:08:49| 0 Entries scanned
2007/02/25 19:08:49| 0 Invalid entries.
2007/02/25 19:08:49| 0 With invalid flags.
2007/02/25 19:08:49| 0 Objects loaded.
2007/02/25 19:08:49| 0 Objects expired.
2007/02/25 19:08:49| 0 Objects cancelled.
2007/02/25 19:08:49| 0 Duplicate URLs purged.
2007/02/25 19:08:49| 0 Swapfile clashes avoided.
2007/02/25 19:08:49| Took 0.3 seconds ( 0.0 objects/sec).
2007/02/25 19:08:49| Beginning Validation Procedure
2007/02/25 19:08:49| Completed Validation Procedure
2007/02/25 19:08:49| Validated 0 Entries
2007/02/25 19:08:49| store_swap_size = 0k
2007/02/25 19:08:50| storeLateRelease: released 0 objects
Затем, как только с компьютера в сети производится загрузка сайта через этот прокси, происходит следующее:
2007/02/25 19:09:35| WARNING: redirector #1 (FD 6) exited
2007/02/25 19:09:41| WARNING: redirector #2 (FD 7) exited
2007/02/25 19:09:42| WARNING: redirector #3 (FD 8) exited
2007/02/25 19:09:44| WARNING: redirector #4 (FD 9) exited
2007/02/25 19:09:44| storeDirWriteCleanLogs: Starting...
2007/02/25 19:09:44| WARNING: Closing open FD 15
2007/02/25 19:09:44| Finished. Wrote 0 entries.
2007/02/25 19:09:44| Took 0.0 seconds ( 0.0 entries/sec).
FATAL: Too few redirector processes are running
Aborted
[root@localhost squid]#
....вот таки дела!