Re: [squid-users] help change cache dir
Hello Juancho, Also check the SeLinux permissions. Best regards, Rafael Akchurin Diladele B.V. -- Please take a look at Web Safety - our ICAP based web filter server for Squid proxy. From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf Of Yuri Voinov Sent: Thursday, December 10, 2015 9:36 PM To: squid-users@lists.squid-cache.org Subject: Re: [squid-users] help change cache dir -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 chmod is about nothing. Who's the owner of cache dir? 11.12.15 2:27, juancho Alfonso пишет: > Hey thereI have installed CentOS squid in 7I want to change the cache directory > appears when I try to initialize > Creating Swap Directories > FATAL: Failed to make directory swap mydirectory / cache / 00: > (13) Permission denied > directory is an external drive or a folder on the same partitionand I granted permissions > chmod 777 cacheorchmod cache squid.squid > no worksI need help to put more capacity more directories > > > > the squid.conf > ## Recommended minimum configuration:# > # Example rule allowing access from your local networks.# Adapt to list your (internal) IP networks from where browsing# should be allowedacl localnet src 10.0.0.0/8 # RFC1918 possible internal networkacl localnet src 172.16.0.0/12 # RFC1918 possible internal networkacl localnet src 192.168.0.0/16 # RFC1918 possible internal networkacl localnet src fc00::/7 # RFC 4193 local private network rangeacl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines > acl SSL_ports port 443acl Safe_ports port 80 # httpacl Safe_ports port 21 # ftpacl Safe_ports port 443 # httpsacl Safe_ports port 70 # gopheracl Safe_ports port 210 # waisacl Safe_ports port 1025-65535 # unregistered portsacl Safe_ports port 280 # http-mgmtacl Safe_ports port 488 # gss-httpacl Safe_ports port 591 # filemakeracl Safe_ports port 777 # multiling httpacl CONNECT method CONNECTacl PAGINASBLOQUEADAS url_regex -i porno abcde > ## Recommended minimum Access Permission configuration:## Deny requests to certain unsafe portshttp_access deny PAGINASBLOQUEADAS > # Deny CONNECT to other than secure SSL portshttp_access deny !Safe_ports > # Only allow cachemgr access from localhosthttp_access deny CONNECT !SSL_portshttp_access allow localhost manager > # We strongly recommend the following be uncommented to protect innocent# web applications running on the proxy server who think the only# one who can access services on "localhost" is a local user#http_access deny to_localhost > ## INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS# > # Example rule allowing access from your local networks.# Adapt localnet in the ACL section to list your (internal) IP networks# from where browsing should be allowedhttp_access allow managerhttp_access allow localnet > # And finally deny all other access to this proxyhttp_access allow localhosthttp_access allow all > # Squid normally listens to port 3128http_port 3128 transparent > # Uncomment and adjust the following to add a disk cache directory. > # Leave coredumps in the first cache dircoredump_dir /var/spool/squid > ## Add any of your own refresh_pattern entries above these.#refresh_pattern ^ftp:144020% 10080refresh_pattern ^gopher:14400%1440refresh_pattern -i (/cgi-bin/|\?) 00%0refresh_pattern .020% 4320 > > > #juancache_mem 16384 MB#cache_replacement_policy heap LFUDA #El parámetro maximum_object_size define el tamaño máximo de los objetos que serán almacenados en el cache de discomaximum_object_size 200 MBcache_swap_low 90cache_swap_high 95#correo del administrador del cachecache_mgr ingenieria@conexiondigital.cocachemgr_passwd<mailto:ingenieria@conexiondigital.cocachemgr_passwd> cache all > #this workcache_dir aufs /var/spool/squid 4 16 256 #this no workcache_dir aufs /var/spool/squid2 4 16 256 > cache_effective_user squidcache_effective_group squid > > > > Juan Ernesto Alfonsoestudiante ingeniería electrónicauniversidad distrital Francisco José de Caldas > JUANCHO > NEMESIS > KRAVEN > > " si un día tienes que elegir entre el mundo y el amor... > recuerda: > > si eliges el mundo quedarás sin amor, > > pero si eliges el amor, con él conquistarás al mundo" >
Re: [squid-users] help change cache dir
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Cache dir owner must be user which is specified in squid.conf: http://i.imgur.com/AbYkE8M.png 11.12.15 2:27, juancho Alfonso пишет: > Hey thereI have installed CentOS squid in 7I want to change the cache > directory > appears when I try to initialize > Creating Swap Directories > FATAL: Failed to make directory swap mydirectory / cache / 00: > (13) Permission denied > directory is an external drive or a folder on the same partitionand I granted permissions > chmod 777 cacheorchmod cache squid.squid > no worksI need help to put more capacity more directories > > > > the squid.conf > ## Recommended minimum configuration:# > # Example rule allowing access from your local networks.# Adapt to list your (internal) IP networks from where browsing# should be allowedacl localnet src 10.0.0.0/8 # RFC1918 possible internal networkacl localnet src 172.16.0.0/12 # RFC1918 possible internal networkacl localnet src 192.168.0.0/16 # RFC1918 possible internal networkacl localnet src fc00::/7 # RFC 4193 local private network rangeacl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines > acl SSL_ports port 443acl Safe_ports port 80 # httpacl Safe_ports port 21 # ftpacl Safe_ports port 443 # httpsacl Safe_ports port 70 # gopheracl Safe_ports port 210 # waisacl Safe_ports port 1025-65535 # unregistered portsacl Safe_ports port 280 # http-mgmtacl Safe_ports port 488 # gss-httpacl Safe_ports port 591 # filemakeracl Safe_ports port 777 # multiling httpacl CONNECT method CONNECTacl PAGINASBLOQUEADAS url_regex -i porno abcde > ## Recommended minimum Access Permission configuration:## Deny requests to certain unsafe portshttp_access deny PAGINASBLOQUEADAS > # Deny CONNECT to other than secure SSL portshttp_access deny !Safe_ports > # Only allow cachemgr access from localhosthttp_access deny CONNECT !SSL_portshttp_access allow localhost manager > # We strongly recommend the following be uncommented to protect innocent# web applications running on the proxy server who think the only# one who can access services on "localhost" is a local user#http_access deny to_localhost > ## INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS# > # Example rule allowing access from your local networks.# Adapt localnet in the ACL section to list your (internal) IP networks# from where browsing should be allowedhttp_access allow managerhttp_access allow localnet > # And finally deny all other access to this proxyhttp_access allow localhosthttp_access allow all > # Squid normally listens to port 3128http_port 3128 transparent > # Uncomment and adjust the following to add a disk cache directory. > # Leave coredumps in the first cache dircoredump_dir /var/spool/squid > ## Add any of your own refresh_pattern entries above these.#refresh_pattern ^ftp:144020%10080refresh_pattern ^gopher:14400%1440refresh_pattern -i (/cgi-bin/|\?) 0 0%0refresh_pattern .020%4320 > > > #juancache_mem 16384 MB#cache_replacement_policy heap LFUDA #El parámetro maximum_object_size define el tamaño máximo de los objetos que serán almacenados en el cache de discomaximum_object_size 200 MBcache_swap_low 90cache_swap_high 95#correo del administrador del cachecache_mgr ingenieria@conexiondigital.cocachemgr_passwd cache all > #this workcache_dir aufs /var/spool/squid 4 16 256 #this no workcache_dir aufs /var/spool/squid2 4 16 256 > cache_effective_user squidcache_effective_group squid > > > > Juan Ernesto Alfonsoestudiante ingeniería electrónicauniversidad distrital Francisco José de Caldas > JUANCHO > NEMESIS > KRAVEN > > " si un día tienes que elegir entre el mundo y el amor... > recuerda: > > si eliges el mundo quedarás sin amor, > > pero si eliges el amor, con él conquistarás al mundo" > > albert einstein > > > > > > > ___ > squid-users mailing list > squid-users@lists.squid-cache.org > http://lists.squid-cache.org/listinfo/squid-users -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJWaeLfAAoJENNXIZxhPexGV6wH/0dy5nyvKJBsB8cWnXpyU661 98aA96FF+8QlQW+dkAKyNJ/dNtjv/VyGbglqyDDoaqwq2+Uef3dZauwyIQcwoRxZ TVhUu47v+cX1F6Ka+JWxvw7hsIumoEvrXQQxdBoZUAqdXDRyvdK/VeraGyV1y2LD qYQB/vIV7u/PGgiyzE5vtZ/aHYnAsiLQxMD4a3SSvDnSNx9fklhRGyTljcNuVH5n NAXeXE3JD9+NW9rFY3/49TWNGJMNzH9v9RyQPG5uWkov/hAR1fXiRW7a/TD6pZ6V /gb54gbAQcdCMXwsly7XQTswoG6OKGLuLl6+mLbLz3hgBpDfZDNAQMpKM4npiSU= =ayi0 -END PGP SIGNATURE- ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
Re: [squid-users] help change cache dir
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 chmod is about nothing. Who's the owner of cache dir? 11.12.15 2:27, juancho Alfonso пишет: > Hey thereI have installed CentOS squid in 7I want to change the cache > directory > appears when I try to initialize > Creating Swap Directories > FATAL: Failed to make directory swap mydirectory / cache / 00: > (13) Permission denied > directory is an external drive or a folder on the same partitionand I granted permissions > chmod 777 cacheorchmod cache squid.squid > no worksI need help to put more capacity more directories > > > > the squid.conf > ## Recommended minimum configuration:# > # Example rule allowing access from your local networks.# Adapt to list your (internal) IP networks from where browsing# should be allowedacl localnet src 10.0.0.0/8 # RFC1918 possible internal networkacl localnet src 172.16.0.0/12 # RFC1918 possible internal networkacl localnet src 192.168.0.0/16 # RFC1918 possible internal networkacl localnet src fc00::/7 # RFC 4193 local private network rangeacl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines > acl SSL_ports port 443acl Safe_ports port 80 # httpacl Safe_ports port 21 # ftpacl Safe_ports port 443 # httpsacl Safe_ports port 70 # gopheracl Safe_ports port 210 # waisacl Safe_ports port 1025-65535 # unregistered portsacl Safe_ports port 280 # http-mgmtacl Safe_ports port 488 # gss-httpacl Safe_ports port 591 # filemakeracl Safe_ports port 777 # multiling httpacl CONNECT method CONNECTacl PAGINASBLOQUEADAS url_regex -i porno abcde > ## Recommended minimum Access Permission configuration:## Deny requests to certain unsafe portshttp_access deny PAGINASBLOQUEADAS > # Deny CONNECT to other than secure SSL portshttp_access deny !Safe_ports > # Only allow cachemgr access from localhosthttp_access deny CONNECT !SSL_portshttp_access allow localhost manager > # We strongly recommend the following be uncommented to protect innocent# web applications running on the proxy server who think the only# one who can access services on "localhost" is a local user#http_access deny to_localhost > ## INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS# > # Example rule allowing access from your local networks.# Adapt localnet in the ACL section to list your (internal) IP networks# from where browsing should be allowedhttp_access allow managerhttp_access allow localnet > # And finally deny all other access to this proxyhttp_access allow localhosthttp_access allow all > # Squid normally listens to port 3128http_port 3128 transparent > # Uncomment and adjust the following to add a disk cache directory. > # Leave coredumps in the first cache dircoredump_dir /var/spool/squid > ## Add any of your own refresh_pattern entries above these.#refresh_pattern ^ftp:144020%10080refresh_pattern ^gopher:14400%1440refresh_pattern -i (/cgi-bin/|\?) 0 0%0refresh_pattern .020%4320 > > > #juancache_mem 16384 MB#cache_replacement_policy heap LFUDA #El parámetro maximum_object_size define el tamaño máximo de los objetos que serán almacenados en el cache de discomaximum_object_size 200 MBcache_swap_low 90cache_swap_high 95#correo del administrador del cachecache_mgr ingenieria@conexiondigital.cocachemgr_passwd cache all > #this workcache_dir aufs /var/spool/squid 4 16 256 #this no workcache_dir aufs /var/spool/squid2 4 16 256 > cache_effective_user squidcache_effective_group squid > > > > Juan Ernesto Alfonsoestudiante ingeniería electrónicauniversidad distrital Francisco José de Caldas > JUANCHO > NEMESIS > KRAVEN > > " si un día tienes que elegir entre el mundo y el amor... > recuerda: > > si eliges el mundo quedarás sin amor, > > pero si eliges el amor, con él conquistarás al mundo" > > albert einstein > > > > > > > ___ > squid-users mailing list > squid-users@lists.squid-cache.org > http://lists.squid-cache.org/listinfo/squid-users -BEGIN PGP SIGNATURE- Version: GnuPG v2 iQEcBAEBCAAGBQJWaeJHAAoJENNXIZxhPexG2u8H+gM/L1RdvwGHP6UiKbWPM3Fr mU5Lt3V0iD6vLP7Wupn/oHyNNIhji39nkBLWPMs9SApodE0nOeirSD/M04TMfWMr 94HSDqnez+hOzlAZnCRxeI86eAu7w1ndY1SCfSJdXWHDkyY4sf7rvBczJigCP2Sm +qX/4SHap32X5EoAwVWPk+lmyQ7MSma3x8OtzNUEqXfpX9EXMretXQ0yQ+B+egy+ 9jvN5w+E8tKm1fV05rgT7B+QRNEG5jqnTI2hULX+xnJAbTcJZI/XR8AG2VmOvqjA GErvrH6qqGpqW49IVEBY4Jm2qenThUbA2AOXq5d7bvybJP0oAJC1ap9pcc6gvyE= =d1y4 -END PGP SIGNATURE- ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
[squid-users] help change cache dir
Hey thereI have installed CentOS squid in 7I want to change the cache directory appears when I try to initialize Creating Swap Directories FATAL: Failed to make directory swap mydirectory / cache / 00: (13) Permission denied directory is an external drive or a folder on the same partitionand I granted permissions chmod 777 cacheorchmod cache squid.squid no worksI need help to put more capacity more directories the squid.conf ## Recommended minimum configuration:# # Example rule allowing access from your local networks.# Adapt to list your (internal) IP networks from where browsing# should be allowedacl localnet src 10.0.0.0/8 # RFC1918 possible internal networkacl localnet src 172.16.0.0/12 # RFC1918 possible internal networkacl localnet src 192.168.0.0/16 # RFC1918 possible internal networkacl localnet src fc00::/7 # RFC 4193 local private network rangeacl localnet src fe80::/10 # RFC 4291 link-local (directly plugged) machines acl SSL_ports port 443acl Safe_ports port 80 # httpacl Safe_ports port 21 # ftpacl Safe_ports port 443 # httpsacl Safe_ports port 70 # gopheracl Safe_ports port 210 # waisacl Safe_ports port 1025-65535 # unregistered portsacl Safe_ports port 280 # http-mgmtacl Safe_ports port 488 # gss-httpacl Safe_ports port 591 # filemakeracl Safe_ports port 777 # multiling httpacl CONNECT method CONNECTacl PAGINASBLOQUEADAS url_regex -i porno abcde ## Recommended minimum Access Permission configuration:## Deny requests to certain unsafe portshttp_access deny PAGINASBLOQUEADAS # Deny CONNECT to other than secure SSL portshttp_access deny !Safe_ports # Only allow cachemgr access from localhosthttp_access deny CONNECT !SSL_portshttp_access allow localhost manager # We strongly recommend the following be uncommented to protect innocent# web applications running on the proxy server who think the only# one who can access services on "localhost" is a local user#http_access deny to_localhost ## INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS# # Example rule allowing access from your local networks.# Adapt localnet in the ACL section to list your (internal) IP networks# from where browsing should be allowedhttp_access allow managerhttp_access allow localnet # And finally deny all other access to this proxyhttp_access allow localhosthttp_access allow all # Squid normally listens to port 3128http_port 3128 transparent # Uncomment and adjust the following to add a disk cache directory. # Leave coredumps in the first cache dircoredump_dir /var/spool/squid ## Add any of your own refresh_pattern entries above these.#refresh_pattern ^ftp: 144020% 10080refresh_pattern ^gopher: 14400% 1440refresh_pattern -i (/cgi-bin/|\?) 0 0% 0refresh_pattern . 0 20% 4320 #juancache_mem 16384 MB#cache_replacement_policy heap LFUDA #El parámetro maximum_object_size define el tamaño máximo de los objetos que serán almacenados en el cache de discomaximum_object_size 200 MBcache_swap_low 90cache_swap_high 95#correo del administrador del cachecache_mgr ingenieria@conexiondigital.cocachemgr_passwd cache all #this workcache_dir aufs /var/spool/squid 4 16 256 #this no workcache_dir aufs /var/spool/squid2 4 16 256 cache_effective_user squidcache_effective_group squid Juan Ernesto Alfonsoestudiante ingeniería electrónicauniversidad distrital Francisco José de Caldas JUANCHO NEMESIS KRAVEN " si un día tienes que elegir entre el mundo y el amor... recuerda: si eliges el mundo quedarás sin amor, pero si eliges el amor, con él conquistarás al mundo" albert einstein ___ squid-users mailing list squid-users@lists.squid-cache.org http://lists.squid-cache.org/listinfo/squid-users
