Hi Kinkie
Thanks for your response.
I've looked at the log file and below is a extract of a site but I do
not fully understand the meaning of _MISS _HIT _DENIED
ok DENIED is obvious but why?
1262869421.378 6417 172.30.36.254 TCP_MISS/200 1762 CONNECT
www.ibm.com:443 jterblanche DIRECT/129.42.60.216 -
1262869421.378 6426 172.30.36.254 TCP_MISS/200 1764 CONNECT
www.ibm.com:443 jterblanche DIRECT/129.42.60.216 -
1262869421.379 6422 172.30.36.254 TCP_MISS/200 1751 CONNECT
www.ibm.com:443 jterblanche DIRECT/129.42.60.216 -
1262869421.380 6405 172.30.36.254 TCP_MISS/200 1763 CONNECT
www.ibm.com:443 jterblanche DIRECT/129.42.60.216 -
1262869421.400 0 172.30.36.254 TCP_DENIED/407 1849 CONNECT
www-03.ibm.com:443 - NONE/- text/html
1262869421.442 1 172.30.36.254 TCP_DENIED/407 2083 CONNECT
www-03.ibm.com:443 - NONE/- text/html
1262869422.508 0 172.30.36.254 TCP_DENIED/407 1837 CONNECT
w3.ibm.com:443 - NONE/- text/html
1262869422.515 0 172.30.36.254 TCP_DENIED/407 1840 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.521 1 172.30.36.254 TCP_DENIED/407 1840 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.522 0 172.30.36.254 TCP_DENIED/407 1840 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.529 2 172.30.36.254 TCP_DENIED/407 1840 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.532 1 172.30.36.254 TCP_DENIED/407 2071 CONNECT
w3.ibm.com:443 - NONE/- text/html
1262869422.541 4 172.30.36.254 TCP_DENIED/407 2074 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.542 2 172.30.36.254 TCP_DENIED/407 2074 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.542 2 172.30.36.254 TCP_DENIED/407 2074 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.542 1 172.30.36.254 TCP_DENIED/407 2074 CONNECT
www.ibm.com:443 - NONE/- text/html
1262869422.543 3 172.30.36.254 TCP_MISS/404 0 CONNECT
w3.ibm.com:443 jterblanche DIRECT/- -
I think it has something to do with automatic certificate signing how do
I make a generic certificate that will work with all https sites in
squid?
Regards
Johann
-----Original Message-----
From: Kinkie [mailto:gkinkie_at_gmail.com]
Sent: 07 January 2010 12:46 PM
To: Johann Terblanche
Cc: squid-users_at_squid-cache.org
Subject: Re: [squid-users] RE: Squid Question?
On Thu, Jan 7, 2010 at 10:56 AM, Johann Terblanche
<jterblanche_at_ebisafrica.co.za> wrote:
> Hi All
>
> I have setup squid successfully in my production environment with
> Ubuntu, ADS Authentication, Dansguardian, SARG, ClamAV and webmin.
>
> My questions are
>
> 1.) I don't notice a signification difference in network performance
> expect for the content filtering part that frees up bandwidth. How do
> I monitor if squid does indeed cache the websites successfully to disk
> and what the response time is on that website after the cache has been
> enabled?
Check the squid access.log . Look for _HIT and _MISS status codes.
> 2.) I also have some minor errors with https websites that says access
> denied and if you refresh if works again or some https sites does not
> work until you disable the proxy. Could you point me in the right
> direction to resolve this.
A good starting point is the logfile. Regarding inaccessible sites, a
good starting point is
http://wiki.squid-cache.org/SquidFaq/TroubleShooting and the wiki in
general. It contains lots of informations related to troubleshooting.
--
/kinkie
No virus found in this incoming message.
Checked by AVG - www.avg.com
Version: 9.0.725 / Virus Database: 270.14.127/2603 - Release Date:
01/06/10 21:35:00
Received on Thu Jan 07 2010 - 13:30:40 MST
This archive was generated by hypermail 2.2.0 : Thu Jan 07 2010 - 12:00:02 MST