Squid no chachea



  • Buen dia a todos, pues eso….. squid no cachea.

    El uso de memoria no crece, deduzco que no esta haciendo su labor.

    Segui la documentacion para wpad y evitarme hacer las configuraciones manuales en cada nodo de red; cuando hago un:

    sockstat -4 | grep 3128

    roxy    squid      19681 18 tcp4   192.168.5.254:3128    *:*
    proxy    squid      19681 23 tcp4   192.168.5.254:3128    192.168.5.110:50921
    proxy    squid      19681 26 tcp4   192.168.5.254:3128    192.168.5.110:50925
    proxy    squid      19681 30 tcp4   192.168.5.254:3128    192.168.5.110:50560
    proxy    squid      19681 36 tcp4   192.168.5.254:3128    192.168.5.110:50913
    ?        ?          ?     ?  tcp4   192.168.5.254:3128    192.168.5.110:50914
    ?        ?          ?     ?  tcp4   192.168.5.254:3128    192.168.5.110:50916
    ?        ?          ?     ?  tcp4   192.168.5.254:3128    192.168.5.110:50915
    
    

    Solo veo esa maquina, y eso porque lo configure manual. Todas las demás nada.

    access.log arroja:

    1438889167.512    409 192.168.5.110 TCP_MISS/200 4579 GET http://ib.adnxs.com/ttj? - DIRECT/68.67.129.35 application/javascript
    1438889167.696    131 192.168.5.110 TCP_MISS/200 296 GET http://pixelus.alephd.com/post_msft? - DIRECT/50.7.70.146 application/javascript
    1438889167.733   2396 192.168.5.110 TCP_MISS/200 6936 CONNECT ajax.aspnetcdn.com:443 - DIRECT/93.184.215.200 -
    1438889167.882   2544 192.168.5.110 TCP_MISS/200 771 CONNECT apps.skype.com:443 - DIRECT/23.203.148.203 -
    1438889168.827    943 192.168.5.110 TCP_MISS/200 4777 CONNECT flex.msn.com:443 - DIRECT/131.253.34.162 -
    1438889178.186  10448 192.168.5.110 TCP_MISS/200 3165 CONNECT secure.adnxs.com:443 - DIRECT/68.67.128.231 -
    1438889195.505    253 192.168.5.110 TCP_MISS/304 557 GET http://mscrl.microsoft.com/pki/mscorp/crl/MSIT%20Machine%20Auth%20CA%202(1).crl - DIRECT/93.184.215.200 -
    1438889224.866 181480 192.168.5.121 TCP_MISS/200 4605 CONNECT gs-loc.apple.com:443 - DIRECT/17.167.192.152 -
    1438889231.714 1423878 192.168.5.110 TCP_MISS/200 3372 CONNECT bay403-m.hotmail.com:443 - DIRECT/207.46.101.8 -
    1438889289.934 123817 192.168.5.110 TCP_MISS/200 4369 CONNECT rad.msn.com:443 - DIRECT/65.55.2.6 -
    
    

    El 95 % de lineas arroja MISS algunos GET, pero minimos entiendo que tienen que decir HIT cuando squid sirve el archivo.

    cache.log

    2015/07/31 00:00:03| ctx: exit level  0
    2015/07/31 00:00:03| storeDirWriteCleanLogs: Starting...
    2015/07/31 00:00:03|   Finished.  Wrote 873 entries.
    2015/07/31 00:00:03|   Took 0.00 seconds (717927.63 entries/sec).
    2015/07/31 00:00:03| logfileRotate: /var/squid/logs/access.log
    2015/07/31 09:25:38| Preparing for shutdown after 20908 requests
    2015/07/31 09:25:38| Waiting 3 seconds for active connections to finish
    2015/07/31 09:25:38| FD 22 Closing HTTP connection
    2015/07/31 09:25:42| Shutting down...
    2015/07/31 09:25:42| FD 23 Closing ICP connection
    2015/07/31 09:25:42| basic/auth_basic.cc(97) done: Basic authentication Shutdown.
    2015/07/31 09:25:42| Closing unlinkd pipe on FD 17
    2015/07/31 09:25:42| storeDirWriteCleanLogs: Starting...
    2015/07/31 09:25:42|   Finished.  Wrote 873 entries.
    2015/07/31 09:25:42|   Took 0.02 seconds (58107.03 entries/sec).
    CPU Usage: 230.167 seconds = 57.032 user + 173.135 sys
    Maximum Resident Size: 123464 KB
    Page faults with physical i/o: 0
    2015/07/31 09:25:42| Open FD UNSTARTED    11 DNS Socket IPv6
    2015/07/31 09:25:42| Open FD READ/WRITE   12 DNS Socket IPv4
    2015/07/31 09:25:42| Open FD READING      16 Reading next request
    2015/07/31 09:25:42| Open FD UNSTARTED    23 ICP Socket
    2015/07/31 09:25:42| Open FD READ/WRITE   26 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE   28 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE   29 tiles.services.mozilla.com:443
    2015/07/31 09:25:42| Open FD WRITING      30 http://notifications-4.mercadolibre.com/jms/mlm/listen?notified
    2015/07/31 09:25:42| Open FD READ/WRITE   32 hades.*****.com idle connection
    2015/07/31 09:25:42| Open FD READ/WRITE   33 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE   34 safebrowsing.google.com:443
    2015/07/31 09:25:42| Open FD READ/WRITE   35 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE   36 hades.com:8080
    2015/07/31 09:25:42| Open FD READ/WRITE   37 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE   38 hades.com:8080
    2015/07/31 09:25:42| Open FD READ/WRITE   39 http://notifications-4.mercadolibre.com/jms/mlm/listen?notified
    2015/07/31 09:25:42| Open FD READ/WRITE   48 http://notifications-5.mercadolibre.com/jms/mlm/listen?notified
    2015/07/31 09:25:42| Open FD READ/WRITE   88 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE  118 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE  119 bay403-m.hotmail.com:443
    2015/07/31 09:25:42| Open FD READ/WRITE  132 Reading next request
    2015/07/31 09:25:42| Open FD READ/WRITE  213 http://ping.chartbeat.net/ping?h=cnnexpansion.com&p=%2Feconomia
    2015/07/31 09:25:42| Squid Cache (Version 3.1.22): Exiting normally.
    2015/07/31 09:25:45| Starting Squid Cache version 3.1.22 for amd64-portbld-freebsd8.3...
    2015/07/31 09:25:45| Process ID 19681
    2015/07/31 09:25:45| With 11095 file descriptors available
    2015/07/31 09:25:45| Initializing IP Cache...
    2015/07/31 09:25:45| DNS Socket created at [::], FD 14
    2015/07/31 09:25:45| DNS Socket created at 0.0.0.0, FD 15
    2015/07/31 09:25:45| Adding domain ****.com from /etc/resolv.conf
    2015/07/31 09:25:45| Adding nameserver 127.0.0.1 from /etc/resolv.conf
    2015/07/31 09:25:45| Adding nameserver 8.8.8.8 from /etc/resolv.conf
    2015/07/31 09:25:45| Adding nameserver 8.8.4.4 from /etc/resolv.conf
    2015/07/31 09:25:45| User-Agent logging is disabled.
    2015/07/31 09:25:45| Referer logging is disabled.
    2015/07/31 09:25:45| Unlinkd pipe opened on FD 22
    2015/07/31 09:25:45| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
    2015/07/31 09:25:45| Store logging disabled
    2015/07/31 09:25:45| Swap maxSize 30720000 + 3145728 KB, estimated 2605056 objects
    2015/07/31 09:25:45| Target number of buckets: 130252
    2015/07/31 09:25:45| Using 131072 Store buckets
    2015/07/31 09:25:45| Max Mem  size: 3145728 KB
    2015/07/31 09:25:45| Max Swap size: 30720000 KB
    2015/07/31 09:25:45| Version 1 of swap file with LFS support detected... 
    2015/07/31 09:25:45| Rebuilding storage in /var/squid/cache (CLEAN)
    2015/07/31 09:25:45| Using Least Load store dir selection
    2015/07/31 09:25:45| Current Directory is /etc
    2015/07/31 09:25:45| Loaded Icons.
    2015/07/31 09:25:45| helperOpenServers: Starting 0/0 'ssl_crtd' processes
    2015/07/31 09:25:45| helperOpenServers: No 'ssl_crtd' processes needed.
    2015/07/31 09:25:45| Accepting  HTTP connections at 192.168.5.254:3128, FD 25.
    2015/07/31 09:25:45| Accepting ICP messages at [::]:7, FD 26.
    2015/07/31 09:25:45| HTCP Disabled.
    2015/07/31 09:25:45| Ready to serve requests.
    2015/07/31 09:25:45| Done reading /var/squid/cache swaplog (873 entries)
    2015/07/31 09:25:45| Finished rebuilding storage from disk.
    2015/07/31 09:25:45|       873 Entries scanned
    2015/07/31 09:25:45|         0 Invalid entries.
    2015/07/31 09:25:45|         0 With invalid flags.
    2015/07/31 09:25:45|       873 Objects loaded.
    2015/07/31 09:25:45|         0 Objects expired.
    2015/07/31 09:25:45|         0 Objects cancelled.
    2015/07/31 09:25:45|         0 Duplicate URLs purged.
    2015/07/31 09:25:45|         0 Swapfile clashes avoided.
    2015/07/31 09:25:45|   Took 0.01 seconds (128628.26 objects/sec).
    2015/07/31 09:25:45| Beginning Validation Procedure
    2015/07/31 09:25:45|   Completed Validation Procedure
    2015/07/31 09:25:45|   Validated 1771 Entries
    2015/07/31 09:25:45|   store_swap_size = 13586
    2015/07/31 09:25:46| storeLateRelease: released 0 objects
    2015/07/31 10:21:37| logfileOpen: /var/log/squid/netdb.state: (2) No such file or directory
    2015/07/31 10:21:37| netdbSaveState: /var/log/squid/netdb.state: (2) No such file or directory
    2015/07/31 10:42:38| TunnelStateData::Connection::error: FD 39: read/write failure: (32) Broken pipe
    2015/08/01 10:16:17| TunnelStateData::Connection::error: FD 115: read/write failure: (32) Broken pipe
    2015/08/03 18:43:26| TunnelStateData::Connection::error: FD 38: read/write failure: (32) Broken pipe
    2015/08/04 10:17:12| ctx: enter level  0: 'http://hades.com:3000/192.168.5.50.html'
    2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:18| ctx: exit level  0
    2015/08/04 10:17:18| ctx: enter level  0: 'http://hades.com:3000/192.168.5.189.html'
    2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:19:06| ctx: exit level  0
    2015/08/04 10:19:06| ctx: enter level  0: 'http://hadescom:3000/192.168.5.189.html'
    2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
    2015/08/04 14:49:42| ctx: exit level  0
    2015/08/04 14:49:42| TunnelStateData::Connection::error: FD 46: read/write failure: (32) Broken pipe
    2015/08/04 14:57:52| TunnelStateData::Connection::error: FD 59: read/write failure: (32) Broken pipe
    2015/08/04 16:48:32| TunnelStateData::Connection::error: FD 104: read/write failure: (32) Broken pipe
    2015/08/05 10:45:57| SECURITY ALERT: Missing hostname in URL 'http://'. see access.log for details.
    2015/08/05 13:18:28| SECURITY ALERT: Missing hostname in URL 'http://'. see access.log for details.
    2015/08/05 13:23:10| SECURITY ALERT: Missing hostname in URL 'http://'. see access.log for details.
    2015/08/06 14:25:35| Reconfiguring Squid Cache (version 3.1.22)...
    2015/08/06 14:25:35| FD 25 Closing HTTP connection
    2015/08/06 14:25:35| FD 26 Closing ICP connection
    2015/08/06 14:25:35| Processing Configuration File: /usr/pbi/squid-amd64/etc/squid/squid.conf (depth 0)
    2015/08/06 14:25:35| WARNING: refresh_pattern maximum age too high. Cropped back to 1 year.
    2015/08/06 14:25:35| Cache dir '/var/squid/cache' size changed to 3072000 KB
    2015/08/06 14:25:35| WARNING: use of 'override-expire' in 'refresh_pattern' violates HTTP
    2015/08/06 14:25:35| WARNING: use of 'reload-into-ims' in 'refresh_pattern' violates HTTP
    2015/08/06 14:25:35| WARNING: use of 'ignore-no-cache' in 'refresh_pattern' violates HTTP
    2015/08/06 14:25:35| WARNING: use of 'ignore-private' in 'refresh_pattern' violates HTTP
    2015/08/06 14:25:35| Initializing https proxy context
    2015/08/06 14:25:35| Store logging disabled
    2015/08/06 14:25:35| User-Agent logging is disabled.
    2015/08/06 14:25:35| Referer logging is disabled.
    2015/08/06 14:25:35| DNS Socket created at [::], FD 15
    2015/08/06 14:25:35| DNS Socket created at 0.0.0.0, FD 16
    2015/08/06 14:25:35| Adding domain *****.com from /etc/resolv.conf
    2015/08/06 14:25:35| Adding nameserver 127.0.0.1 from /etc/resolv.conf
    2015/08/06 14:25:35| Adding nameserver 8.8.8.8 from /etc/resolv.conf
    2015/08/06 14:25:35| Adding nameserver 8.8.4.4 from /etc/resolv.conf
    2015/08/06 14:25:35| helperOpenServers: Starting 0/0 'ssl_crtd' processes
    2015/08/06 14:25:35| helperOpenServers: No 'ssl_crtd' processes needed.
    2015/08/06 14:25:35| Accepting  HTTP connections at 192.168.5.254:3128, FD 18.
    2015/08/06 14:25:35| Accepting ICP messages at [::]:7, FD 19.
    2015/08/06 14:25:35| HTCP Disabled.
    2015/08/06 14:25:35| Loaded Icons.
    2015/08/06 14:25:35| Ready to serve requests.
    
    


  • Tienes un dia que si cargo tus objetos:

    2015/07/31 09:25:45| Done reading /var/squid/cache swaplog (873 entries)
    2015/07/31 09:25:45| Finished rebuilding storage from disk.
    2015/07/31 09:25:45|      873 Entries scanned
    2015/07/31 09:25:45|        0 Invalid entries.
    2015/07/31 09:25:45|        0 With invalid flags.
    2015/07/31 09:25:45|      873 Objects loaded.
    2015/07/31 09:25:45|        0 Objects expired.
    2015/07/31 09:25:45|        0 Objects cancelled.
    2015/07/31 09:25:45|        0 Duplicate URLs purged.
    2015/07/31 09:25:45|        0 Swapfile clashes avoided.
    2015/07/31 09:25:45|  Took 0.01 seconds (128628.26 objects/sec).

    De ahi los demas dias nada, pero lo que haria es borrar el cache y volver a generarlo.

    Los dominios mostrados poco cache te daran, entra a freebsd.org por ejemplo de ahi varios objetos si se cachean.

    Yo abro 3 navegadores y entro a las mismas paginas.

    A ver como te va, saludos.



  • igual…..

    Alguna sugerencia sobre WPAD ?



  • WPAD a veces se pone pesado.

    Mira lo que ha veces necesito hacer es como la mayoria de las redes son windows pues a limpiar caches de los navegadores como:

    ccleaner

    Recuerda que cada navegador maneja sus caches y ahi es donde a veces el wpad falla, no me ha tocado que con otros apaches choque solo lo anterior.

    A ver si te sirve, saludos.