Página 2 de 3 PrimeiroPrimeiro 123 ÚltimoÚltimo
+ Responder ao Tópico



  1. #6
    pilantrox
    faz o seguinte ,,, aparentemente tah tudo ok ,,, mas pra podermos analizar melhor oq esta se passando faz o seguinte ,,, deleta os arquivos , store.log , cache.log e access.log, deleta o cache , para todos os processos de squid q tem rodando ,,, squid -k kill ,,, e inicia novamente,,,,
    squid -z
    squid -Ds
    depois disso roda manualmente no shell as linhas de iptables e analiza no teu access.log se tah havendo solicitacoes de web nele.... aproveita e coloca novamente o cache.log novo q ele vai criar pra mim dar uma analizada...........

  2. #7
    fiz isso e que estranho o access.log nao tem nada
    e olha o cache.log
    2005/02/15 13:51:46| Starting Squid Cache version 2.5.STABLE7 for i686-pc-linux-gnu...
    2005/02/15 13:51:46| Process ID 949
    2005/02/15 13:51:46| With 1024 file descriptors available
    2005/02/15 13:51:46| DNS Socket created at 0.0.0.0, port 1026, FD 5
    2005/02/15 13:51:46| Adding nameserver 200.255.5.17 from /etc/resolv.conf
    2005/02/15 13:51:46| Adding nameserver 200.255.5.5 from /etc/resolv.conf
    2005/02/15 13:51:46| Unlinkd pipe opened on FD 10
    2005/02/15 13:51:46| Swap maxSize 102400 KB, estimated 7876 objects
    2005/02/15 13:51:46| Target number of buckets: 393
    2005/02/15 13:51:46| Using 8192 Store buckets
    2005/02/15 13:51:46| Max Mem size: 65536 KB
    2005/02/15 13:51:46| Max Swap size: 102400 KB
    2005/02/15 13:51:46| Rebuilding storage in /var/lib/squid/cache (DIRTY)
    2005/02/15 13:51:46| Using Least Load store dir selection
    2005/02/15 13:51:46| Set Current Directory to /usr/local/squid/var/cache
    2005/02/15 13:51:46| Loaded Icons.
    2005/02/15 13:51:46| Accepting HTTP connections at 10.0.1.0, port 3128, FD 11.
    2005/02/15 13:51:46| Accepting HTTP connections at 10.0.2.0, port 3128, FD 12.
    2005/02/15 13:51:46| Accepting ICP messages at 0.0.0.0, port 3130, FD 13.
    2005/02/15 13:51:46| WCCP Disabled.
    2005/02/15 13:51:46| Ready to serve requests.
    2005/02/15 13:51:47| Done scanning /var/lib/squid/cache swaplog (0 entries)
    2005/02/15 13:51:47| Finished rebuilding storage from disk.
    2005/02/15 13:51:47| 0 Entries scanned
    2005/02/15 13:51:47| 0 Invalid entries.
    2005/02/15 13:51:47| 0 With invalid flags.
    2005/02/15 13:51:47| 0 Objects loaded.
    2005/02/15 13:51:47| 0 Objects expired.
    2005/02/15 13:51:47| 0 Objects cancelled.
    2005/02/15 13:51:47| 0 Duplicate URLs purged.
    2005/02/15 13:51:47| 0 Swapfile clashes avoided.
    2005/02/15 13:51:47| Took 0.6 seconds ( 0.0 objects/sec).
    2005/02/15 13:51:47| Beginning Validation Procedure
    2005/02/15 13:51:47| Completed Validation Procedure
    2005/02/15 13:51:47| Validated 0 Entries
    2005/02/15 13:51:47| store_swap_size = 0k
    2005/02/15 13:51:47| storeLateRelease: released 0 objects
    2005/02/15 13:53:17| Preparing for shutdown after 0 requests
    2005/02/15 13:53:17| Waiting 30 seconds for active connections to finish
    2005/02/15 13:53:17| FD 11 Closing HTTP connection
    2005/02/15 13:53:17| FD 12 Closing HTTP connection
    2005/02/15 13:53:18| Shutting down...
    2005/02/15 13:53:18| FD 13 Closing ICP connection
    2005/02/15 13:53:18| Closing unlinkd pipe on FD 10
    2005/02/15 13:53:18| storeDirWriteCleanLogs: Starting...
    2005/02/15 13:53:18| Finished. Wrote 0 entries.
    2005/02/15 13:53:18| Took 0.0 seconds ( 0.0 entries/sec).
    CPU Usage: 0.280 seconds = 0.080 user + 0.200 sys
    Maximum Resident Size: 0 KB
    Page faults with physical i/o: 356
    Memory usage for squid via mallinfo():
    total space in arena: 2006 KB
    Ordinary blocks: 1986 KB 7 blks
    Small blocks: 0 KB 0 blks
    Holding blocks: 192 KB 1 blks
    Free Small blocks: 0 KB
    Free Ordinary blocks: 19 KB
    Total in use: 2178 KB 109%
    Total free: 19 KB 1%

    sera que tem alguma a coisa a ver com o dns ?
    Chain PREROUTING (policy ACCEPT)
    target prot opt source destination

    Chain POSTROUTING (policy ACCEPT)
    target prot opt source destination
    MASQUERADE all -- 10.0.1.2 anywhere
    MASQUERADE all -- 10.0.2.2 anywhere

    Chain OUTPUT (policy ACCEPT)
    target prot opt source destination

    valeu cara desculpe incomodar tanto mas ja li bastante e nao to enchergando meu erro.



  3. #8
    epf
    posta o teu firewall aqui se tiver como..


    uma otura pergunta: No modo de proxy normal, sem o redireciomento, o squid esta funcionando corretamente?

    abracos
    epf

  4. #9
    #!/bin/sh

    # Limpar Regras
    iptables -F
    iptables -F -t nat

    #Arquivo de Regras do Firewall
    iptables -P FORWARD DROP

    iptables -t nat -A POSTROUTING -s 10.0.1.2 -j MASQUERADE
    iptables -t nat -A POSTROUTING -s 10.0.2.2 -j MASQUERADE

    #porta bloq
    iptables -I FORWARD -j DROP -p udp --dport 119
    iptables -I FORWARD -j DROP -p udp --sport 119
    iptables -I FORWARD -j DROP -p udp --dport 137
    iptables -I FORWARD -j DROP -p udp --sport 137
    iptables -I FORWARD -j DROP -p udp --dport 138
    iptables -I FORWARD -j DROP -p udp --sport 138
    iptables -I FORWARD -j DROP -p tcp --dport 139
    iptables -I FORWARD -j DROP -p tcp --sport 139
    iptables -I FORWARD -j DROP -p tcp --dport 119
    iptables -I FORWARD -j DROP -p tcp --sport 119
    iptables -I FORWARD -j DROP -p tcp --dport 137
    iptables -I FORWARD -j DROP -p tcp --sport 137
    iptables -I FORWARD -j DROP -p tcp --dport 138
    iptables -I FORWARD -j DROP -p tcp --sport 138
    iptables -I FORWARD -j DROP -p udp --dport 139
    iptables -I FORWARD -j DROP -p udp --sport 139
    iptables -I FORWARD -j DROP -p udp --dport 145
    iptables -I FORWARD -j DROP -p udp --sport 145
    iptables -I FORWARD -j DROP -p udp --dport 145
    iptables -I FORWARD -j DROP -p udp --sport 145
    iptables -I FORWARD -j DROP -p udp --dport 445
    iptables -I FORWARD -j DROP -p udp --sport 445
    iptables -I FORWARD -j DROP -p tcp --dport 445
    iptables -I FORWARD -j DROP -p tcp --sport 445
    iptables -A FORWARD -s 10.0.1.2 -j ACCEPT
    iptables -A FORWARD -d 10.0.1.2 -j ACCEPT

    iptables -A FORWARD -s 10.0.2.2 -j ACCEPT
    iptables -A FORWARD -d 10.0.2.2 -j ACCEPT


    é so isso de regras que eu tenho
    e no modo normal nao testei, vou testar depois posto. ai eu tenho que configurar no navegador neh ?



  5. #10
    nao , nao no modo normal tb nao funfa.






Tópicos Similares

  1. Por Favor Analisem meu Squid.conf
    Por lordsnc no fórum Servidores de Rede
    Respostas: 1
    Último Post: 13-02-2009, 04:11
  2. Alguem podeira ver meu squid.conf por favor...
    Por fisiconuclear18 no fórum Servidores de Rede
    Respostas: 13
    Último Post: 28-12-2005, 16:25
  3. IPTables bloqueia meu squid
    Por edilson no fórum Servidores de Rede
    Respostas: 5
    Último Post: 03-02-2003, 07:56
  4. VERIFICANDO O ARQUIVO SQUID.CONF
    Por no fórum Servidores de Rede
    Respostas: 1
    Último Post: 11-10-2002, 19:59
  5. Meu squid barra o que não deve!!!
    Por NoiseMaster no fórum Servidores de Rede
    Respostas: 2
    Último Post: 27-09-2002, 08:59

Visite: BR-Linux ·  VivaOLinux ·  Dicas-L