Navigation

    Netgate Discussion Forum
    • Register
    • Login
    • Search
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search

    Squid no chachea

    Español
    2
    4
    2729
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • T
      trasher mx last edited by

      Buen dia a todos, pues eso….. squid no cachea.

      El uso de memoria no crece, deduzco que no esta haciendo su labor.

      Segui la documentacion para wpad y evitarme hacer las configuraciones manuales en cada nodo de red; cuando hago un:

      sockstat -4 | grep 3128

      roxy    squid      19681 18 tcp4   192.168.5.254:3128    *:*
proxy    squid      19681 23 tcp4   192.168.5.254:3128    192.168.5.110:50921
proxy    squid      19681 26 tcp4   192.168.5.254:3128    192.168.5.110:50925
proxy    squid      19681 30 tcp4   192.168.5.254:3128    192.168.5.110:50560
proxy    squid      19681 36 tcp4   192.168.5.254:3128    192.168.5.110:50913
?        ?          ?     ?  tcp4   192.168.5.254:3128    192.168.5.110:50914
?        ?          ?     ?  tcp4   192.168.5.254:3128    192.168.5.110:50916
?        ?          ?     ?  tcp4   192.168.5.254:3128    192.168.5.110:50915

      Solo veo esa maquina, y eso porque lo configure manual. Todas las demás nada.

      access.log arroja:

      1438889167.512    409 192.168.5.110 TCP_MISS/200 4579 GET http://ib.adnxs.com/ttj? - DIRECT/68.67.129.35 application/javascript
1438889167.696    131 192.168.5.110 TCP_MISS/200 296 GET http://pixelus.alephd.com/post_msft? - DIRECT/50.7.70.146 application/javascript
1438889167.733   2396 192.168.5.110 TCP_MISS/200 6936 CONNECT ajax.aspnetcdn.com:443 - DIRECT/93.184.215.200 -
1438889167.882   2544 192.168.5.110 TCP_MISS/200 771 CONNECT apps.skype.com:443 - DIRECT/23.203.148.203 -
1438889168.827    943 192.168.5.110 TCP_MISS/200 4777 CONNECT flex.msn.com:443 - DIRECT/131.253.34.162 -
1438889178.186  10448 192.168.5.110 TCP_MISS/200 3165 CONNECT secure.adnxs.com:443 - DIRECT/68.67.128.231 -
1438889195.505    253 192.168.5.110 TCP_MISS/304 557 GET http://mscrl.microsoft.com/pki/mscorp/crl/MSIT%20Machine%20Auth%20CA%202(1).crl - DIRECT/93.184.215.200 -
1438889224.866 181480 192.168.5.121 TCP_MISS/200 4605 CONNECT gs-loc.apple.com:443 - DIRECT/17.167.192.152 -
1438889231.714 1423878 192.168.5.110 TCP_MISS/200 3372 CONNECT bay403-m.hotmail.com:443 - DIRECT/207.46.101.8 -
1438889289.934 123817 192.168.5.110 TCP_MISS/200 4369 CONNECT rad.msn.com:443 - DIRECT/65.55.2.6 -

      El 95 % de lineas arroja MISS algunos GET, pero minimos entiendo que tienen que decir HIT cuando squid sirve el archivo.

      cache.log

      2015/07/31 00:00:03| ctx: exit level  0
2015/07/31 00:00:03| storeDirWriteCleanLogs: Starting...
2015/07/31 00:00:03|   Finished.  Wrote 873 entries.
2015/07/31 00:00:03|   Took 0.00 seconds (717927.63 entries/sec).
2015/07/31 00:00:03| logfileRotate: /var/squid/logs/access.log
2015/07/31 09:25:38| Preparing for shutdown after 20908 requests
2015/07/31 09:25:38| Waiting 3 seconds for active connections to finish
2015/07/31 09:25:38| FD 22 Closing HTTP connection
2015/07/31 09:25:42| Shutting down...
2015/07/31 09:25:42| FD 23 Closing ICP connection
2015/07/31 09:25:42| basic/auth_basic.cc(97) done: Basic authentication Shutdown.
2015/07/31 09:25:42| Closing unlinkd pipe on FD 17
2015/07/31 09:25:42| storeDirWriteCleanLogs: Starting...
2015/07/31 09:25:42|   Finished.  Wrote 873 entries.
2015/07/31 09:25:42|   Took 0.02 seconds (58107.03 entries/sec).
CPU Usage: 230.167 seconds = 57.032 user + 173.135 sys
Maximum Resident Size: 123464 KB
Page faults with physical i/o: 0
2015/07/31 09:25:42| Open FD UNSTARTED    11 DNS Socket IPv6
2015/07/31 09:25:42| Open FD READ/WRITE   12 DNS Socket IPv4
2015/07/31 09:25:42| Open FD READING      16 Reading next request
2015/07/31 09:25:42| Open FD UNSTARTED    23 ICP Socket
2015/07/31 09:25:42| Open FD READ/WRITE   26 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE   28 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE   29 tiles.services.mozilla.com:443
2015/07/31 09:25:42| Open FD WRITING      30 http://notifications-4.mercadolibre.com/jms/mlm/listen?notified
2015/07/31 09:25:42| Open FD READ/WRITE   32 hades.*****.com idle connection
2015/07/31 09:25:42| Open FD READ/WRITE   33 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE   34 safebrowsing.google.com:443
2015/07/31 09:25:42| Open FD READ/WRITE   35 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE   36 hades.com:8080
2015/07/31 09:25:42| Open FD READ/WRITE   37 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE   38 hades.com:8080
2015/07/31 09:25:42| Open FD READ/WRITE   39 http://notifications-4.mercadolibre.com/jms/mlm/listen?notified
2015/07/31 09:25:42| Open FD READ/WRITE   48 http://notifications-5.mercadolibre.com/jms/mlm/listen?notified
2015/07/31 09:25:42| Open FD READ/WRITE   88 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE  118 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE  119 bay403-m.hotmail.com:443
2015/07/31 09:25:42| Open FD READ/WRITE  132 Reading next request
2015/07/31 09:25:42| Open FD READ/WRITE  213 http://ping.chartbeat.net/ping?h=cnnexpansion.com&p=%2Feconomia
2015/07/31 09:25:42| Squid Cache (Version 3.1.22): Exiting normally.
2015/07/31 09:25:45| Starting Squid Cache version 3.1.22 for amd64-portbld-freebsd8.3...
2015/07/31 09:25:45| Process ID 19681
2015/07/31 09:25:45| With 11095 file descriptors available
2015/07/31 09:25:45| Initializing IP Cache...
2015/07/31 09:25:45| DNS Socket created at [::], FD 14
2015/07/31 09:25:45| DNS Socket created at 0.0.0.0, FD 15
2015/07/31 09:25:45| Adding domain ****.com from /etc/resolv.conf
2015/07/31 09:25:45| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2015/07/31 09:25:45| Adding nameserver 8.8.8.8 from /etc/resolv.conf
2015/07/31 09:25:45| Adding nameserver 8.8.4.4 from /etc/resolv.conf
2015/07/31 09:25:45| User-Agent logging is disabled.
2015/07/31 09:25:45| Referer logging is disabled.
2015/07/31 09:25:45| Unlinkd pipe opened on FD 22
2015/07/31 09:25:45| Local cache digest enabled; rebuild/rewrite every 3600/3600 sec
2015/07/31 09:25:45| Store logging disabled
2015/07/31 09:25:45| Swap maxSize 30720000 + 3145728 KB, estimated 2605056 objects
2015/07/31 09:25:45| Target number of buckets: 130252
2015/07/31 09:25:45| Using 131072 Store buckets
2015/07/31 09:25:45| Max Mem  size: 3145728 KB
2015/07/31 09:25:45| Max Swap size: 30720000 KB
2015/07/31 09:25:45| Version 1 of swap file with LFS support detected... 
2015/07/31 09:25:45| Rebuilding storage in /var/squid/cache (CLEAN)
2015/07/31 09:25:45| Using Least Load store dir selection
2015/07/31 09:25:45| Current Directory is /etc
2015/07/31 09:25:45| Loaded Icons.
2015/07/31 09:25:45| helperOpenServers: Starting 0/0 'ssl_crtd' processes
2015/07/31 09:25:45| helperOpenServers: No 'ssl_crtd' processes needed.
2015/07/31 09:25:45| Accepting  HTTP connections at 192.168.5.254:3128, FD 25.
2015/07/31 09:25:45| Accepting ICP messages at [::]:7, FD 26.
2015/07/31 09:25:45| HTCP Disabled.
2015/07/31 09:25:45| Ready to serve requests.
2015/07/31 09:25:45| Done reading /var/squid/cache swaplog (873 entries)
2015/07/31 09:25:45| Finished rebuilding storage from disk.
2015/07/31 09:25:45|       873 Entries scanned
2015/07/31 09:25:45|         0 Invalid entries.
2015/07/31 09:25:45|         0 With invalid flags.
2015/07/31 09:25:45|       873 Objects loaded.
2015/07/31 09:25:45|         0 Objects expired.
2015/07/31 09:25:45|         0 Objects cancelled.
2015/07/31 09:25:45|         0 Duplicate URLs purged.
2015/07/31 09:25:45|         0 Swapfile clashes avoided.
2015/07/31 09:25:45|   Took 0.01 seconds (128628.26 objects/sec).
2015/07/31 09:25:45| Beginning Validation Procedure
2015/07/31 09:25:45|   Completed Validation Procedure
2015/07/31 09:25:45|   Validated 1771 Entries
2015/07/31 09:25:45|   store_swap_size = 13586
2015/07/31 09:25:46| storeLateRelease: released 0 objects
2015/07/31 10:21:37| logfileOpen: /var/log/squid/netdb.state: (2) No such file or directory
2015/07/31 10:21:37| netdbSaveState: /var/log/squid/netdb.state: (2) No such file or directory
2015/07/31 10:42:38| TunnelStateData::Connection::error: FD 39: read/write failure: (32) Broken pipe
2015/08/01 10:16:17| TunnelStateData::Connection::error: FD 115: read/write failure: (32) Broken pipe
2015/08/03 18:43:26| TunnelStateData::Connection::error: FD 38: read/write failure: (32) Broken pipe
2015/08/04 10:17:12| ctx: enter level  0: 'http://hades.com:3000/192.168.5.50.html'
2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:12| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:18| ctx: exit level  0
2015/08/04 10:17:18| ctx: enter level  0: 'http://hades.com:3000/192.168.5.189.html'
2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:17:18| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:19:06| ctx: exit level  0
2015/08/04 10:19:06| ctx: enter level  0: 'http://hadescom:3000/192.168.5.189.html'
2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 10:19:06| WARNING: unparseable HTTP header field {HTTP/1.0 200 OK}
2015/08/04 14:49:42| ctx: exit level  0
2015/08/04 14:49:42| TunnelStateData::Connection::error: FD 46: read/write failure: (32) Broken pipe
2015/08/04 14:57:52| TunnelStateData::Connection::error: FD 59: read/write failure: (32) Broken pipe
2015/08/04 16:48:32| TunnelStateData::Connection::error: FD 104: read/write failure: (32) Broken pipe
2015/08/05 10:45:57| SECURITY ALERT: Missing hostname in URL 'http://'. see access.log for details.
2015/08/05 13:18:28| SECURITY ALERT: Missing hostname in URL 'http://'. see access.log for details.
2015/08/05 13:23:10| SECURITY ALERT: Missing hostname in URL 'http://'. see access.log for details.
2015/08/06 14:25:35| Reconfiguring Squid Cache (version 3.1.22)...
2015/08/06 14:25:35| FD 25 Closing HTTP connection
2015/08/06 14:25:35| FD 26 Closing ICP connection
2015/08/06 14:25:35| Processing Configuration File: /usr/pbi/squid-amd64/etc/squid/squid.conf (depth 0)
2015/08/06 14:25:35| WARNING: refresh_pattern maximum age too high. Cropped back to 1 year.
2015/08/06 14:25:35| Cache dir '/var/squid/cache' size changed to 3072000 KB
2015/08/06 14:25:35| WARNING: use of 'override-expire' in 'refresh_pattern' violates HTTP
2015/08/06 14:25:35| WARNING: use of 'reload-into-ims' in 'refresh_pattern' violates HTTP
2015/08/06 14:25:35| WARNING: use of 'ignore-no-cache' in 'refresh_pattern' violates HTTP
2015/08/06 14:25:35| WARNING: use of 'ignore-private' in 'refresh_pattern' violates HTTP
2015/08/06 14:25:35| Initializing https proxy context
2015/08/06 14:25:35| Store logging disabled
2015/08/06 14:25:35| User-Agent logging is disabled.
2015/08/06 14:25:35| Referer logging is disabled.
2015/08/06 14:25:35| DNS Socket created at [::], FD 15
2015/08/06 14:25:35| DNS Socket created at 0.0.0.0, FD 16
2015/08/06 14:25:35| Adding domain *****.com from /etc/resolv.conf
2015/08/06 14:25:35| Adding nameserver 127.0.0.1 from /etc/resolv.conf
2015/08/06 14:25:35| Adding nameserver 8.8.8.8 from /etc/resolv.conf
2015/08/06 14:25:35| Adding nameserver 8.8.4.4 from /etc/resolv.conf
2015/08/06 14:25:35| helperOpenServers: Starting 0/0 'ssl_crtd' processes
2015/08/06 14:25:35| helperOpenServers: No 'ssl_crtd' processes needed.
2015/08/06 14:25:35| Accepting  HTTP connections at 192.168.5.254:3128, FD 18.
2015/08/06 14:25:35| Accepting ICP messages at [::]:7, FD 19.
2015/08/06 14:25:35| HTCP Disabled.
2015/08/06 14:25:35| Loaded Icons.
2015/08/06 14:25:35| Ready to serve requests.
      1 Reply Last reply Reply Quote 0
      • periko
        periko last edited by

        Tienes un dia que si cargo tus objetos:

        2015/07/31 09:25:45| Done reading /var/squid/cache swaplog (873 entries)
        2015/07/31 09:25:45| Finished rebuilding storage from disk.
        2015/07/31 09:25:45|      873 Entries scanned
        2015/07/31 09:25:45|        0 Invalid entries.
        2015/07/31 09:25:45|        0 With invalid flags.
        2015/07/31 09:25:45|      873 Objects loaded.
        2015/07/31 09:25:45|        0 Objects expired.
        2015/07/31 09:25:45|        0 Objects cancelled.
        2015/07/31 09:25:45|        0 Duplicate URLs purged.
        2015/07/31 09:25:45|        0 Swapfile clashes avoided.
        2015/07/31 09:25:45|  Took 0.01 seconds (128628.26 objects/sec).

        De ahi los demas dias nada, pero lo que haria es borrar el cache y volver a generarlo.

        Los dominios mostrados poco cache te daran, entra a freebsd.org por ejemplo de ahi varios objetos si se cachean.

        Yo abro 3 navegadores y entro a las mismas paginas.

        A ver como te va, saludos.

        1 Reply Last reply Reply Quote 0
        • T
          trasher mx last edited by

          igual…..

          Alguna sugerencia sobre WPAD ?

          1 Reply Last reply Reply Quote 0
          • periko
            periko last edited by

            WPAD a veces se pone pesado.

            Mira lo que ha veces necesito hacer es como la mayoria de las redes son windows pues a limpiar caches de los navegadores como:

            ccleaner

            Recuerda que cada navegador maneja sus caches y ahi es donde a veces el wpad falla, no me ha tocado que con otros apaches choque solo lo anterior.

            A ver si te sirve, saludos.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post

            Products

            • Platform Overview
            • TNSR
            • pfSense Plus
            • Appliances

            Services

            • Training
            • Professional Services

            Support

            • Subscription Plans
            • Contact Support
            • Product Lifecycle
            • Documentation

            News

            • Media Coverage
            • Press
            • Events

            Resources

            • Blog
            • FAQ
            • Find a Partner
            • Resource Library
            • Security Information

            Company

            • About Us
            • Careers
            • Partners
            • Contact Us
            • Legal
            Our Mission

            We provide leading-edge network security at a fair price - regardless of organizational size or network sophistication. We believe that an open-source security model offers disruptive pricing along with the agility required to quickly address emerging threats.

            Subscribe to our Newsletter

            Product information, software announcements, and special offers. See our newsletter archive to sign up for future newsletters and to read past announcements.

            © 2021 Rubicon Communications, LLC | Privacy Policy