[squid-users] Dub with access.log rotation ...
Hi, I installed squid on a Debian box. Everithing is working well, but I have a issue that I can't solve. The access.log log file always close an open new one at 6 A.M. I try to change that with the squid -k rotate option, including in the crontab file this line: 0 0 * * * /usr/sbin/squid -k rotate but this configuration close the file at 00 AM and 6 AM too. ¿What can i do to force the rotation only to 0 AM? (but not to 6 AM) Thanks a lot ... Kind regards !! Ramiro
[squid-users] Bad performance ...
Hi !!! I installed squid on a Debian box, with 1Gb of RAM, 160 Gb of disk and AMD Optreon Dual Core, in transparent mode. I configured a cache of 100Gb on disk with aufs. The squid works fine most of the time, but at some specific moment of the day (for example at 6 am) the TCP transfer duration growth from 5 seconds (this is the average) to 30 seconds aproximately. I think that it's something related with te box, not the squid or the traffic, because this situation occurs for a little period of time, when the traffic is high and sometimes, when the traffic is low too. Do you think If I change de cache_dir method to diskd o coss, I will have better performance? Any Help? Thanks a lot !!! Kind regards. Ramiro
[squid-users] Configuration problem ...
Hi ! I configured a squid 2.6 in a debian box (1Gb ram and 120Gb of disk) When I send a http request to a file bigger than 200kb (my maximum_object_size is 4194304 bytes and my maximum_object_size_in_memory 204800 bytes), the squid answers with a TCP_MISS and It doesn't save the file into the cache. The size of the file is 210133 bytes. In addition to this, when I send a http request from the same file, with different extensions (one with .jpg and other with .gif) the squid responds in diferent ways. When I sent the .jpg file request, I receive a "X-Cache" and "X-Cache-Lookup" MISS. When I sent the .gif file request, I receive a "X-Cache" MISS and "X-Cache-Lookup" HIT. The follow example shows this issue: JPG: --- Sent --- GET /prueba/imagen2.jpg HTTP/1.0 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) Host: www.dellog.com.ar Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */* Accept-Language: en-us Connection: Keep-Alive --- Receive --- HTTP/1.0 200 OK Date: Tue, 15 Apr 2008 00:29:26 GMT Server: Apache/2.2.8 (Win32) PHP/5.2.5 Last-Modified: Mon, 14 Apr 2008 23:03:34 GMT ETag: "a6202-334d5-44add4b112197" Accept-Ranges: bytes Content-Length: 210133 Content-Type: image/jpeg X-Cache: MISS from ProxyServer.ProxyServer.net X-Cache-Lookup: MISS from ProxyServer.ProxyServer.net:3128 Via: 1.0 ProxyServer.ProxyServer.net:3128 (squid/2.6.STABLE5) Connection: keep-alive GIF: --- Sent --- GET /prueba/imagen2.gif HTTP/1.0 User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1) Host: www.dellog.com.ar Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, */* Accept-Language: en-us Connection: Keep-Alive --- --- Receive --- HTTP/1.0 200 OK Date: Tue, 15 Apr 2008 00:16:26 GMT Server: Apache/2.2.8 (Win32) PHP/5.2.5 Last-Modified: Mon, 14 Apr 2008 23:03:34 GMT ETag: "1196f5-334d5-44add4b112197" Accept-Ranges: bytes Content-Length: 210133 Content-Type: image/gif X-Cache: MISS from ProxyServer.ProxyServer.net X-Cache-Lookup: HIT from ProxyServer.ProxyServer.net:3128 Via: 1.0 ProxyServer.ProxyServer.net:3128 (squid/2.6.STABLE5) Connection: keep-alive could you check my squid.conf configuration file, in order to detect some configuration mistakes? I would thanks your help. Thanks a lot Ramiro http_port 0.0.0.0:3128 transparent icp_port 3130 htcp_port 0 udp_incoming_address 0.0.0.0 udp_outgoing_address 255.255.255.255 icp_query_timeout 0 maximum_icp_query_timeout 2000 mcast_icp_query_timeout 2000 dead_peer_timeout 10 seconds hierarchy_stoplist cgi-bin hierarchy_stoplist ? cache Deny QUERY cache Deny exepciones cache_vary on broken_vary_encoding Allow apache cache_mem 268435456 bytes cache_swap_low 90 cache_swap_high 95 maximum_object_size 4194304 bytes minimum_object_size 0 bytes maximum_object_size_in_memory 204800 bytes ipcache_size 2048 ipcache_low 90 ipcache_high 95 fqdncache_size 2048 cache_replacement_policy heap LFUDA memory_replacement_policy lru cache_dir diskd /var/spool/squid 102400 16 256 Q1=64 Q2=72 access_log /var/log/squid/access.log squid cache_log /var/log/squid/cache.log cache_store_log /var/log/squid/store.log emulate_httpd_log off log_ip_on_direct on mime_table /usr/share/squid/mime.conf log_mime_hdrs off pid_filename /var/run/squid.pid debug_options ALL,1 log_fqdn off client_netmask 255.255.255.255 ftp_user Squid@ ftp_list_width 32 ftp_passive on ftp_sanitycheck on ftp_telnet_protocol on check_hostnames on allow_underscore on dns_retransmit_interval 5 seconds dns_timeout 120 seconds dns_defnames off dns_nameservers 200.45.191.35 dns_nameservers 200.45.191.40 hosts_file /etc/hosts diskd_program /usr/lib/squid/diskd-daemon unlinkd_program /usr/lib/squid/unlinkd url_rewrite_children 5 url_rewrite_concurrency 0 url_rewrite_host_header on location_rewrite_children 5 location_rewrite_concurrency 0 authenticate_cache_garbage_interval 3600 seconds authenticate_ttl 3600 seconds authenticate_ip_ttl 0 seconds wais_relay_port 0 request_header_max_size 20480 bytes request_body_max_size 0 bytes refresh_pattern ^ftp: 1440 20% 10080 refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern . 0 20% 4320 quick_abort_min 0 KB quick_abort_max 0 KB quick_abort_pct 95 read_ahead_gap 16384 bytes negative_ttl 300 seconds positive_dns_ttl 21600 seconds negative_dns_ttl 60 seconds range_offset_limit 0 bytes collapsed_forwarding off refresh_stale_hit 0 seconds forward_timeout 240 seconds connect_timeout 60 seconds peer_connect_timeout 30 seconds read_timeout 900 seconds request_timeout 300 seconds persistent_request_timeout 60 seconds client_lifetime 86400 seconds half_closed_clients off pconn_timeout 120 seconds ident_timeout 10 seconds shutdown_lifetime 30 seconds acl QUERY urlpath_regex cgi-bin acl QUERY urlpath_reg
[squid-users] Dub about how to work squid ...
Hi !!! I installed squid on a Debian box, with 1Gb of RAM, 160 Gb of disk and AMD Optreon Dual Core, in transparent mode. I configured a cache of 100Gb on disk with aufs. I was making some testing in my private network, and I couldn't understand how the squid worked. I have this configuration: maximum_object_size 5120 bytes minimum_object_size 0 bytes maximum_object_size_in_memory 204800 bytess When I send a HTTP requeriment for an object, for example of 1Kb, the object is saved by the squid "IN MEMORY" and the following requeriments from the same object, the squid answers with a "HIT" (This is ok) For the other side, when I send a request for an object bigger than 200Kb, it always resolves in "DIRECT" way and the following requeriments from the same object, the squid answer with a "MISS". The squid doesn't save this object on the disk cache, It's ok? May be I have a configuration problem. Any Help? Thanks a lot !!! Ramiro
[squid-users] Low performance in tranfers duration
Hi !!! I installed squid 3 stable on a Debian box, with 1Gb of RAM, 160 Gb of disk and AMD Optreon Dual Core, in transparent mode. The squid box have only one nework card and public IP. I have a Mikrotik router-box, and in this machine I have configured to send al http request (port 80) to port 3128 of my squid box. Everything seams work find, but sometimes I have very low performance in tranfers duration. I note in the cache.log that I have a lot of warnings messages with "forwarding loops detected", is the only error or warning I found. I don't put any routing rules in my squid box. It's ok? May be I have a configuration problem. Any Help? Thanks a lot !!! Ramiro
[squid-users] Squid with two networks ...
Hi !!! I've installed a Squid box transparent mode (3STABLE7) with two network cards and I must to implement this scenario: - The network cards are connected at two diferents internal Class C network with public IP. - If the http requeriment asking about an object that is in the cache, the Squid give the object throught the same interface that the original requermients comes (I tink that this is not a problem, because de origin IP is in the same network that the squid have). - If the http requeriment asking about an object that isn't in the cache, the Squid go direct to public network trought the same interface that the original requermients comes (This is the problem). Are some configurations of squid.conf that allow me to do that? I think resolve te problem, externally form Squid (with iptables, for example) Thanks a lot !!! Regards !! Ramiro
[squid-users] Problems with google ...
Hi !!! I've installed a Squid box transparent mode (3STABLE7) with Debian. A router send all the request to the port 80 to my squid box on 3128 port. I've problems with google pages. Sometimes when somedy try to sail in google the result is a http://www.google.com.ar/sorry/?. This page say something like the ip origin maybe is a malicious source, like a virus or spyware. I put in my squid.conf exepcions to google: acl exepciones dstdomain "/usr/local/squid/etc/exepciones" always_direct allow exepciones and the exepciones file is as follws: .google.com .google.com.ar .gmail.com but nothing changes. Any idea? Is posible than a lot of requeriments with the same ip (the proxy ip) causes this behavior? The squid always send his own origin IP to the web? Thanks a lot !!! Regards !! Ramiro
[squid-users] Caching big files ...
Hi !!! I installed squid on a Debian box, with 1Gb of RAM, 160 Gb of disk and AMD Optreon Dual Core, in transparent mode. I configured a cache of 100Gb on disk with aufs. My max size of cache file configured is 50Mb. I note than the most visited site is the update sites (windows update, symantec update, etc) and this sites go direct always because download files bigger than 50Mb. Can I configure the squid to force to include in the cache this files? Thanks a lot !!! Ramiro
