Squid Returned to Packages *** PLEASE TEST ***
-
My snapshot at the time of the previous posts was 12-28, however bender wanted to know what my base load was from, that being the 1.0.1 release version and then I upgraded to the snapshot via the firmware upgrade…
-
Since the squid.sh is used by the start, stop and restart service I will not remove that one.
What I have done instead is implement a delay in the proxy monitor script to wait 5 seconds after launhing to trigger a squid start or not.
This is reflected as version p7. I have also moved the proxy start script after our attempt to start it.
-
Enter version p8.
This should have working blacklist support.
MAC acls are removed since they do not work with 2.6Please Test.
-
So does Squid not actually work, or is it only partially working. Sorry for the newb question, but I cannot get the service to start at all. Even after a few installs/reinstalls. Here's what my log keeps displaying:
Jan 10 00:56:28 last message repeated 3 times
Jan 10 00:56:23 php: : SQUID is installed but not started. Not installing redirect rules.
Jan 10 00:56:20 check_reload_status: reloading filter
Jan 10 00:56:15 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:15 php: /pkg_mgr_install.php: Starting Squid
Jan 10 00:56:15 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:15 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:14 check_reload_status: reloading filter
Jan 10 00:56:10 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:09 php: /pkg_mgr_install.php: Creating squid cache subdirs in /var/squid/cache
Jan 10 00:56:09 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:09 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:09 php: /pkg_mgr_install.php: Reloading Squid for configuration sync
Jan 10 00:56:08 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 00:56:08 Squid_Alarm[1469]: Attempting restart…
Jan 10 00:56:08 Squid_Alarm[1467]: Squid has exited. Reconfiguring filter -
I must have fumbled that.
If you remove entries from unrestricted hosts. Does it work then?
-
I just tested this and it works for me.
Does you command output look anything like this?
# grep unrestricted /usr/local/etc/squid/squid.conf acl unrestricted_hosts src "/var/squid/acl/unrestricted_hosts.acl" delay_access 1 deny unrestricted_hosts http_access allow unrestricted_hosts # more "/var/squid/acl/unrestricted_hosts.acl" 10.0.8.19 #
You have a inputted the the hosts as IP addresses and comma seperated, yes?
-
I just installed the package. Checked tranparent proxy, allow users on interface, and enable logging…
-
If you go to the access control page and click save. Does that work for you?
-
That's what I get after that… Again, I am pretty new with this, so what version do I need to have installed...
Jan 10 01:25:35 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 01:25:20 php: : SQUID is installed but not started. Not installing redirect rules.
Jan 10 01:25:20 php: : SQUID is installed but not started. Not installing redirect rules.
Jan 10 01:25:17 check_reload_status: reloading filter
Jan 10 01:25:16 squid: Bungled squid.conf line 60: http_access allow unrestricted_hosts
Jan 10 01:25:16 php: /pkg_edit.php: Starting Squid -
Hello,
after entering IPs in the fields unrestricted hosts, whitelist and blacklist squid is working again for me. Leaving the fields empty does not work.
BTW is there a way to use the blacklists from squid guard (http://squidguard.shalla.de/shallalist.html) where the domains are separated by <cr>and not by commas?</cr>
-
Since the squid.sh is used by the start, stop and restart service I will not remove that one.
What I have done instead is implement a delay in the proxy monitor script to wait 5 seconds after launhing to trigger a squid start or not.
This is reflected as version p7. I have also moved the proxy start script after our attempt to start it.
Thanks for the fix, I will test here in the next day or two!
-
Just started testing version p8. Thanks so much for your efforts on this databeestje - this is a huge feature for many of us :-)
First minor thing I noticed, my squid.conf line 17 now unexpectedly reads:
Allow local network(s) on interface(s)
I don't think that belongs there ;-) This same line appears later in squid.conf, but in that case it is properly commented out. No big deal - just wanted to let you know.
-
I have the same problem as some others - if I leave the Whitelist section empty, I get:
/usr/local/sbin/squid status
2007/01/11 04:01:44| parseConfigFile: line 17 unrecognized: 'Allow local network(s) on interface(s)'
2007/01/11 04:01:44| ACL name 'whitelist' not defined!
FATAL: Bungled squid.conf line 65: http_access allow whitelist
Squid Cache (Version 2.6.STABLE5): Terminated abnormally.if I leave the blacklist section empty, I get:
/usr/local/sbin/squid status
2007/01/11 04:00:00| parseConfigFile: line 17 unrecognized: 'Allow local network(s) on interface(s)'
2007/01/11 04:00:00| ACL name 'blacklist' not defined!
FATAL: Bungled squid.conf line 67: http_access deny blacklist
Squid Cache (Version 2.6.STABLE5): Terminated abnormally.i.e. in either case squid actually stops running, which is a silent failure as far as the webgui is concerned
-
oops!
-
I also had it not working unless I filled out the fields. I found that after adding ip's in the last two (whitelist / blacklist) I could then remove them and leave just a single space and squid would not complain about the squid.conf file. No time to look at it further right now.
-
I have a small update again, it's not that it's a bug, but it's not complete correct
the code:foreach (explode(',', $ifaces) as $i => $iface) { $real_ifaces[] = squid_get_real_interface_address($iface); if($real_ifaces[$i][0]) { if (($settings['transparent_proxy'] == 'on')) { $conf .= "http_port 127.0.0.1:80 transparent\n"; } $conf .= "http_port {$real_ifaces[$i][0]}:$port\n"; } }
should be
if (($settings['transparent_proxy'] == 'on')) { $conf .= "http_port 127.0.0.1:80 transparent\n"; } else { foreach (explode(',', $ifaces) as $i => $iface) { $real_ifaces[] = squid_get_real_interface_address($iface); if($real_ifaces[$i][0]) { $conf .= "http_port {$real_ifaces[$i][0]}:$port\n"; } } }
If you have multiple lan interfaces where you want to run squid on in transparency mode, the old code will add```
http_port 127.0.0.1:80 transparentEvery interface you've selected will be pointed to the localhost later in the script.
-
Just updated to p9 which should generate the incorrect config creation.
Empty blacklist fixing is saved for another day.
-
This is looking great. Thanks so much for all the progress.
I've found one small issue, though it could relate to the malformed blacklist acl. Wildcards do not work. When the original squid plugin was working back when, I could create a white list and enter * as the blacklist. This would only allow traffic to the explicitly named sites.
-
data has been working his ass off on this squid thing where nobody else would work on it including me.
Please show your support and donate to the data fund. Not sure of his paypal account but please, he really has been working hard and deserves a couple cases of beer or wine, etc.
-
Donate money to Seth for no good reason to seth.mos@xs4all.nl