Mohon diartikan….hasil dari konfigurasi lusca

victor_manado

tail -f /var/squid/log/cache.log

2010/04/05 05:46:58| Accepting proxy HTTP connections at 192.168.100.1, port 3128, FD 18.
2010/04/05 05:46:58| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 19.
2010/04/05 05:46:58| Accepting SNMP messages on port 3401, FD 20.
2010/04/05 05:46:58| AUFS: /var/squid/cache: log '/var/squid/cache/swap.state' opened on FD 21
2010/04/05 05:46:58| Loaded Icons.
2010/04/05 05:46:58| Ready to serve requests.
2010/04/05 05:47:37| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'
2010/04/05 05:52:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'config'
2010/04/05 05:52:48| CACHEMGR: <unknown>@127.0.0.1 requesting 'storedir'
2010/04/05 05:55:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'</unknown></unknown></unknown></unknown>

dan

tail -f /var/squid/log/access.log

1270393615.282 15 192.168.100.245 TCP_MISS/200 12440 GET http://safebrowsing-cache.google.com/safebrowsing/rd/ChNnb29nLW1hbHdhcmUtc2hhdmFyEAAYlpkBIJqZATIFlkwAAB8 - DIRECT/74.125.166.35 application/vnd.google.safebrowsing-chunk
1270393615.403 5 192.168.100.245 TCP_MISS/200 792 GET http://safebrowsing-cache.google.com/safebrowsing/rd/ChFnb29nLXBoaXNoLXNoYXZhchAAGO_LBSDzywUyBe9lAQAf - DIRECT/74.125.166.35 application/vnd.google.safebrowsing-chunk
1270393615.582 5 192.168.100.245 TCP_MISS/200 618 GET http://safebrowsing-cache.google.com/safebrowsing/rd/ChFnb29nLXBoaXNoLXNoYXZhchAAGPTLBSD4ywUqBfZlAQAHMgX0ZQEAAw - DIRECT/74.125.166.35 application/vnd.google.safebrowsing-chunk
1270393662.356 1 127.0.0.1 TCP_DENIED/504 3218 GET http://www.sumotracker.com/announce? - NONE/- text/html
1270393662.358 7 127.0.0.1 TCP_MISS/504 3315 GET http://www.sumotracker.com/announce? - DIRECT/127.0.0.1 text/html
1270393662.359 144 192.168.100.245 TCP_MISS/504 3412 GET http://www.sumotracker.com/announce? - DIRECT/127.0.0.1 text/html
1270446457.848 46 127.0.0.1 TCP_MISS/200 2407 GET cache_object://localhost/info - NONE/- text/plain
1270446738.715 4 127.0.0.1 TCP_MISS/200 16303 GET cache_object://localhost/config - NONE/- text/plain
1270446768.741 1 127.0.0.1 TCP_MISS/200 906 GET cache_object://localhost/storedir - NONE/- text/plain
1270446918.896 2 127.0.0.1 TCP_MISS/200 2412 GET cache_object://localhost/info - NONE/- text/plain

dan

squidclient mgr:info |less

HTTP/1.0 200 OK
Server: Lusca/LUSCA_HEAD r14499 patched by chudy r11
Date: Mon, 05 Apr 2010 06:05:21 GMT
Content-Type: text/plain
Expires: Mon, 05 Apr 2010 06:05:21 GMT
X-Cache: MISS from localhost
Via: 1.0 localhost:3128 (Lusca/LUSCA_HEAD r14499 patched by chudy r11)
Connection: close

Squid Object Cache: Version LUSCA_HEAD r14499 patched by chudy r11
Start Time: Mon, 05 Apr 2010 05:46:54 GMT
Current Time: Mon, 05 Apr 2010 06:05:21 GMT
Connection information for squid:
Number of clients accessing cache: 0
Number of HTTP requests received: 4
Number of ICP messages received: 0
Number of ICP messages sent: 0
Number of queued ICP replies: 0
Request failure ratio: 0.00
Average HTTP requests per minute since start: 0.2
Average ICP messages per minute since start: 0.0
Select loop called: 3752 times, 294.994 ms avg
Cache information for squid:
Request Hit Ratios: 5min: 0.0%, 60min: 0.0%
Byte Hit Ratios: 5min: -0.0%, 60min: 100.0%
Request Memory Hit Ratios: 5min: 0.0%, 60min: 0.0%
Request Disk Hit Ratios: 5min: 0.0%, 60min: 0.0%
Storage Swap size: 1576 KB
Storage Mem size: 104 KB
Mean Object Size: 10.72 KB
Requests given to unlinkd: 0
Median Service Times (seconds) 5 min 60 min:
HTTP Requests (All): 0.00000 0.00194
Cache Misses: 0.00000 0.00194
Cache Hits: 0.00000 0.00000
Near Hits: 0.00000 0.00000
Not-Modified Replies: 0.00000 0.00000
DNS Lookups: 0.00000 0.00000
ICP Queries: 0.00000 0.00000
Resource usage for squid:
UP Time: 1106.816 seconds
CPU Time: 0.500 seconds
CPU Usage: 0.05%
CPU Usage, 5 minute avg: 0.03%
CPU Usage, 60 minute avg: 0.05%
Process Data Segment Size via sbrk(): 0 KB
Maximum Resident Size: 6584 KB
Page faults with physical i/o: 4
Memory accounted for:
Total accounted: 161 KB
memPoolAlloc calls: 5825
memPoolFree calls: 4746
File descriptor usage for squid:
Maximum number of file descriptors: 14745
Largest file desc currently in use: 22
Number of file desc currently in use: 14
Files queued for open: 0
Available number of file descriptors: 14731
Reserved number of file descriptors: 100
Store Disk files open: 0
IO loop method: kqueue
Internal Data Structures:
173 StoreEntries
26 StoreEntries with MemObjects
25 Hot Object Cache Items
147 on-disk objects
(END)

apakah konfigurasi saya sudah benar???? pfsense 1.2.3 + lusca

ipoelnet

cache masih dikit OM ntar aja lihat hasilnya kalau udah cache banyak, kalau baru sih yach masih banyak MISS, soalnya squid musti ngumpulin file dulu dari inet. ;D

victor_manado

tail -f /var/squid/log/cache.log

2010/04/05 05:46:58| Accepting proxy HTTP connections at 192.168.100.1, port 3128, FD 18.
2010/04/05 05:46:58| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 19.
2010/04/05 05:46:58| Accepting SNMP messages on port 3401, FD 20.
2010/04/05 05:46:58| AUFS: /var/squid/cache: log '/var/squid/cache/swap.state' opened on FD 21
2010/04/05 05:46:58| Loaded Icons.
2010/04/05 05:46:58| Ready to serve requests.
2010/04/05 05:47:37| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'
2010/04/05 05:52:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'config'
2010/04/05 05:52:48| CACHEMGR: <unknown>@127.0.0.1 requesting 'storedir'
2010/04/05 05:55:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'</unknown></unknown></unknown></unknown>

yang baris bawah yg aku tak ngerti….heehe
<unknown.........>sebelumnya ketika menjalankan perintah
#squidclient mgr:info |less
hasilnya mengecewakan

squidclient mgr:info |less

client: ERROR: Cannot connect to localhost:3128: Connection refused

apa ada saran ?</unknown.........>

grage95

pls don be lazy (no offense),

squidclient -p port-squid cache_object://your-ip-squid-box/info

squidclient -p port-squid cache_object://your-ip-squid-box/menu

example :

squidclient -p 3128 cache_object://192.168.1.1/info

thread ini sudah di bahas sebelumnya.

victor_manado

wah…jalan buntu om...sudah saya cari thread seperti yg om bilang sebelumnya tapi tidak ketemu di forum indonesia...
yg ketemu hanya ini om :

download saja confignya disini http://shakau.googlepages.com/squid-config.tar.bz2 trs tar -jxvf squid-config.tar.bz2 obok2 tuh file2 conf disitu , sudah di test di produksi
isinya : rewrite.pl, storeurl.pl, tunning.conf, sysctl.conf, loader.conf dan squid.conf
kalau mau auto replace pake comman ini di putty :
Quote
fetch http://shakau.googlepages.com/squid-pfsense.sh
sh squid-pfsense.sh

trus edit di /usr/local/etc/squid/

atau lihat saja command di squid-pfsense.sh
ane udah coba config ini di pfsense1.2.2 stable dan pfsense 1.2. snapshot bisa jalan normal & baik di restart maupun di reboot bolak balik, saratnya cuma satu, utak atik di squid.conf aja, sesuaikan ip dan directory cache_dir, tentunya setelah mendisable interface web squid agar tidak menggenerate squid.conf tapi menjadi squid.conf.orig

cara ngecek apkah transparent kita jalan mengarah ke IP yng kita definisikan : pfctl -sn

contoh :
Quote

pfctl -sn

nat-anchor "pftpx/" all
nat-anchor "natearly/" all
nat-anchor "natrules/" all
nat on em0 inet from 192.168.1.0/24 port = isakmp to any port = isakmp -> (em0) port 500 round-robin
nat on em0 inet from 192.168.1.0/24 port = 5060 to any port = 5060 -> (em0) port 5060 round-robin
nat on em0 inet from 192.168.1.0/24 to any -> (em0) port 1024:65535 round-robin
rdr-anchor "pftpx/" all
rdr-anchor "slb" all
no rdr on em1 proto tcp from any to <vpns>port = ftp
rdr on em1 inet proto tcp from any to any port = ftp -> 127.0.0.1 port 8021
rdr on em1 inet proto tcp from any to ! (em1) port = http -> 192.168.1.1 port 80 << liat yang ini nih
rdr-anchor "imspector" all
rdr-anchor "miniupnpd" all

cek rule : pfctl -sr
cek queue :pfctl -sq
cek queue yang online : pftop -vq

pfsense seri yg digunakan :
Quote

uname -a

FreeBSD pfsense.arysatya.net 7.2-RELEASE-p2 FreeBSD 7.2-RELEASE-p2 #0: Tue Jul 14 07:51:03 EDT 2009 sullrich@FreeBSD-7_2-RELENG_1_2-snapshots.pfsense.org:/usr/obj.pfSense/usr/pfSensesrc/src/sys/pfSense_SMP.7 i386

dan yang menarik di pfsense ane bisa dilihat config lengkpnya dengan perintah sederhana : squidclient mgr:config

Quote

squidclient mgr:config | more

HTTP/1.0 200 OK
Server: Cacheboy/CACHEBOY_1.6
Date: Wed, 16 Sep 2009 17:30:36 GMT
Content-Type: text/plain
Expires: Wed, 16 Sep 2009 17:30:36 GMT
X-Cache: MISS from localhost
X-Cache-Lookup: MISS from localhost:80
Via: 1.0 cacheboy.pfsense:80 (Cacheboy/CACHEBOY_1.6)
Connection: close

authenticate_cache_garbage_interval 3600 seconds
authenticate_ttl 3600 seconds
authenticate_ip_ttl 0 seconds
authenticate_ip_shortcircuit_ttl 0 seconds
acl localnet src 192.168.56.0/255.255.255.0
acl all src 0.0.0.0/0.0.0.0
acl localhost src 127.0.0.1
acl safeports port 21
acl safeports port 80
acl safeports port 70
acl safeports port 210
acl safeports port 280
acl safeports port 443
acl safeports port 488
acl safeports port 563
acl safeports port 591
acl safeports port 631
acl safeports port 777
acl safeports port 901
acl safeports port 81
acl safeports port 3128
acl safeports port 1025-65535
acl sslports port 443
acl sslports port 563
acl sslports port 81
acl manager proto cache_object
acl purge method PURGE
acl connect method CONNECT
acl store_rewrite_list urlpath_regex /(get_video|videoplayback?id|videoplayback.id)
acl store_rewrite_list urlpath_regex .(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wmv|3gp|mp(4|3)|exe|msi|zip|on2|mar)(=|?|;&)+
acl store_rewrite_list_domain url_regex ^http://([A-Za-z-]+[0-9]+).[A-Za-z].[A-Za-z]
acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2})).[a-z][0-9]?.[a-z]{3}
acl store_rewrite_list_path urlpath_regex .(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar)$
acl store_rewrite_list_domain_CDN url_regex ^http://[a-z]+[0-9].google.co(m|.uk)
acl store_rewrite_list_domain_CDN url_regex .rapidshare.com./[0-9]/./[^/]*

dst .. tinggal tekan spasi saja nanti ngerol selayar….

untuk melihat bagaimana kinerja statistik cache bisa dengan command squidclient mgr:info
lihat kondisi cache_dir squidclient mgr:storedir
melihat delay_pool yang aktif squidclient mgr:delay atau squidclient mgr:delay2[/b
melihat semua command : squidclient mgr:menu

asikkan Smiley, jadi kita bisa mantau kinerja statisitik cache.
lebih enak sih pake mrtg-squid, semua statistik cache, performa, ram dll bisa di tampilkan dalam grafik tiap waktu. jadi gak harus mantengin konsol terus Grin, seorang admin yang handal itu, kerjanya ya tiduuuur hihihi

kalau ente make default hasil generate squid.conf lewat interface web, command itu gak akan jalan. kecuali ente merubah scriptnya

kalau mau bisa menggunakan command itu, pastikan ada config: http_port 127.0.0.1:3128 dan cachemgr_passwd none all

cek apkah ip saya bisa brosingan :
Quote
tail -f /var/squid/log/access.log
1253130399.527 5 192.168.1.12 TCP_IMS_HIT/304 345 GET http://www.detik.com/js/footerclose.js - NONE/- application/x-javascript
1253130399.537 3 192.168.1.12 TCP_IMS_HIT/304 345 GET http://www.detik.com/js/swfobject.js - NONE/- application/x-javascript
1253130399.550 2 192.168.1.12 TCP_IMS_HIT/304 345 GET http://www.detik.com/js/iringloops.js - NONE/- application/x-javascript
1253130399.592 20 192.168.1.12 TCP_HIT/200 1043 GET http://www.detik.com/css/ramadan2009.css - NONE/- text/css
1253130399.592 20 192.168.1.12 TCP_HIT/200 1017 GET http://www.detik.com/css/allslider-new.css - NONE/- text/css
1253130399.597 25 192.168.1.12 TCP_HIT/200 1755 GET http://www.detik.com/css/etalaseseremonial-style.css - NONE/- text/css
1253130399.599 27 192.168.1.12 TCP_HIT/200 10150 GET http://www.detik.com/css/detikcom-new.css - NONE/- text/css
1253130399.614 13 192.168.1.12 TCP_HIT/200 4292 GET http://www.detik.com/image/logodetikcom.gif - NONE/- image/gif
1253130401.561 2526 192.168.1.12 TCP_MISS/200 79706 GET http://www.detik.com/ - DIRECT/202.158.66.92 text/html

cek cache.log

Quote

tail -f /var/squid/log/cache.log

2009/09/16 12:46:20| Adding nameserver 203.34.118.12 from squid.conf
2009/09/16 12:46:20| DNS Socket created at 0.0.0.0, port 54519, FD 7
2009/09/16 12:46:20| Adding nameserver 203.34.118.10 from squid.conf
2009/09/16 12:46:20| Adding nameserver 127.0.0.1 from squid.conf
2009/09/16 12:46:20| helperOpenServers: Starting 4 'storeurl.pl' processes
2009/09/16 12:46:21| Accepting transparently proxied HTTP connections at 192.168.56.2, port 80, FD 16.
2009/09/16 12:46:21| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 17.
2009/09/16 12:46:21| Accepting SNMP messages on port 3401, FD 18.
2009/09/16 12:46:21| Loaded Icons.
2009/09/16 12:46:21| Ready to serve requests[/quote]</vpns>

tapi ketika saya ketik pfctl -sn

pfctl -sn

nat-anchor "pftpx/" all
nat-anchor "natearly/" all
nat-anchor "natrules/" all
nat on ed0 inet from 192.168.100.0/24 port = isakmp to any port = isakmp -> (ed0) port 500 round-robin
nat on ed0 inet from 192.168.100.0/24 port = 5060 to any port = 5060 -> (ed0) port 5060 round-robin
nat on ed0 inet from 192.168.100.0/24 to any -> (ed0) port 1024:65535 round-robin
rdr-anchor "pftpx/" all
rdr-anchor "slb" all
no rdr on rl0 proto tcp from any to <vpns>port = ftp
rdr on rl0 inet proto tcp from any to any port = ftp -> 127.0.0.1 port 8021
rdr-anchor "imspector" all
rdr-anchor "miniupnpd" all</vpns>

kalimat seperti

rdr on em1 inet proto tcp from any to ! (em1) port = http -> 192.168.1.1 port 80 << liat yang ini nih

tidak diketemukan

trus

tail -f /var/squid/log/cache.log

2010/04/05 08:34:24| Adding nameserver 192.168.2.1 from /etc/resolv.conf
2010/04/05 08:34:24| DNS Socket created at 0.0.0.0, port 32005, FD 13
2010/04/05 08:34:24| Adding nameserver 202.134.1.10 from /etc/resolv.conf
2010/04/05 08:34:24| helperOpenServers: Starting 1 'storeurl.pl' processes
2010/04/05 08:34:24| Accepting proxy HTTP connections at 192.168.100.1, port 3128, FD 18.
2010/04/05 08:34:24| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 19.
2010/04/05 08:34:24| Accepting SNMP messages on port 3401, FD 20.
2010/04/05 08:34:24| AUFS: /var/squid/cache: log '/var/squid/cache/swap.state' opened on FD 21
2010/04/05 08:34:24| Loaded Icons.
2010/04/05 08:34:24| Ready to serve requests.

tail -f /var/squid/log/access.log

1270447521.665 2 127.0.0.1 TCP_MISS/200 2412 GET cache_object://localhost/info - NONE/- text/plain
1270448974.611 2 127.0.0.1 TCP_MISS/200 2407 GET cache_object://localhost/info - NONE/- text/plain
1270449174.643 1 127.0.0.1 TCP_DENIED/400 3047 GET NONE:// - NONE/- text/html
1270453791.659 1 127.0.0.1 TCP_DENIED/403 2955 GET cache_object://localhost/info - NONE/- text/html
1270454388.166 3 127.0.0.1 TCP_MISS/200 2406 GET cache_object://localhost/info - NONE/- text/plain
1270454616.236 2 127.0.0.1 TCP_MISS/200 2411 GET cache_object://192.168.100.1/info - NONE/- text/plain
1270454636.183 1 127.0.0.1 TCP_MISS/200 2983 GET cache_object://192.168.100.1/menu - NONE/- text/plain
1270454651.240 1 127.0.0.1 TCP_MISS/200 906 GET cache_object://192.168.100.1/storedir - NONE/- text/plain
1270455449.009 2 127.0.0.1 TCP_MISS/200 2404 GET cache_object://localhost/info - NONE/- text/plain
1270456004.647 3 127.0.0.1 TCP_MISS/200 2409 GET cache_object://localhost/info - NONE/- text/plain

victor_manado

mohon bantuannya om2….

grage95

sudah click enable transprent di webgui ?

victor_manado

sudah om
padahal proses instalnya normal sampai di squidstats…udah 3x saya installl
nanti di tes pake perintah```
squidclient mgr:info |less


> # squidclient mgr:info |less
> client: ERROR: Cannot connect to localhost:3128: Connection refused

saya ikuti thread om yg diatas
ubah http_port di squid.conf dan squid inc
http_port 192.168.100.1:3128
http_port 127.0.0.1:3128 transparent

begitu juga di squid.inc http_portnya saya ganti ke port :3128

lalu squidclient mgr:info |les or more jalan
namun munclu unknown setelah perintah tail -f/var/squid/log/access.log cache.log

lg OL YM om????

victor_manado

DIRECT/203.190.242.71 text/html
1270463756.140 1570 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=1527&campaignid=696&zoneid=498&loc=http%3A%2F%2Fwww.detik.com%2F&cb=cb604ce6dc - DIRECT/203.190.242.71 image/gif
1270463756.210 1640 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=5009&campaignid=265&zoneid=5&channel_ids=,&loc=http%3A%2F%2Fwww.detik.com%2F&cb=dde22198e5 - DIRECT/203.190.242.71 image/gif
1270463756.292 1710 192.168.100.245 TCP_MISS/200 2549 GET http://openx.detik.com/delivery/afr.php?refresh=120&n=a47521ae&zoneid=3&cb=INSERT_RANDOM_NUMBER_HERE - DIRECT/203.190.242.71 text/html
1270463756.442 1792 192.168.100.245 TCP_MISS/200 7061 GET http://www.detik.com/images/content/2010/04/05/10/Panda-Nababan-(Dikhy)-luar.jpg - DIRECT/203.190.242.69 image/jpeg
1270463756.521 72 192.168.100.245 TCP_MISS/200 50675 GET http://www.detik.com/tvplayer/player.swf - DIRECT/203.190.242.69 application/x-shockwave-flash
1270463756.529 61 192.168.100.245 TCP_MISS/200 3960 GET http://www.detiknews.com/images/content/2010/04/02/612/kapolritangancovkecil.jpg - DIRECT/203.190.242.69 image/jpeg
1270463757.143 932 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=4707&campaignid=2671&zoneid=4&loc=http%3A%2F%2Fwww.detik.com%2F&cb=e259af94f2 - DIRECT/203.190.241.40 image/gif
1270463757.302 2732 192.168.100.245 TCP_MISS/200 17806 GET http://www.detik.com/images/content/2010/04/05/10/Puan-dan-Mega.JPG - DIRECT/203.190.241.43 image/jpeg
1270463757.346 2776 192.168.100.245 TCP_MISS/200 12949 GET http://www.detik.com/images/content/2010/04/05/4/Pajak-luar.jpg - DIRECT/203.190.241.43 image/jpeg
1270463757.956 2051 192.168.100.245 TCP_MISS/200 7746 GET http://www.detik.com/images/content/2010/04/05/283/cimb-visa-l.jpeg - DIRECT/203.190.241.43 image/jpeg
1270463758.340 1138 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=5280&campaignid=2962&zoneid=7&loc=http%3A%2F%2Fwww.detik.com%2F&cb=dc7839dcaa - DIRECT/203.190.241.40 image/gif
1270463758.863 2315 192.168.100.245 TCP_MISS/200 21424 GET http://www.detik.com/images/video/2010/04/100405971.png - DIRECT/203.190.241.43 image/png
1270463758.969 2380 192.168.100.245 TCP_MISS/200 9203 GET http://www.detik.com/images/content/2010/04/05/648/metro-mini-depan.jpg - DIRECT/203.190.242.69 image/jpeg
1270463759.038 53 192.168.100.245 TCP_MISS/200 30880 GET http://www.detik.com/image/plyerhotradio.gif - DIRECT/203.190.242.69 image/gif
1270463759.103 17 192.168.100.245 TCP_MISS/200 2398 GET http://www.detik.com/image/logo_ticketbox_new.gif - DIRECT/203.190.241.43 image/gif
1270463759.143 14 192.168.100.245 TCP_MISS/200 714 GET http://www.detik.com/image/rss.gif - DIRECT/203.190.242.69 image/gif
1270463759.565 4995 192.168.100.245 TCP_MISS/200 26980 GET http://openx.detik.com/images/cbn-banner-site338x200pxl.gif - DIRECT/203.190.241.40 image/gif
1270463759.588 3364 192.168.100.245 TCP_MISS/200 11384 GET http://openx.detik.com/images/280x175_12.swf - DIRECT/203.190.242.71 application/x-shockwave-flash
1270463759.680 2695 192.168.100.245 TCP_MISS/200 544 GET http://www.google-analytics.com/__utm.gif?utmwv=4.6.5&utmn=688824588&utmhn=www.detik.com&utmcs=ISO-8859-1&utmsr=1280x800&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=10.1%20d51&utmcn=1&utmdt=detikcom%20%3A%20situs%20warta%20era%20digital&utmhid=141949523&utmr=-&utmp=%2F&utmac=UA-891770-5&utmcc=__utma%3D146380193.2013498975.1270463748.1270463748.1270463748.1%3B%2B__utmz%3D146380193.1270463748.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B - DIRECT/64.233.183.100 image/gif
1270463759.685 1313 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=5095&campaignid=2863&zoneid=11&channel_ids=,&loc=http%3A%2F%2Fwww.detik.com%2F&cb=75af8eefb3 - DIRECT/203.190.241.40 image/gif
1270463759.731 43 192.168.100.245 TCP_MISS/200 22502 GET http://openx.detik.com/images/bannerkontengossip_telkomsel_200x300_3.gif - DIRECT/203.190.242.71 image/gif
1270463759.760 2428 192.168.100.245 TCP_MISS/200 17135 GET http://www.detik.com/images/video/2010/04/100405630.png - DIRECT/203.190.241.43 image/png
1270463759.814 4281 192.168.100.245 TCP_MISS/200 12464 GET http://www.detik.com/images/content/2010/04/05/157/coverrusia.jpg - DIRECT/203.190.241.43 image/jpeg
1270463759.843 4295 192.168.100.245 TCP_MISS/200 12435 GET http://www.detik.com/images/content/2010/04/05/157/coverhaposan.jpg - DIRECT/203.190.242.69 image/jpeg
1270463759.854 67 192.168.100.245 TCP_MISS/200 41428 GET http://www.detik.com/images/content/2010/04/05/471/20100405-bambang-l.jpg - DIRECT/203.190.242.69 image/jpeg
1270463759.867 46 192.168.100.245 TCP_MISS/200 2465 GET http://www.detik.com/image/logolewatmana.gif - DIRECT/203.190.241.43 image/gif
1270463759.867 4252 192.168.100.245 TCP_MISS/200 11074 GET http://www.detik.com/images/content/2010/04/05/157/covernababan.jpg - DIRECT/203.190.241.43 image/jpeg
1270463759.909 29 192.168.100.245 TCP_MISS/200 586 GET http://www.detik.com/image/arrow_up.gif - DIRECT/203.190.241.43 image/gif
1270463759.923 43 192.168.100.245 TCP_MISS/200 1303 GET http://www.detik.com

saya tambahkan baris di dalam squid.inc untuk menyamakan dengan squid.conf

baris di squid.conf
http_port 192.168.100.1:80 transparent
http_port 127.0.0.1:3128 transparent

trus di squid.inc

if (($settings['transparent_proxy'] == 'on')) {
		$conf .= "http_port 192.168.100.1:80 transparent\n";

if (($settings['transparent_proxy'] == 'on')) {
		$conf .= "http_port 127.0.0.1:3128 transparent\n";

mohon tanggapannya jika code itu legal…thx

grage95

setelah set, restart webconfigurator

DONOT CONFIG on squid.conf !!!

cek on console :

pfctl -sn
sockstat |grep 3128

namun munclu unknown setelah perintah tail -f/var/squid/log/access.log cache.log

yang benar tail -f /var/squid/log/access.log cache.log
(ada spasinya)

sudah enable log di webgui ?

from : http://wiki.squid-cache.org/SquidFaq/CompleteFaq
silahkan di hapalkan :)

The TCP_ codes refer to requests on the HTTP port (usually 3128). The UDP_ codes refer to requests on the ICP port (usually 3130). If ICP logging was disabled using the log_icp_queries option, no ICP replies will be logged.

The following result codes were taken from a Squid-2, compare with the log_type enum in src/enums.h:

TCP_HIT A valid copy of the requested object was in the cache.

TCP_MISS The requested object was not in the cache.

TCP_REFRESH_HIT The requested object was cached but STALE. The IMS query for the object resulted in "304 not modified".

TCP_REFRESH_FAIL_HIT The requested object was cached but STALE. The IMS query failed and the stale object was delivered.

TCP_REFRESH_MISS The requested object was cached but STALE. The IMS query returned the new content.

TCP_CLIENT_REFRESH_MISS The client issued a "no-cache" pragma, or some analogous cache control command along with the request. Thus, the cache has to refetch the object.

TCP_IMS_HIT The client issued an IMS request for an object which was in the cache and fresh.

TCP_SWAPFAIL_MISS The object was believed to be in the cache, but could not be accessed.

TCP_NEGATIVE_HIT Request for a negatively cached object, e.g. "404 not found", for which the cache believes to know that it is inaccessible. Also refer to the explainations for negative_ttl in your squid.conf file.

TCP_MEM_HIT A valid copy of the requested object was in the cache and it was in memory, thus avoiding disk accesses.

TCP_DENIED Access was denied for this request.

TCP_OFFLINE_HIT The requested object was retrieved from the cache during offline mode. The offline mode never validates any object, see offline_mode in squid.conf file.

TCP_STALE_HIT The object was cached and served stale. This is usually caused by stale-while-revalidate or stale-if-error.

TCP_ASYNC_HIT A background request (e.g., one started by stale-while-revalidate) resulted in a refresh hit.

TCP_ASYNC_MISS A background request (e.g., one started by stale-while-revalidate) resulted in a miss; i.e., the cached object (if any) was updated).

UDP_HIT A valid copy of the requested object was in the cache.

UDP_MISS The requested object is not in this cache.

UDP_DENIED Access was denied for this request.

UDP_INVALID An invalid request was received.

UDP_MISS_NOFETCH During "-Y" startup, or during frequent failures, a cache in hit only mode will return either UDP_HIT or this code. Neighbours will thus only fetch hits.

NONE Seen with errors and cachemgr requests.

The following codes are no longer available in Squid-2:

ERR_* Errors are now contained in the status code.

TCP_CLIENT_REFRESH See: TCP_CLIENT_REFRESH_MISS.

TCP_SWAPFAIL See: TCP_SWAPFAIL_MISS.

TCP_IMS_MISS Deleted, now replaced with TCP_IMS_HIT.

UDP_HIT_OBJ Refers to an old version that would send cache hits in ICP replies. No longer implemented.

UDP_RELOADING See: UDP_MISS_NOFETCH.

victor_manado

kekekekekekeke mau hapalkan itu semua om…..hahahahahaha
mustahil kebanyakan bahasa planet...
nyerah deh om...
setelah di restart konfigurasinya balik ke awal
ini hasil sockstat |grep 3128

sockstat |grep 3128

proxy squid 896 18 tcp4 192.168.100.1:3128 :

pfctl -sn juga hasilnya kembali ke awal....nda ngerti salahnya dimana ::)

;D

mungkin ada yg bisa bantu luruskan...?silahkan.......

ipoelnet

1. system -> general setup :

webGUI protocol : HTTP
webGUI port : 81

2. Edit /usr/local/pkg/squid.inc

foreach (explode(",", $ifaces) as $i => $iface) {
$real_ifaces[] = squid_get_real_interface_address($iface);
if($real_ifaces[$i][0]) {
$conf .= "http_port {$real_ifaces[$i][0]}:$port transparent\n";
}
}
if (($settings['transparent_proxy'] == 'on')) {
$conf .= "http_port 127.0.0.1:80\n";
}

….........

foreach ($ifaces as $iface) {
$rules .= "rdr on $iface proto tcp from any to !($iface) port 80 -> ip pf anda port 80\n";
}
/* Handle PPPOE case /
if($config['pppoe']['mode'] == "server" && $config['pppoe']['localip']) {
$rules .= "rdr on $PPPOE_ALIAS proto tcp from any to !127.0.0.1 port 80 -> ip pf anda port 80\n";
}
/ Handle PPTP case */
if($config['pptpd']['mode'] == "server" && $config['pptpd']['localip']) {
$rules .= "rdr on $PPTP_ALIAS proto tcp from any to !127.0.0.1 port 80 -> ip pf anda port 80\n";
}
$rules .= "\n";

3. Services -> Proxy server -> General settings :

Proxy port : 80

victor_manado

om Ipoel,,,sekalian dicopykan squid.inc dan squid.conf nya om ipoel….sebagain bhn perbandingan untuk dikoleksi...thanks

zchellpy

main ke forum mikrotik ato forum linux.or.id baru balik lagi kesini dijamin langsung ngerti soalnya disini rata2 orang yg udah paham routing dan sudah lama di forum2 yg diatas beda dengan kita yg baru tau dasar2 nya aja…..