RE: [squid-users] only "Access Denied" error to log?

Monty,

There was a similar question a while back like this:
______________________________________________________________
Subject: Re: [squid-users] NTLM Authentication / access.log
tis 2006-10-03 klockan 20:11 +0200 skrev Tino Reichardt:

> is there a way to deny the logging of the 407/DENIED or 403/DENIED
> requests to squid.

Good question. May be possible using the rep_header acl looking for the X-Squid-Error header. But haven't verified.

Regards
Henrik
_______________________________________________________________

Maybe there's a clue there, though I wasn't able to avoid logging 407 with the above suggestion, but I don't really know enough to make a good try anyway.

I am able to remove 407 from my daily logs after the fact though using the following command on my access.log:

cat /var/log/squid/access.log | grep -v 'TCP.*407 ' > /var/log/squid/access_no_407.log

I'm guessing you can do something similar to show ONLY 403 errors?

If you don't need this info real-time maybe this would work for you also.

I'd still like to be able to have my log file ignore 407 error on the fly though, as with NTLM auth it uses up something like 1/3 of the total log size.

Geoff

-----Original Message-----
From: Monty Ree [mailto:chulmin2@hotmail.com]
Sent: Thursday, November 30, 2006 5:38 AM
To: squid-users@squid-cache.org
Subject: [squid-users] only "Access Denied" error to log?

Hello, all.

I would like to leave logs only "Access Denied" 403(forbidden) error
related.
Anyone who can help me?
How can I set squid.conf to leave only "Access Denied" error to log file?

Thanks for your help in advance.

_________________________________________________________________
오늘 무슨 일이 생길까 궁금하시죠? MSN 운세에서 확인하세요.
http://fortune.msn.co.kr/
Received on Thu Nov 30 2006 - 11:26:22 MST