Andi Hari writes:
>
> I don't know what happens with me,the configuration still not
> working. I've changed the configuration of my squidguard.conf. may
> be there is a mistake in my squid.conf
>
> FYI i'm using suse linux 8.1 professional edition. when i installed
> this machine everything are there. squid, squidguard etc.
> i just configured squid.conf and squidguard.conf
You should be able to answer "yes" to all of the following questions:
Did you configure your browser to tell it to use squid?
Open your browser and go to any (external) site, then look at
'tail /var/log/squid/access.log'
Is your transaction there? Does it list your ip on it?
Browse to a site contained in blacklist/domains. Are you redirected?
Look in /var/squidGuard/logs/blocked.log. Do you see a log entry
showing that you were redirected?
Let me know how this comes out.
Rick
>
> There is no error message in my squidguard.log
> here is my squidguard.log
>
> proxy1:/etc/squid # tail -f /var/squidGuard/logs/squidGuard.log
> 2003-03-23 09:49:35 [17973] squidGuard 1.2.0 started (1048402175.133)
> 2003-03-23 09:49:35 [17973] squidGuard ready for requests (1048402175.181)
> 2003-03-23 09:49:35 [17972] init iplist /var/squidGuard/oke
> 2003-03-23 09:49:35 [17972] init iplist /var/squidGuard/no
> 2003-03-23 09:49:35 [17972] init domainlist /var/squidGuard/db/blacklist/domains
> 2003-03-23 09:49:35 [17971] squidGuard 1.2.0 started (1048402175.099)
> 2003-03-23 09:49:35 [17971] squidGuard ready for requests (1048402175.215)
> 2003-03-23 09:49:35 [17972] init urllist /var/squidGuard/db/blacklist/urls
> 2003-03-23 09:49:35 [17972] squidGuard 1.2.0 started (1048402175.186)
> 2003-03-23 09:49:35 [17972] squidGuard ready for requests (1048402175.249)
>
> here is the permissions of squid guard and squid.conf
>
> proxy:/etc/squid # ls -la /etc/squid/squid.conf
> -rw-r--r-- 1 root root 2454 2003-03-23 09:49 /etc/squid/squid.conf
> proxy:/etc/squid # ls -la /var/squidGuard/
> total 8
> drwx------ 4 squid root 144 2003-03-22 21:03 .
> drwxr-xr-x 19 root root 464 2003-03-15 20:47 ..
> drwx------ 3 squid root 80 2003-03-15 20:47 db
> drwx------ 2 squid root 112 2003-03-23 09:11 logs
> -rwxr-xr-x 1 squid root 27 2003-03-22 21:03 no
> -rwxr-xr-x 1 squid root 94 2003-03-22 20:14 oke
>
> proxy:/etc/squid # ls -la /var/squidGuard/db/
> total 0
> drwx------ 3 squid root 80 2003-03-15 20:47 .
> drwx------ 4 squid root 144 2003-03-22 21:03 ..
> drwxr-xr-x 2 squid root 128 2003-03-15 20:47 blacklist
> proxy:/etc/squid # ls -la /var/squidGuard/logs/
> total 124
> drwx------ 2 squid root 112 2003-03-23 09:11 .
> drwx------ 4 squid root 144 2003-03-22 21:03 ..
> -rw-r--r-- 1 squid squid 6689 2003-03-23 10:27 blocked.log
> -rw-r--r-- 1 squid root 117258 2003-03-23 09:49 squidGuard.log
>
> proxy:/etc/squid # ls -la /etc/squidguard.conf
> -rw-r--r-- 1 root root 517 2003-03-23 /etc/squidguard.conf
>
>
> This is my squid.conf
>
> proxy:/etc/squid # more squid.conf
> http_port 3128
> icp_port 3130
> cache_peer x.x.x.x parent 3128 0
> cache_peer x.x.x.x sibling 3128 0
> cache_peer x.x.x.x sibling 8080 0
> icp_query_timeout 50
> maximum_icp_query_timeout 1800
> mcast_icp_query_timeout 1800
> dead_peer_timeout 30 seconds
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
> cache_mem 32 MB
> cache_swap_low 90
> cache_swap_high 95
> maximum_object_size 4096 KB
> minimum_object_size 0 KB
> maximum_object_size_in_memory 8 KB
> ipcache_size 1024
> ipcache_low 90
> ipcache_high 95
> fqdncache_size 1024
> cache_replacement_policy lru
> memory_replacement_policy lru
> cache_dir ufs /data/cache 1200 256 256
> cache_access_log /data/logs/access.log
> cache_log /data/logs/cache.log
> cache_store_log /data/logs/store.log
> emulate_httpd_log off
> log_ip_on_direct on
> #mime_table /usr/local/squid/etc/mime.conf
> log_mime_hdrs off
> pid_filename /data/logs/squid.pid
> #dns_nameservers x.x.x.x
> redirect_children 5
> reference_age 1 week
> quick_abort_min 16 KB
> quick_abort_max 16 KB
> quick_abort_pct 95
> negative_ttl 5 minutes
> positive_dns_ttl 6 hours
> negative_dns_ttl 5 minutes
> range_offset_limit 0 KB
> connect_timeout 2 minutes
> peer_connect_timeout 30 seconds
> siteselect_timeout 10 seconds
> read_timeout 15 minutes
> request_timeout 45 seconds
> client_lifetime 1 day
> half_closed_clients off
> pconn_timeout 120 seconds
> ident_timeout 10 seconds
> shutdown_lifetime 30 seconds
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> #never_direct allow all
> #acl top_management src "/home/squid/pertama"
> #http_access allow top_management
> redirect_program /usr/bin/squidGuard -c /etc/squidguard.conf
> #http_access deny all
> http_access allow all
> http_access allow manager localhost
> http_access deny manager
> #http_access deny !Safe_ports
> icp_access allow all
> cache_mgr [EMAIL PROTECTED]
> cache_effective_user squid
> cache_effective_group squid
> visible_hostname proxy.altuwairqi.com.sa
> unique_hostname proxy.altuwairqi.com.sa
> query_icmp off
>
>
> mysquidguard.conf
>
> proxy:/etc/squid # more /etc/squidguard.conf
> logdir /var/squidGuard/logs
> dbhome /var/squidGuard/db
>
> src free {
> iplist /var/squidGuard/oke
> }
>
> src minute {
> iplist /var/squidGuard/no
> userquota 180 60 daily
> }
>
> dest blacklist {
> domainlist blacklist/domains
> urllist blacklist/urls
> redirect http://www.altuwairqi.com.sa
> log blocked.log
> }
>
> acl {
> free {
> pass !blacklist all
> }
>
> minute {
> pass !blacklist all
> }
>
> default {
> pass none
> redirect http://www.altuwairqi.com.sa
> log blocked.log
> }
> }
>
>
> In mysquid guard conf, i put userquota 180 60 daily , that means user only can
> browse for 3 minutes or 180 seconds. i put
> my ip in /var/squidGuard/no . Unfortunately after 5 minutes i still can browse to
> any site.
>
> So help me to fix this problem
> thanks before
>
>
> andihari
>
