Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Mohon diartikan….hasil dari konfigurasi lusca

    Scheduled Pinned Locked Moved Indonesian
    14 Posts 4 Posters 13.5k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • V
      victor_manado
      last edited by

      tail -f /var/squid/log/cache.log

      2010/04/05 05:46:58| Accepting proxy HTTP connections at 192.168.100.1, port 3128, FD 18.
      2010/04/05 05:46:58| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 19.
      2010/04/05 05:46:58| Accepting SNMP messages on port 3401, FD 20.
      2010/04/05 05:46:58| AUFS: /var/squid/cache: log '/var/squid/cache/swap.state' opened on FD 21
      2010/04/05 05:46:58| Loaded Icons.
      2010/04/05 05:46:58| Ready to serve requests.
      2010/04/05 05:47:37| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'
      2010/04/05 05:52:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'config'
      2010/04/05 05:52:48| CACHEMGR: <unknown>@127.0.0.1 requesting 'storedir'
      2010/04/05 05:55:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'</unknown></unknown></unknown></unknown>

      dan

      tail -f /var/squid/log/access.log

      1270393615.282    15 192.168.100.245 TCP_MISS/200 12440 GET http://safebrowsing-cache.google.com/safebrowsing/rd/ChNnb29nLW1hbHdhcmUtc2hhdmFyEAAYlpkBIJqZATIFlkwAAB8 - DIRECT/74.125.166.35 application/vnd.google.safebrowsing-chunk
      1270393615.403      5 192.168.100.245 TCP_MISS/200 792 GET http://safebrowsing-cache.google.com/safebrowsing/rd/ChFnb29nLXBoaXNoLXNoYXZhchAAGO_LBSDzywUyBe9lAQAf - DIRECT/74.125.166.35 application/vnd.google.safebrowsing-chunk
      1270393615.582      5 192.168.100.245 TCP_MISS/200 618 GET http://safebrowsing-cache.google.com/safebrowsing/rd/ChFnb29nLXBoaXNoLXNoYXZhchAAGPTLBSD4ywUqBfZlAQAHMgX0ZQEAAw - DIRECT/74.125.166.35 application/vnd.google.safebrowsing-chunk
      1270393662.356      1 127.0.0.1 TCP_DENIED/504 3218 GET http://www.sumotracker.com/announce? - NONE/- text/html
      1270393662.358      7 127.0.0.1 TCP_MISS/504 3315 GET http://www.sumotracker.com/announce? - DIRECT/127.0.0.1 text/html
      1270393662.359    144 192.168.100.245 TCP_MISS/504 3412 GET http://www.sumotracker.com/announce? - DIRECT/127.0.0.1 text/html
      1270446457.848    46 127.0.0.1 TCP_MISS/200 2407 GET cache_object://localhost/info - NONE/- text/plain
      1270446738.715      4 127.0.0.1 TCP_MISS/200 16303 GET cache_object://localhost/config - NONE/- text/plain
      1270446768.741      1 127.0.0.1 TCP_MISS/200 906 GET cache_object://localhost/storedir - NONE/- text/plain
      1270446918.896      2 127.0.0.1 TCP_MISS/200 2412 GET cache_object://localhost/info - NONE/- text/plain

      dan

      squidclient mgr:info |less

      HTTP/1.0 200 OK
      Server: Lusca/LUSCA_HEAD r14499 patched by chudy r11
      Date: Mon, 05 Apr 2010 06:05:21 GMT
      Content-Type: text/plain
      Expires: Mon, 05 Apr 2010 06:05:21 GMT
      X-Cache: MISS from localhost
      Via: 1.0 localhost:3128 (Lusca/LUSCA_HEAD r14499 patched by chudy r11)
      Connection: close

      Squid Object Cache: Version LUSCA_HEAD r14499 patched by chudy r11
      Start Time:    Mon, 05 Apr 2010 05:46:54 GMT
      Current Time:  Mon, 05 Apr 2010 06:05:21 GMT
      Connection information for squid:
              Number of clients accessing cache:      0
              Number of HTTP requests received:      4
              Number of ICP messages received:        0
              Number of ICP messages sent:    0
              Number of queued ICP replies:  0
              Request failure ratio:  0.00
              Average HTTP requests per minute since start:  0.2
              Average ICP messages per minute since start:    0.0
              Select loop called: 3752 times, 294.994 ms avg
      Cache information for squid:
              Request Hit Ratios:    5min: 0.0%, 60min: 0.0%
              Byte Hit Ratios:        5min: -0.0%, 60min: 100.0%
              Request Memory Hit Ratios:      5min: 0.0%, 60min: 0.0%
              Request Disk Hit Ratios:        5min: 0.0%, 60min: 0.0%
              Storage Swap size:      1576 KB
              Storage Mem size:      104 KB
              Mean Object Size:      10.72 KB
              Requests given to unlinkd:      0
      Median Service Times (seconds)  5 min    60 min:
              HTTP Requests (All):  0.00000  0.00194
              Cache Misses:          0.00000  0.00194
              Cache Hits:            0.00000  0.00000
              Near Hits:            0.00000  0.00000
              Not-Modified Replies:  0.00000  0.00000
              DNS Lookups:          0.00000  0.00000
              ICP Queries:          0.00000  0.00000
      Resource usage for squid:
              UP Time:        1106.816 seconds
              CPU Time:      0.500 seconds
              CPU Usage:      0.05%
              CPU Usage, 5 minute avg:        0.03%
              CPU Usage, 60 minute avg:      0.05%
              Process Data Segment Size via sbrk(): 0 KB
              Maximum Resident Size: 6584 KB
              Page faults with physical i/o: 4
      Memory accounted for:
              Total accounted:          161 KB
              memPoolAlloc calls: 5825
              memPoolFree calls: 4746
      File descriptor usage for squid:
              Maximum number of file descriptors:  14745
              Largest file desc currently in use:    22
              Number of file desc currently in use:  14
              Files queued for open:                  0
              Available number of file descriptors: 14731
              Reserved number of file descriptors:  100
              Store Disk files open:                  0
              IO loop method:                    kqueue
      Internal Data Structures:
                173 StoreEntries
                  26 StoreEntries with MemObjects
                  25 Hot Object Cache Items
                147 on-disk objects
      (END)

      apakah konfigurasi saya sudah benar???? pfsense 1.2.3 + lusca

      1 Reply Last reply Reply Quote 0
      • I
        ipoelnet
        last edited by

        cache masih dikit OM ntar aja lihat hasilnya kalau udah cache banyak, kalau baru sih yach masih banyak MISS, soalnya squid musti ngumpulin file dulu dari inet.  ;D

        Iso cak, Asal sesuai aturan | Belajarlah seperti orang bodoh

        1 Reply Last reply Reply Quote 0
        • V
          victor_manado
          last edited by

          tail -f /var/squid/log/cache.log

          2010/04/05 05:46:58| Accepting proxy HTTP connections at 192.168.100.1, port 3128, FD 18.
          2010/04/05 05:46:58| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 19.
          2010/04/05 05:46:58| Accepting SNMP messages on port 3401, FD 20.
          2010/04/05 05:46:58| AUFS: /var/squid/cache: log '/var/squid/cache/swap.state' opened on FD 21
          2010/04/05 05:46:58| Loaded Icons.
          2010/04/05 05:46:58| Ready to serve requests.
          2010/04/05 05:47:37| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'
          2010/04/05 05:52:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'config'
          2010/04/05 05:52:48| CACHEMGR: <unknown>@127.0.0.1 requesting 'storedir'
          2010/04/05 05:55:18| CACHEMGR: <unknown>@127.0.0.1 requesting 'info'</unknown></unknown></unknown></unknown>

          yang baris bawah yg aku tak ngerti….heehe
          <unknown.........>sebelumnya ketika menjalankan perintah
          #squidclient mgr:info |less
          hasilnya mengecewakan

          squidclient mgr:info |less

          client: ERROR: Cannot connect to localhost:3128: Connection refused

          apa ada saran ?</unknown.........>

          1 Reply Last reply Reply Quote 0
          • G
            grage95
            last edited by

            pls don be lazy (no offense),

            squidclient -p port-squid cache_object://your-ip-squid-box/info
            
            squidclient -p port-squid cache_object://your-ip-squid-box/menu
            

            example :

            squidclient -p 3128 cache_object://192.168.1.1/info
            

            thread ini sudah di bahas sebelumnya.

            1 Reply Last reply Reply Quote 0
            • V
              victor_manado
              last edited by

              wah…jalan buntu om...sudah saya cari thread seperti yg om bilang sebelumnya tapi tidak ketemu di forum indonesia...
              yg ketemu hanya ini om :

              download saja confignya disini http://shakau.googlepages.com/squid-config.tar.bz2  trs tar -jxvf squid-config.tar.bz2 obok2 tuh file2 conf disitu , sudah di test di produksi
              isinya : rewrite.pl, storeurl.pl, tunning.conf,  sysctl.conf, loader.conf dan squid.conf
              kalau mau auto replace pake comman ini di putty :
              Quote
              fetch http://shakau.googlepages.com/squid-pfsense.sh
              sh squid-pfsense.sh

              trus edit di /usr/local/etc/squid/

              atau lihat saja command di squid-pfsense.sh
              ane udah coba config ini di pfsense1.2.2 stable dan pfsense 1.2. snapshot bisa jalan normal & baik di restart maupun di reboot bolak balik, saratnya cuma satu, utak atik di squid.conf aja, sesuaikan ip dan directory cache_dir, tentunya setelah mendisable interface web squid agar tidak menggenerate squid.conf tapi menjadi squid.conf.orig

              cara ngecek apkah transparent kita jalan mengarah ke IP yng kita definisikan : pfctl -sn

              contoh :
              Quote

              pfctl -sn

              nat-anchor "pftpx/" all
              nat-anchor "natearly/
              " all
              nat-anchor "natrules/" all
              nat on em0 inet from 192.168.1.0/24 port = isakmp to any port = isakmp -> (em0) port 500 round-robin
              nat on em0 inet from 192.168.1.0/24 port = 5060 to any port = 5060 -> (em0) port 5060 round-robin
              nat on em0 inet from 192.168.1.0/24 to any -> (em0) port 1024:65535 round-robin
              rdr-anchor "pftpx/
              " all
              rdr-anchor "slb" all
              no rdr on em1 proto tcp from any to <vpns>port = ftp
              rdr on em1 inet proto tcp from any to any port = ftp -> 127.0.0.1 port 8021
              rdr on em1 inet proto tcp from any to ! (em1) port = http -> 192.168.1.1 port 80  << liat yang ini nih
              rdr-anchor "imspector" all
              rdr-anchor "miniupnpd" all

              cek rule : pfctl -sr
              cek queue  :pfctl -sq
              cek queue yang online : pftop -vq

              pfsense seri yg digunakan :
              Quote

              uname -a

              FreeBSD pfsense.arysatya.net 7.2-RELEASE-p2 FreeBSD 7.2-RELEASE-p2 #0: Tue Jul 14 07:51:03 EDT 2009    sullrich@FreeBSD-7_2-RELENG_1_2-snapshots.pfsense.org:/usr/obj.pfSense/usr/pfSensesrc/src/sys/pfSense_SMP.7  i386

              dan yang menarik  di pfsense ane bisa dilihat config lengkpnya dengan perintah sederhana : squidclient mgr:config

              Quote

              squidclient mgr:config | more

              HTTP/1.0 200 OK
              Server: Cacheboy/CACHEBOY_1.6
              Date: Wed, 16 Sep 2009 17:30:36 GMT
              Content-Type: text/plain
              Expires: Wed, 16 Sep 2009 17:30:36 GMT
              X-Cache: MISS from localhost
              X-Cache-Lookup: MISS from localhost:80
              Via: 1.0 cacheboy.pfsense:80 (Cacheboy/CACHEBOY_1.6)
              Connection: close

              authenticate_cache_garbage_interval 3600 seconds
              authenticate_ttl 3600 seconds
              authenticate_ip_ttl 0 seconds
              authenticate_ip_shortcircuit_ttl 0 seconds
              acl localnet src 192.168.56.0/255.255.255.0
              acl all src 0.0.0.0/0.0.0.0
              acl localhost src 127.0.0.1
              acl safeports port 21
              acl safeports port 80
              acl safeports port 70
              acl safeports port 210
              acl safeports port 280
              acl safeports port 443
              acl safeports port 488
              acl safeports port 563
              acl safeports port 591
              acl safeports port 631
              acl safeports port 777
              acl safeports port 901
              acl safeports port 81
              acl safeports port 3128
              acl safeports port 1025-65535
              acl sslports port 443
              acl sslports port 563
              acl sslports port 81
              acl manager proto cache_object
              acl purge method PURGE
              acl connect method CONNECT
              acl store_rewrite_list urlpath_regex /(get_video|videoplayback?id|videoplayback.id)
              acl store_rewrite_list urlpath_regex .(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|wmv|3gp|mp(4|3)|exe|msi|zip|on2|mar)(=|?|;&)+
              acl store_rewrite_list_domain url_regex ^http://([A-Za-z-]+[0-9]+)
              .[A-Za-z].[A-Za-z]
              acl store_rewrite_list_domain url_regex (([a-z]{1,2}[0-9]{1,3})|([0-9]{1,3}[a-z]{1,2})).[a-z][0-9]?.[a-z]{3}
              acl store_rewrite_list_path urlpath_regex .(jp(e?g|e|2)|gif|png|tiff?|bmp|ico|flv|avc|zip|mp3|3gp|rar|on2|mar)$
              acl store_rewrite_list_domain_CDN url_regex ^http://[a-z]+[0-9].google.co(m|.uk)
              acl store_rewrite_list_domain_CDN url_regex .rapidshare.com.
              /[0-9]/./[^/]*

              dst .. tinggal tekan spasi saja  nanti ngerol selayar….

              untuk melihat bagaimana kinerja statistik cache bisa dengan command squidclient mgr:info
              lihat kondisi cache_dir squidclient mgr:storedir
              melihat delay_pool yang aktif squidclient mgr:delay atau squidclient mgr:delay2[/b
              melihat semua command : squidclient mgr:menu

              asikkan Smiley, jadi kita bisa mantau kinerja statisitik cache.
              lebih enak sih pake mrtg-squid, semua statistik cache, performa, ram dll bisa di tampilkan dalam grafik tiap waktu. jadi gak harus mantengin konsol terus Grin, seorang admin yang handal itu, kerjanya ya tiduuuur hihihi

              kalau ente make default hasil generate squid.conf lewat interface web, command itu gak akan jalan. kecuali ente merubah scriptnya

              kalau mau bisa menggunakan command itu, pastikan ada config: http_port 127.0.0.1:3128  dan  cachemgr_passwd none all

              cek apkah ip saya bisa brosingan :
              Quote
              tail -f /var/squid/log/access.log
              1253130399.527      5 192.168.1.12 TCP_IMS_HIT/304 345 GET http://www.detik.com/js/footerclose.js - NONE/- application/x-javascript
              1253130399.537      3 192.168.1.12 TCP_IMS_HIT/304 345 GET http://www.detik.com/js/swfobject.js - NONE/- application/x-javascript
              1253130399.550      2 192.168.1.12 TCP_IMS_HIT/304 345 GET http://www.detik.com/js/iringloops.js - NONE/- application/x-javascript
              1253130399.592    20 192.168.1.12 TCP_HIT/200 1043 GET http://www.detik.com/css/ramadan2009.css - NONE/- text/css
              1253130399.592    20 192.168.1.12 TCP_HIT/200 1017 GET http://www.detik.com/css/allslider-new.css - NONE/- text/css
              1253130399.597    25 192.168.1.12 TCP_HIT/200 1755 GET http://www.detik.com/css/etalaseseremonial-style.css - NONE/- text/css
              1253130399.599    27 192.168.1.12 TCP_HIT/200 10150 GET http://www.detik.com/css/detikcom-new.css - NONE/- text/css
              1253130399.614    13 192.168.1.12 TCP_HIT/200 4292 GET http://www.detik.com/image/logodetikcom.gif - NONE/- image/gif
              1253130401.561  2526 192.168.1.12 TCP_MISS/200 79706 GET http://www.detik.com/ - DIRECT/202.158.66.92 text/html

              cek cache.log

              Quote

              tail -f /var/squid/log/cache.log

              2009/09/16 12:46:20| Adding nameserver 203.34.118.12 from squid.conf
              2009/09/16 12:46:20| DNS Socket created at 0.0.0.0, port 54519, FD 7
              2009/09/16 12:46:20| Adding nameserver 203.34.118.10 from squid.conf
              2009/09/16 12:46:20| Adding nameserver 127.0.0.1 from squid.conf
              2009/09/16 12:46:20| helperOpenServers: Starting 4 'storeurl.pl' processes
              2009/09/16 12:46:21| Accepting transparently proxied HTTP connections at 192.168.56.2, port 80, FD 16.
              2009/09/16 12:46:21| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 17.
              2009/09/16 12:46:21| Accepting SNMP messages on port 3401, FD 18.
              2009/09/16 12:46:21| Loaded Icons.
              2009/09/16 12:46:21| Ready to serve requests[/quote]</vpns>

              tapi ketika saya ketik pfctl -sn

              pfctl -sn

              nat-anchor "pftpx/" all
              nat-anchor "natearly/
              " all
              nat-anchor "natrules/" all
              nat on ed0 inet from 192.168.100.0/24 port = isakmp to any port = isakmp -> (ed0) port 500 round-robin
              nat on ed0 inet from 192.168.100.0/24 port = 5060 to any port = 5060 -> (ed0) port 5060 round-robin
              nat on ed0 inet from 192.168.100.0/24 to any -> (ed0) port 1024:65535 round-robin
              rdr-anchor "pftpx/
              " all
              rdr-anchor "slb" all
              no rdr on rl0 proto tcp from any to <vpns>port = ftp
              rdr on rl0 inet proto tcp from any to any port = ftp -> 127.0.0.1 port 8021
              rdr-anchor "imspector" all
              rdr-anchor "miniupnpd" all</vpns>

              kalimat seperti

              rdr on em1 inet proto tcp from any to ! (em1) port = http -> 192.168.1.1 port 80  << liat yang ini nih

              tidak diketemukan

              trus

              tail -f /var/squid/log/cache.log

              2010/04/05 08:34:24| Adding nameserver 192.168.2.1 from /etc/resolv.conf
              2010/04/05 08:34:24| DNS Socket created at 0.0.0.0, port 32005, FD 13
              2010/04/05 08:34:24| Adding nameserver 202.134.1.10 from /etc/resolv.conf
              2010/04/05 08:34:24| helperOpenServers: Starting 1 'storeurl.pl' processes
              2010/04/05 08:34:24| Accepting proxy HTTP connections at 192.168.100.1, port 3128, FD 18.
              2010/04/05 08:34:24| Accepting transparently proxied HTTP connections at 127.0.0.1, port 3128, FD 19.
              2010/04/05 08:34:24| Accepting SNMP messages on port 3401, FD 20.
              2010/04/05 08:34:24| AUFS: /var/squid/cache: log '/var/squid/cache/swap.state' opened on FD 21
              2010/04/05 08:34:24| Loaded Icons.
              2010/04/05 08:34:24| Ready to serve requests.

              tail -f /var/squid/log/access.log

              1270447521.665      2 127.0.0.1 TCP_MISS/200 2412 GET cache_object://localhost/info - NONE/- text/plain
              1270448974.611      2 127.0.0.1 TCP_MISS/200 2407 GET cache_object://localhost/info - NONE/- text/plain
              1270449174.643      1 127.0.0.1 TCP_DENIED/400 3047 GET NONE:// - NONE/- text/html
              1270453791.659      1 127.0.0.1 TCP_DENIED/403 2955 GET cache_object://localhost/info - NONE/- text/html
              1270454388.166      3 127.0.0.1 TCP_MISS/200 2406 GET cache_object://localhost/info - NONE/- text/plain
              1270454616.236      2 127.0.0.1 TCP_MISS/200 2411 GET cache_object://192.168.100.1/info - NONE/- text/plain
              1270454636.183      1 127.0.0.1 TCP_MISS/200 2983 GET cache_object://192.168.100.1/menu - NONE/- text/plain
              1270454651.240      1 127.0.0.1 TCP_MISS/200 906 GET cache_object://192.168.100.1/storedir - NONE/- text/plain
              1270455449.009      2 127.0.0.1 TCP_MISS/200 2404 GET cache_object://localhost/info - NONE/- text/plain
              1270456004.647      3 127.0.0.1 TCP_MISS/200 2409 GET cache_object://localhost/info - NONE/- text/plain

              1 Reply Last reply Reply Quote 0
              • V
                victor_manado
                last edited by

                mohon bantuannya om2….

                1 Reply Last reply Reply Quote 0
                • G
                  grage95
                  last edited by

                  sudah click enable transprent di webgui ?

                  1 Reply Last reply Reply Quote 0
                  • V
                    victor_manado
                    last edited by

                    sudah om
                    padahal proses instalnya normal sampai di squidstats…udah 3x saya installl
                    nanti di tes pake perintah```
                    squidclient mgr:info |less

                    
                    > # squidclient mgr:info |less
                    > client: ERROR: Cannot connect to localhost:3128: Connection refused
                    
                    saya ikuti thread om yg diatas
                    ubah http_port di squid.conf dan squid inc
                    http_port 192.168.100.1:3128
                    http_port 127.0.0.1:3128 transparent
                    
                    begitu juga di squid.inc http_portnya saya ganti ke port :3128
                    
                    lalu squidclient mgr:info |les or more jalan
                    namun munclu unknown setelah perintah tail -f/var/squid/log/access.log cache.log
                    
                    lg OL YM om????
                    1 Reply Last reply Reply Quote 0
                    • V
                      victor_manado
                      last edited by

                      • DIRECT/203.190.242.71 text/html
                        1270463756.140  1570 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=1527&campaignid=696&zoneid=498&loc=http%3A%2F%2Fwww.detik.com%2F&cb=cb604ce6dc - DIRECT/203.190.242.71 image/gif
                        1270463756.210  1640 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=5009&campaignid=265&zoneid=5&channel_ids=,&loc=http%3A%2F%2Fwww.detik.com%2F&cb=dde22198e5 - DIRECT/203.190.242.71 image/gif
                        1270463756.292  1710 192.168.100.245 TCP_MISS/200 2549 GET http://openx.detik.com/delivery/afr.php?refresh=120&n=a47521ae&zoneid=3&cb=INSERT_RANDOM_NUMBER_HERE - DIRECT/203.190.242.71 text/html
                        1270463756.442  1792 192.168.100.245 TCP_MISS/200 7061 GET http://www.detik.com/images/content/2010/04/05/10/Panda-Nababan-(Dikhy)-luar.jpg - DIRECT/203.190.242.69 image/jpeg
                        1270463756.521    72 192.168.100.245 TCP_MISS/200 50675 GET http://www.detik.com/tvplayer/player.swf - DIRECT/203.190.242.69 application/x-shockwave-flash
                        1270463756.529    61 192.168.100.245 TCP_MISS/200 3960 GET http://www.detiknews.com/images/content/2010/04/02/612/kapolritangancovkecil.jpg - DIRECT/203.190.242.69 image/jpeg
                        1270463757.143    932 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=4707&campaignid=2671&zoneid=4&loc=http%3A%2F%2Fwww.detik.com%2F&cb=e259af94f2 - DIRECT/203.190.241.40 image/gif
                        1270463757.302  2732 192.168.100.245 TCP_MISS/200 17806 GET http://www.detik.com/images/content/2010/04/05/10/Puan-dan-Mega.JPG - DIRECT/203.190.241.43 image/jpeg
                        1270463757.346  2776 192.168.100.245 TCP_MISS/200 12949 GET http://www.detik.com/images/content/2010/04/05/4/Pajak-luar.jpg - DIRECT/203.190.241.43 image/jpeg
                        1270463757.956  2051 192.168.100.245 TCP_MISS/200 7746 GET http://www.detik.com/images/content/2010/04/05/283/cimb-visa-l.jpeg - DIRECT/203.190.241.43 image/jpeg
                        1270463758.340  1138 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=5280&campaignid=2962&zoneid=7&loc=http%3A%2F%2Fwww.detik.com%2F&cb=dc7839dcaa - DIRECT/203.190.241.40 image/gif
                        1270463758.863  2315 192.168.100.245 TCP_MISS/200 21424 GET http://www.detik.com/images/video/2010/04/100405971.png - DIRECT/203.190.241.43 image/png
                        1270463758.969  2380 192.168.100.245 TCP_MISS/200 9203 GET http://www.detik.com/images/content/2010/04/05/648/metro-mini-depan.jpg - DIRECT/203.190.242.69 image/jpeg
                        1270463759.038    53 192.168.100.245 TCP_MISS/200 30880 GET http://www.detik.com/image/plyerhotradio.gif - DIRECT/203.190.242.69 image/gif
                        1270463759.103    17 192.168.100.245 TCP_MISS/200 2398 GET http://www.detik.com/image/logo_ticketbox_new.gif - DIRECT/203.190.241.43 image/gif
                        1270463759.143    14 192.168.100.245 TCP_MISS/200 714 GET http://www.detik.com/image/rss.gif - DIRECT/203.190.242.69 image/gif
                        1270463759.565  4995 192.168.100.245 TCP_MISS/200 26980 GET http://openx.detik.com/images/cbn-banner-site338x200pxl.gif - DIRECT/203.190.241.40 image/gif
                        1270463759.588  3364 192.168.100.245 TCP_MISS/200 11384 GET http://openx.detik.com/images/280x175_12.swf - DIRECT/203.190.242.71 application/x-shockwave-flash
                        1270463759.680  2695 192.168.100.245 TCP_MISS/200 544 GET http://www.google-analytics.com/__utm.gif?utmwv=4.6.5&utmn=688824588&utmhn=www.detik.com&utmcs=ISO-8859-1&utmsr=1280x800&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=10.1%20d51&utmcn=1&utmdt=detikcom%20%3A%20situs%20warta%20era%20digital&utmhid=141949523&utmr=-&utmp=%2F&utmac=UA-891770-5&utmcc=__utma%3D146380193.2013498975.1270463748.1270463748.1270463748.1%3B%2B__utmz%3D146380193.1270463748.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B - DIRECT/64.233.183.100 image/gif
                        1270463759.685  1313 192.168.100.245 TCP_MISS/200 659 GET http://openx.detik.com/delivery/lg.php?bannerid=5095&campaignid=2863&zoneid=11&channel_ids=,&loc=http%3A%2F%2Fwww.detik.com%2F&cb=75af8eefb3 - DIRECT/203.190.241.40 image/gif
                        1270463759.731    43 192.168.100.245 TCP_MISS/200 22502 GET http://openx.detik.com/images/bannerkontengossip_telkomsel_200x300_3.gif - DIRECT/203.190.242.71 image/gif
                        1270463759.760  2428 192.168.100.245 TCP_MISS/200 17135 GET http://www.detik.com/images/video/2010/04/100405630.png - DIRECT/203.190.241.43 image/png
                        1270463759.814  4281 192.168.100.245 TCP_MISS/200 12464 GET http://www.detik.com/images/content/2010/04/05/157/coverrusia.jpg - DIRECT/203.190.241.43 image/jpeg
                        1270463759.843  4295 192.168.100.245 TCP_MISS/200 12435 GET http://www.detik.com/images/content/2010/04/05/157/coverhaposan.jpg - DIRECT/203.190.242.69 image/jpeg
                        1270463759.854    67 192.168.100.245 TCP_MISS/200 41428 GET http://www.detik.com/images/content/2010/04/05/471/20100405-bambang-l.jpg - DIRECT/203.190.242.69 image/jpeg
                        1270463759.867    46 192.168.100.245 TCP_MISS/200 2465 GET http://www.detik.com/image/logolewatmana.gif - DIRECT/203.190.241.43 image/gif
                        1270463759.867  4252 192.168.100.245 TCP_MISS/200 11074 GET http://www.detik.com/images/content/2010/04/05/157/covernababan.jpg - DIRECT/203.190.241.43 image/jpeg
                        1270463759.909    29 192.168.100.245 TCP_MISS/200 586 GET http://www.detik.com/image/arrow_up.gif - DIRECT/203.190.241.43 image/gif
                        1270463759.923    43 192.168.100.245 TCP_MISS/200 1303 GET http://www.detik.com

                      saya tambahkan baris di dalam squid.inc untuk menyamakan dengan squid.conf

                      baris di squid.conf
                      http_port 192.168.100.1:80 transparent
                      http_port 127.0.0.1:3128 transparent

                      trus di squid.inc

                      if (($settings['transparent_proxy'] == 'on')) {
                      		$conf .= "http_port 192.168.100.1:80 transparent\n";
                      
                      if (($settings['transparent_proxy'] == 'on')) {
                      		$conf .= "http_port 127.0.0.1:3128 transparent\n";
                      

                      mohon tanggapannya jika code itu legal…thx

                      1 Reply Last reply Reply Quote 0
                      • G
                        grage95
                        last edited by

                        setelah set, restart webconfigurator

                        DONOT CONFIG on squid.conf !!!

                        cek on console :

                        pfctl -sn
                        sockstat |grep 3128

                        namun munclu unknown setelah perintah tail -f/var/squid/log/access.log cache.log

                        yang benar  tail -f  /var/squid/log/access.log cache.log
                        (ada spasinya)

                        sudah enable log di webgui ?

                        from : http://wiki.squid-cache.org/SquidFaq/CompleteFaq
                        silahkan di hapalkan :)

                        The TCP_ codes refer to requests on the HTTP port (usually 3128). The UDP_ codes refer to requests on the ICP port (usually 3130). If ICP logging was disabled using the log_icp_queries option, no ICP replies will be logged.

                        The following result codes were taken from a Squid-2, compare with the log_type enum in src/enums.h:

                        TCP_HIT A valid copy of the requested object was in the cache.

                        TCP_MISS The requested object was not in the cache.

                        TCP_REFRESH_HIT The requested object was cached but STALE. The IMS query for the object resulted in "304 not modified".

                        TCP_REFRESH_FAIL_HIT The requested object was cached but STALE. The IMS query failed and the stale object was delivered.

                        TCP_REFRESH_MISS The requested object was cached but STALE. The IMS query returned the new content.

                        TCP_CLIENT_REFRESH_MISS The client issued a "no-cache" pragma, or some analogous cache control command along with the request. Thus, the cache has to refetch the object.

                        TCP_IMS_HIT The client issued an IMS request for an object which was in the cache and fresh.

                        TCP_SWAPFAIL_MISS The object was believed to be in the cache, but could not be accessed.

                        TCP_NEGATIVE_HIT Request for a negatively cached object, e.g. "404 not found", for which the cache believes to know that it is inaccessible. Also refer to the explainations for negative_ttl in your squid.conf file.

                        TCP_MEM_HIT A valid copy of the requested object was in the cache and it was in memory, thus avoiding disk accesses.

                        TCP_DENIED Access was denied for this request.

                        TCP_OFFLINE_HIT The requested object was retrieved from the cache during offline mode. The offline mode never validates any object, see offline_mode in squid.conf file.

                        TCP_STALE_HIT The object was cached and served stale. This is usually caused by stale-while-revalidate or stale-if-error.

                        TCP_ASYNC_HIT A background request (e.g., one started by stale-while-revalidate) resulted in a refresh hit.

                        TCP_ASYNC_MISS A background request (e.g., one started by stale-while-revalidate) resulted in a miss; i.e., the cached object (if any) was updated).

                        UDP_HIT A valid copy of the requested object was in the cache.

                        UDP_MISS The requested object is not in this cache.

                        UDP_DENIED Access was denied for this request.

                        UDP_INVALID An invalid request was received.

                        UDP_MISS_NOFETCH During "-Y" startup, or during frequent failures, a cache in hit only mode will return either UDP_HIT or this code. Neighbours will thus only fetch hits.

                        NONE Seen with errors and cachemgr requests.

                        The following codes are no longer available in Squid-2:

                        ERR_* Errors are now contained in the status code.

                        TCP_CLIENT_REFRESH See: TCP_CLIENT_REFRESH_MISS.

                        TCP_SWAPFAIL See: TCP_SWAPFAIL_MISS.

                        TCP_IMS_MISS Deleted, now replaced with TCP_IMS_HIT.

                        UDP_HIT_OBJ Refers to an old version that would send cache hits in ICP replies. No longer implemented.

                        UDP_RELOADING See: UDP_MISS_NOFETCH.

                        1 Reply Last reply Reply Quote 0
                        • V
                          victor_manado
                          last edited by

                          kekekekekekeke    mau hapalkan itu semua om…..hahahahahaha
                          mustahil kebanyakan bahasa planet...
                          nyerah deh om...
                          setelah di restart konfigurasinya balik ke awal
                          ini hasil sockstat |grep 3128

                          sockstat |grep 3128

                          proxy    squid      896  18 tcp4  192.168.100.1:3128    :

                          pfctl -sn juga hasilnya kembali ke awal....nda ngerti salahnya dimana ::)

                          ;D

                          mungkin ada yg bisa bantu luruskan...?silahkan.......

                          1 Reply Last reply Reply Quote 0
                          • I
                            ipoelnet
                            last edited by

                            1. system -> general setup :

                            webGUI protocol : HTTP
                            webGUI port : 81

                            2. Edit /usr/local/pkg/squid.inc

                            foreach (explode(",", $ifaces) as $i => $iface) {
                            $real_ifaces[] = squid_get_real_interface_address($iface);
                            if($real_ifaces[$i][0]) {
                            $conf .= "http_port {$real_ifaces[$i][0]}:$port transparent\n";
                            }
                            }
                            if (($settings['transparent_proxy'] == 'on')) {
                            $conf .= "http_port 127.0.0.1:80\n";
                            }

                            ….........

                            foreach ($ifaces as $iface) {
                            $rules .= "rdr on $iface proto tcp from any to !($iface) port 80 -> ip pf anda port 80\n";
                            }
                            /* Handle PPPOE case /
                            if($config['pppoe']['mode'] == "server" && $config['pppoe']['localip']) {
                            $rules .= "rdr on $PPPOE_ALIAS proto tcp from any to !127.0.0.1 port 80 -> ip pf anda port 80\n";
                            }
                            /
                            Handle PPTP case */
                            if($config['pptpd']['mode'] == "server" && $config['pptpd']['localip']) {
                            $rules .= "rdr on $PPTP_ALIAS proto tcp from any to !127.0.0.1 port 80 -> ip pf anda port 80\n";
                            }
                            $rules .= "\n";

                            3. Services -> Proxy server -> General settings :

                            Proxy port : 80

                            Iso cak, Asal sesuai aturan | Belajarlah seperti orang bodoh

                            1 Reply Last reply Reply Quote 0
                            • V
                              victor_manado
                              last edited by

                              om Ipoel,,,sekalian dicopykan squid.inc dan squid.conf nya om ipoel….sebagain bhn perbandingan untuk dikoleksi...thanks

                              1 Reply Last reply Reply Quote 0
                              • Z
                                zchellpy
                                last edited by

                                main ke forum mikrotik ato forum linux.or.id baru balik lagi kesini dijamin langsung ngerti soalnya disini rata2 orang yg udah paham routing dan sudah lama di forum2 yg diatas beda dengan kita yg baru tau dasar2 nya aja…..

                                1 Reply Last reply Reply Quote 0
                                • First post
                                  Last post
                                Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.