Hi Tim / All,
Firstly, thank you all a lot for your assistance!
I am refering to a squidguard expressionlist loaded for each user when
he logs on.
I have paste some example lines from my squidguard.conf file, just to
give you an idea of how I am using it.
logdir /usr/local/squidGuard/log
dbhome /usr/local/squidGuard/db
dest maquina { expressionlist local/maquina }
#dest super_blacklist { expressionlist local/super_blacklist.txt }
#USERS
dest sjohn { expressionlist local/sjohn }
src ujohn { ip 192.168.8.100 }
dest sstar { expressionlist local/sstar }
src ustar { ip 192.168.8.101 }
#/USERS
acl {
ujohn { pass maquina !sjohn all redirect
http://192.168.8.1/cgi-bin/block.cgi?url=%u&ipaddr=%a&user=john.lennon }
ustar { pass maquina !sstar all redirect
http://192.168.8.1/cgi-bin/block.cgi?url=%u&ipaddr=%a&user=ringo.star }
default {
pass maquina none
redirect 302:http://192.168.8.1/redirect.html
}
}
The sources and destinations between the #USERS and #/USERS tags changes
dinamically. When an user logon, a new src and dest tags are added
inside this tags. And an acl line is added to inside de acl {}. Then,
after create the local/s[user] file and add this stuffs, I execute squid
-k reconfigure to re-process all of this.
But in my real situation, any destination expressionlist, haves at least
7000 URLs and I have something about 300 to 500 different sources
(users).
My machine is a Athlon XP 2800+ / 1Gb Ram running Linux 2.4.31 fully
updated..
One thing you and others guys told me, is to run squidGuard -c
MysquidGuard.conf -C expressionlist_file.
It returns:
[EMAIL PROTECTED] squid]# squidGuard -d -c ./squidguard.conf -C
local/maquina
2005-11-13 08:53:26 [20768] init expressionlist
/usr/local/squidGuard/db/local/maquina
2005-11-13 08:53:26 [20768] init expressionlist
/usr/local/squidGuard/db/local/sjohn
2005-11-13 08:53:26 [20768] init expressionlist
/usr/local/squidGuard/db/local/sstar
2005-11-13 08:53:26 [20768] squidGuard 1.2.0 started (1131879206.439)
2005-11-13 08:53:26 [20768] db update done
2005-11-13 08:53:26 [20768] squidGuard stopped (1131879206.440)
When all my users are logged on, I have serious problems in web
browsing. Because I am executing squid -k reconfigure constantly and
while the squidGuard is re-processing the rules, my users browsing
brokes...
Do you have any suggestion?
Thanks a lot you all!
Fernando.
Em Qui, 2005-11-10 às 18:32, [EMAIL PROTECTED] escreveu:
> Wait a minute.
>
> In reference to "I'm using an ACL file with about 7000 URL redirector /
> filter."
> What do you mean? Do you mean you have a URL file that squidguard loads
> 7000 urls?
> Or are you using squid acl's to block access to specific URLs?
>
> If the latter is the case, that is your performance issue, right there.
> :-) If not....
>
> Something is going horribly wrong. First of all, where ever possible, use
> the domain
> filters to block sites. There really aren't all that many situations
> where a URL block is necessary.
> The reason I bring that up is that you could require 100+ urls just to
> block specific pages on websites.
> Analyse the real need in accessing the entire site and consider blocking
> the domain ( 1 block, as opposed to 100+ blocks)
>
> Your lag time in the squid -k reconfigure process can be blamed a ton of
> different things.
>
> How much memory do you have? How many TOTAL url/domain blocks are there?
> How many redirect children are you using?
>
> etc.
>
> Tim Rainier
> Information Services, Kalsec, INC
> [EMAIL PROTECTED]
>
>
>
> David Bronson <[EMAIL PROTECTED]>
> Sent by: [EMAIL PROTECTED]
> 11/10/2005 02:04 PM
>
> To
> Fernando Giorgetti <[EMAIL PROTECTED]>
> cc
> [email protected]
> Subject
> Re: Tuning SquidGuard / Other choices
>
>
>
>
>
>
> I have a similar machines serving 800 to 1000 workstations without a
> problem. These are used by several thousand users with 100k urls in
> several blacklists.
>
>
> The additional redirect children aren't helping you (according
> to the documentation). I execute a squid -k reconfigure in the middle of
> the day and it goes unnoticed generally.
>
> Reduce the redirect children to 1 and re-evaluate the performance.
>
> Good Luck,
>
> David Bronson
>
> On Thu, Nov 10, 2005 at 08:46:50AM -0200, Fernando Giorgetti wrote:
> > Hi all!
> >
> > Currently I am using squidGuard as my URL redirector / filter.
> >
> > I am using an ACL file with about 7000 URLs for each user (I have
> > something about 300 users).
> >
> > SquidGuard is running on an Athlon XP 2.0 Ghz with 1GB. My squid is
> > configured to start 10 redirect_child.
> >
> > The ACLs URLs files changes constantly. And, after each change, I need
> > to execute "squid -k reconfigure" to re-process them.
> >
> > By this way, my machine resources use is completely overloaded. And I am
> > searching, urgently, for a solution.
> >
> > Do anynone here haves a cenary likes mine?
> >
> > Could anybody tell me if squidGuard is deprecated, or if I can find a
> > better choice to squidGuard or a better way to use it?
> >
> > Thanks!
> >
> > Fernando
> >
> >
