UPDATE!
It seems to only happen when the --disable-ipv6 option is used during
compile, perhaps the default acl handler for IPV4 needs a bit of
love... doesn't seem the same as the one included as default.
On Wed, Mar 31, 2010 at 1:00 AM, Kurt Sandstrom <sandmanaz_at_gmail.com> wrote:
> Ok I have an issue here... Compiled Squid
> Squid Cache: Version 3.1.1
> configure options: '--build=x86_64-linux-gnu' '--prefix=/usr'
> '--includedir=/include' '--mandir=/share/man' '--infodir=/share/info'
> '--sysconfdir=/etc' '--localstatedir=/var' '--libexecdir=/lib/squid3'
> '--disable-maintainer-mode' '--disable-dependency-tracking'
> '--srcdir=.' '--datadir=/usr/share/squid3' '--sysconfdir=/etc/squid3'
> '--mandir=/usr/share/man' '--with-cppunit-basedir=/usr'
> '--enable-inline' '--enable-async-io=8' '--enable-storeio=ufs,aufs'
> '--enable-removal-policies=lru,heap' '--enable-delay-pools'
> '--enable-cache-digests' '--enable-underscores'
> '--enable-follow-x-forwarded-for' '--enable-auth=basic'
> '--enable-external-acl-helpers=ip_user' '--with-filedescriptors=65536'
> '--with-default-user=proxy' '--enable-epoll'
> '--enable-linux-netfilter' 'build_alias=x86_64-linux-gnu'
> --with-squid=/home/myuser/squid-3.1.1 --enable-ltdl-convenience
>
> and keep getting an error:
>
> squid -X
>
> FATAL: Bungled Default Configuration line 8: miss_access allow all
>
> Using the default squid.conf:
>
>
> acl manager proto cache_object
> acl localhost src 127.0.0.1/32
> acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
> acl localnet src 10.0.0.0/8 # RFC1918 possible internal network
> acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
> acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
> # Have Added and removed with the same issue
> # acl all src 0.0.0.0/0.0.0.0
> # acl all src 0.0.0.0/0
> acl SSL_ports port 443
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 # https
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localnet
> http_access allow localhost
> http_access deny all
> http_port 3128
> hierarchy_stoplist cgi-bin ?
> coredump_dir /var/cache
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
>
>
> Details of error:
>
> 2010/03/31 00:51:02.160| ACL::Prototype::Registered: invoked for type src
> 2010/03/31 00:51:02.160| ACL::Prototype::Registered: yes
> 2010/03/31 00:51:02.160| ACL::FindByName 'all'
> 2010/03/31 00:51:02.160| ACL::FindByName found no match
> 2010/03/31 00:51:02.160| aclParseAclLine: Creating ACL 'all'
> 2010/03/31 00:51:02.160| ACL::Prototype::Factory: cloning an object
> for type 'src'
> 2010/03/31 00:51:02.160| aclIpParseIpData: all
> 2010/03/31 00:51:02.160| aclIpParseIpData: magic 'all' found.
> 2010/03/31 00:51:02.160| aclParseAclList: looking for ACL name 'all'
> 2010/03/31 00:51:02.160| ACL::FindByName 'all'
> 2010/03/31 00:51:02.160| ACL::FindByName found no match
> 2010/03/31 00:51:02.160| aclParseAclList: ACL name 'all' not found.
> 2010/03/31 00:51:02.160| leave_suid: PID 27212 called
> FATAL: Bungled Default Configuration line 8: miss_access allow all
>
> I have tried squid -X -f /etc/squid3/squid.conf to verify that I'm
> using the right config....
>
>
> Any Ideas?
>
Received on Wed Mar 31 2010 - 08:20:12 MDT
This archive was generated by hypermail 2.2.0 : Wed Mar 31 2010 - 12:00:06 MDT