Hello,
I have the following ACLs:
acl block_domain dstdomain "/opt/squid-master/etc/block.txt"
http_access deny block_domain
block.txt has the following content:
# Blokkeer domein
.gator.com
.webads.nl
.doubleclick.net
The http_access rule is the first rule in the access rules, so there's no
previous rule that could grant access.
When I search for 'gator.com' in the access log, I see the following:
1143528173.138 1235254 10.36.74.44 TCP_DENIED/403 1318 POST
http://gbs.gator.com/gbs/gbs.dll? - NONE/- text/html
1143528173.138 1160166 10.36.74.44 TCP_DENIED/403 1318 POST
http://gbs.gator.com/gbs/gbs.dll? - NONE/- text/html
1143528173.138 783930 10.36.74.44 TCP_DENIED/403 1318 POST
http://gbs.gator.com/gbs/gbs.dll? - NONE/- text/html
1143528173.138 708776 10.36.74.44 TCP_DENIED/403 1318 POST
http://gbs.gator.com/gbs/gbs.dll? - NONE/- text/html
1143528173.138 859393 10.36.74.44 TCP_DENIED/403 1318 POST
http://gbs.gator.com/gbs/gbs.dll? - NONE/- text/html
1143528173.138 1256918 10.36.74.44 TCP_DENIED/403 1306 POST
http://rs.gator.com/rs.dll? - NONE/- text/html
1143528173.138 968166 10.36.74.44 TCP_DENIED/403 1318 POST
http://gbs.gator.com/gbs/gbs.dll? - NONE/- text/html
1143528253.117 1 10.41.0.83 TCP_DENIED/403 1394 GET
http://gatorcme.gator.com/gatorcme/autoupdate/installprecisiontime.exe? -
NONE/- text/html
1143528253.143 1 10.41.0.83 TCP_DENIED/403 1380 GET
http://gatorcme.gator.com/gatorcme/autoupdate/precisiontime.ini? - NONE/-
text/html
Why are the deny times for some of the requests so high? All these long
denies come from one client by the way, is there something misconfigured
at that client? Since this is a WAN proxy, I have no idea what that client
is (local browser or site proxy), and I have no influence on its
behaviour.
Joost
Received on Mon Mar 27 2006 - 23:58:05 MST
This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:04 MST