[squid-users] Squid stopped working after update. from MARK ADAMS on 2007-04-05 (squid-users)

From: MARK ADAMS <madams9@dont-contact.us>
Date: Thu, 05 Apr 2007 21:18:19 -0600

Mandriva Linux 2007, Squid Cache: Version 2.6.STABLE1

Here's an odd thing: I ran updates on my server after a rather lengthy
period of not updating -- I hate it when the lying bastage mirrors stop
working, but anyway...

After this lengthy upgrade, Squid updated to ver. 2.6.STABLE1 and stopped
working. The process was still up, but when I configured the browser to use
the proxy, it claimed it couldn't find the proxy I had configured.

I looked at the config files and everything seemed okay. I checked the logs
and it looked like there was a failure related to how it was resolving http.
I'd like to be more articulate about that error, but I punted and
uninstalled/reinstalled squid and squidGuard from the main_update
repositories.

The reinstall went okay and I've modified the new config files so that Squid
and squidGuard run and should be working fine (when did squidGuard become a
"url_rewriter_program"?), but now when I point a browser to a website under
the proxy, it just times out.

I've tried disabling IP tables on client and server, and disabling
squidGuard but nothing has helped.

Here's the config:

http_port 3128
http_port 8080
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl Apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
url_rewrite_program /usr/bin/squidGuard -d -c /etc/squid/squidGuard.conf
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl mynetwork src 192.168.1.0/255.255.255.0
acl alexa src "/etc/squid/bad_1s"
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow mynetwork
acl our_networks src 192.168.1.0/24
http_access allow our_networks
http_access allow localhost
http_reply_access allow all
icp_access allow all
cache_effective_user squid
cache_effective_group squid
visible_hostname shuttle.adams-lan.local
deny_info ERR_CUSTOM_ACCESS_DENIED mynetwork
coredump_dir /var/spool/squid

Logs don't seem to be showing much about squid that I can see:

# tail syslog
Apr 5 12:49:58 shuttle smbd[5948]: getpeername failed. Error was
Transport endpoint is not connected
Apr 5 12:49:58 shuttle smbd[19212]: [2007/04/05 12:49:58, 0]
lib/util_sock.c:get_peer_addr(1229)
Apr 5 12:49:58 shuttle smbd[19212]: getpeername failed. Error was
Transport endpoint is not connected
Apr 5 12:49:58 shuttle smbd[19212]: [2007/04/05 12:49:58, 0]
lib/util_sock.c:write_data(562)
Apr 5 12:49:58 shuttle smbd[19212]: write_data: write failure in writing
to client 0.0.0.0. Error Connection reset by peer
Apr 5 12:49:58 shuttle smbd[19212]: [2007/04/05 12:49:58, 0]
lib/util_sock.c:send_smb(769)
Apr 5 12:49:58 shuttle smbd[19212]: Error writing 4 bytes to client. -1.
(Connection reset by peer)
Apr 5 12:50:01 shuttle crond[19223]: (mail) CMD (/usr/bin/python -S
/usr/lib/mailman/cron/gate_news)
Apr 5 12:51:04 shuttle mon[6299]: failure for servers http 1175799064
localhost
Apr 5 12:54:47 shuttle mon[6299]: failure for servers telnet 1175799287
localhost

Running a "tail -n 1000 /var/log/syslog|grep squid" yields exactly nothing.

The only references in /var/log/messages tell me that the databases are
updating properly:

# tail -n 10000 /var/log/messages|grep squid
Apr 5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squid
Apr 5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squid/admin.acl
Apr 5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squid/config
Apr 5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squidguard
Apr 5 02:16:00 shuttle logger: -
/share/backup/etc/webmin/squidguard/admin.acl
Apr 5 02:16:00 shuttle logger: - /share/backup/etc/webmin/squidguard/config
Apr 5 02:16:26 shuttle logger: - /share/scripts/squid_update.sh
Apr 5 03:01:01 shuttle crond[22881]: (root) CMD
(/etc/squid/blacklist-update all)
Apr 5 04:01:01 shuttle msec: changed mode of
/var/log/squidGuard/squidGuard.log from 660 to 640
Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard from 771
to 751
Apr 5 04:01:01 shuttle msec: changed mode of
/var/log/squidGuard/squidGuard.error from 660 to 640
Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/update.log
from 660 to 640
Apr 5 04:01:01 shuttle msec: changed mode of /var/log/squidGuard/custom.log
from 660 to 640
Apr 5 04:01:01 shuttle msec: changed mode of
/var/log/squidGuard/blocked.log from 660 to 640
Apr 5 04:01:01 shuttle msec: changed mode of
/var/log/squidGuard/advertising.log from 660 to 640

# tail access.log
1175798813.718 1754 192.168.1.100 TCP_MISS/200 4806 GET
http://www.fulldls.com/rss.php - DIRECT/66.29.9.69 text/xml
1175798822.053 2088 192.168.1.100 TCP_MISS/200 10020 GET
http://www.squid-cache.org/mailing-lists.html - DIRECT/12.160.37.9 text/html
1175799083.226 498 192.168.1.100 TCP_MISS/302 785 GET
http://fxfeeds.mozilla.org/rss20.xml - DIRECT/63.245.209.21 text/html
1175799083.828 600 192.168.1.100 TCP_REFRESH_MISS/200 13460 GET
http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml -
DIRECT/212.58.240.130 application/xml
1175799295.144 419 192.168.1.100 TCP_MISS/200 5791 GET
http://login.yahoo.com/config/login? - DIRECT/209.191.92.114 text/html
1175799295.458 314 192.168.1.100 TCP_MISS/302 1185 POST
http://login.yahoo.com/config/login - DIRECT/209.191.92.114 text/html
1175799295.721 251 192.168.1.100 TCP_MISS/302 587 GET
http://mail.yahoo.com/ - DIRECT/209.191.92.114 text/html
1175799296.402 670 192.168.1.100 TCP_MISS/200 17262 GET
http://us.f318.mail.yahoo.com/ym/login? - DIRECT/68.142.207.12 text/html
1175799304.308 10845 192.168.1.100 TCP_MISS/200 4636 CONNECT
gmail.google.com:443 - DIRECT/64.233.163.107 -
1175799304.503 11041 192.168.1.100 TCP_MISS/200 5532 CONNECT
gmail.google.com:443 - DIRECT/64.233.163.107 -

# tail store.log
1175798798.727 SWAPOUT 00 000003F0 6F3E3CC291C548A0033ABA4E3C3232DE 200
1175798798 1175798644 -1 application/octet-stream 9895/9895 GET
http://rss.thepiratebay.org/206
1175798813.718 RELEASE -1 FFFFFFFF 994824389CBC32D9C053969C372B232C 200
1175798407 -1 -1 text/xml 4503/4503 GET
http://www.fulldls.com/rss.php
1175798822.044 SWAPOUT 00 000003F1 D3934E64C0F5283C604E9B98F7C2FCBB 200
1175798821 1162769601 1175885221 text/html 9547/9547 GET
http://www.squid-cache.org/mailing-lists.html
1175799083.226 RELEASE -1 FFFFFFFF 20CEE6A980843607F2F7627B1D921D1A 302
1175798553 -1 -1 text/html 342/342 GET
http://fxfeeds.mozilla.org/rss20.xml
1175799083.564 RELEASE 00 00000156 3BE61D572C49B5960B9A518C69EC65AA 200
1175795477 1175795289 1175795537 application/xml 13030/-340 GET
http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml
1175799083.825 SWAPOUT 00 000003F2 01CFAF7534CDCB5774D0B8E0B412F616 200
1175799083 1175798237 1175799143 application/xml 13043/13043 GET
http://newsrss.bbc.co.uk/rss/newsonline_world_edition/front_page/rss.xml
1175799295.144 RELEASE -1 FFFFFFFF EF5DBA12B3AB057DDA3AE1FF86A8029C 200
1175799294 -1 -1 text/html 5059/5059 GET
http://login.yahoo.com/config/login?
1175799295.458 RELEASE -1 FFFFFFFF 520AF5CD70DD68D13ADBB5AC97515458 302
1175799295 -1 789343200 text/html -1/0 POST
http://login.yahoo.com/config/login
1175799295.721 RELEASE -1 FFFFFFFF D02E5843E527BB9CD08E9BEA74DD3E96 302
1175799295 -1 789343200 text/html -1/0 GET http://mail.yahoo.com/
1175799296.402 RELEASE -1 FFFFFFFF B1A7853BFA30401120D2F54189C8AEBC 200
1175799295 -1 -1 text/html 16664/16664 GET
http://us.f318.mail.yahoo.com/ym/login?

# tail -n 25 cache.log
2007/04/05 08:39:58| Initialising SSL.
2007/04/05 08:39:58| parseEtcHosts: /etc/hosts: (13) Permission denied
2007/04/05 08:39:58| User-Agent logging is disabled.
2007/04/05 08:39:58| Referer logging is disabled.
2007/04/05 08:39:58| DNS Socket created at 0.0.0.0, port 1330, FD 8
2007/04/05 08:39:58| Adding domain adams-lan.local from /etc/resolv.conf
2007/04/05 08:39:58| Adding nameserver 205.171.2.65 from /etc/resolv.conf
2007/04/05 08:39:58| Adding nameserver 205.171.3.65 from /etc/resolv.conf
2007/04/05 08:39:58| Adding nameserver 192.168.1.105 from /etc/resolv.conf
2007/04/05 08:39:58| Accepting proxy HTTP connections at 0.0.0.0, port 3128,
FD 9.
2007/04/05 08:39:58| Accepting proxy HTTP connections at 0.0.0.0, port 8080,
FD 10.
2007/04/05 08:39:58| Accepting ICP messages at 0.0.0.0, port 3130, FD 11.
2007/04/05 08:39:58| Accepting HTCP messages on port 4827, FD 12.
2007/04/05 08:39:58| Accepting SNMP messages on port 3401, FD 14.
2007/04/05 08:39:58| WCCP Disabled.
2007/04/05 08:39:58| Pinger socket opened on FD 15
2007/04/05 08:39:58| Loaded Icons.
2007/04/05 08:39:58| eventCleanup
2007/04/05 08:39:58| Ready to serve requests.
2007/04/05 09:00:24| icmpSend: send: (111) Connection refused
2007/04/05 09:00:24| Closing Pinger socket on FD 15
2007/04/05 09:22:44| NETDB state saved; 0 entries, 0 msec
2007/04/05 10:23:45| NETDB state saved; 0 entries, 0 msec
2007/04/05 11:34:43| NETDB state saved; 0 entries, 0 msec
2007/04/05 12:28:23| NETDB state saved; 0 entries, 0 msec

Anybody know what is oing on here?

Thanks.

Mark

_________________________________________________________________
Need a break? Find your escape route with Live Search Maps.
http://maps.live.com/?icid=hmtag3
Received on Thu Apr 05 2007 - 21:18:29 MDT

This archive was generated by hypermail pre-2.1.9 : Tue May 01 2007 - 12:00:01 MDT