> Dear
>
> i have upgraded from latest squid 3.1.x to 3.2x and i encounter this
> error while starting Squid.
>
> "FATAL: Bungled squid.conf line 3: acl manager proto cache_object"
>
>
> 2011/09/22 11:50:05| aclIpParseIpData: WARNING: Netmask masks away
> part
> of the specified IP in '127.0.0.1/8'
> 2011/09/22 11:50:05| WARNING: (B) '127.0.0.1' is a subnetwork of (A)
> '127.0.0.0/8'
> 2011/09/22 11:50:05| WARNING: because of this '127.0.0.0/8' is
> ignored
> to keep splay tree searching predictable
> 2011/09/22 11:50:05| WARNING: You should probably remove '127.0.0.1'
> from the ACL named 'localhost'
> 2011/09/22 11:50:05| WARNING: (B) '127.0.0.1' is a subnetwork of (A)
> '127.0.0.0/8'
> 2011/09/22 11:50:05| WARNING: because of this '127.0.0.0/8' is
> ignored
> to keep splay tree searching predictable
> 2011/09/22 11:50:05| WARNING: You should probably remove '127.0.0.1'
> from the ACL named 'localhost'
> 2011/09/22 11:50:05| aclIpParseIpData: WARNING: Netmask masks away
> part
> of the specified IP in '127.0.0.1/8'
> 2011/09/22 11:50:05| WARNING: (B) '127.0.0.0/8' is a subnetwork of
> (A)
> '127.0.0.0/8'
> 2011/09/22 11:50:05| WARNING: because of this '127.0.0.0/8' is
> ignored
> to keep splay tree searching predictable
> 2011/09/22 11:50:05| WARNING: You should probably remove
> '127.0.0.0/8'
> from the ACL named 'to_localhost'
> 2011/09/22 11:50:05| WARNING: (B) '0.0.0.0' is a subnetwork of (A)
> '0.0.0.0'
> 2011/09/22 11:50:05| WARNING: because of this '0.0.0.0' is ignored to
> keep splay tree searching predictable
> 2011/09/22 11:50:05| WARNING: You should probably remove '0.0.0.0'
> from
> the ACL named 'to_localhost'
> 2011/09/22 11:50:05| WARNING: (B) '0.0.0.0' is a subnetwork of (A)
> '0.0.0.0'
> 2011/09/22 11:50:05| WARNING: because of this '0.0.0.0' is ignored to
> keep splay tree searching predictable
> 2011/09/22 11:50:05| WARNING: You should probably remove '0.0.0.0'
> from
> the ACL named 'to_localhost'
> 2011/09/22 11:50:05| aclParseAclLine: ACL 'manager' already exists
> with
> different type.
> FATAL: Bungled squid.conf line 3: acl manager proto cache_object
> Squid Cache (Version 3.2.0.12): Terminated abnormally.
> CPU Usage: 0.008 seconds = 0.000 user + 0.008 sys
> Maximum Resident Size: 21392 KB
> Page faults with physical i/o: 22
>
>
> Here it is the squid.conf
>
> acl localhost src 127.0.0.1/8 0.0.0.0/32
> acl to_localhost dst 127.0.0.1/8 0.0.0.0/32
> acl manager proto cache_object
> auth_param basic credentialsttl 2 hour
> authenticate_ttl 1 hour
> authenticate_ip_ttl 60 seconds
> memory_pools off
> quick_abort_min 0 KB
> quick_abort_max 0 KB
> log_icp_queries off
> client_db off
> buffered_logs on
> half_closed_clients off
>
> acl blockedsites url_regex "/etc/squid3/squid-block.acl"
> acl CONNECT method CONNECT
> acl purge method PURGE
> acl FTP proto FTP
> acl multimedia_rep rep_mime_type -i ^video/x-ms-asf$
> acl multimedia_rep rep_mime_type -i
> ^application/vnd.ms.wms-hdr.asfv1$
> acl multimedia_rep rep_mime_type -i ^application/x-mms-framed$
> acl multimedia_rep rep_mime_type -i ^image/
> acl multimedia_rep rep_mime_type -i ^video
> acl multimedia_rep rep_mime_type -i ^audio
> acl multimedia_rep rep_mime_type -i ^application/x-dvi$
> acl multimedia_rep rep_mime_type -i ^application/x-isoview
> acl multimedia_browsers browser -i ^.*player
> acl bigfiles_types urlpath_regex -i \.(deb|rpm|iso|tar\.gz|gz|bz|tar|
> cue|nrg|crf|bwi|bwt|lcd|ccd|mdf|mds|vcd|cif|vdi|img)((\?|&).*)?$
> acl office_network src all
>
>
> #--------- MAIN RULES...
> always_direct allow FTP
> # --------- SAFE ports
> acl Safe_ports port 80 #http
> acl Safe_ports port 22 #ssh
> acl Safe_ports port 443 563 #https, snews
> acl Safe_ports port 1863 #msn
> acl Safe_ports port 70 #gopher
> acl Safe_ports port 210 #wais
> acl Safe_ports port 1025-65535 #unregistered ports
> acl Safe_ports port 280 #http-mgmt
> acl Safe_ports port 488 #gss-http
> acl Safe_ports port 591 #filemaker
> acl Safe_ports port 777 #multiling http
> acl Safe_ports port 631 #cups
> acl Safe_ports port 873 #rsync
> acl Safe_ports port 901 #SWAT
> acl Safe_ports port 20 #ftp-data
> acl Safe_ports port 21 #ftp#
> acl SSL_ports port 9000 #Artica
> acl SSL_ports port 443 #HTTPS
> acl SSL_ports port 563 #https, snews
> acl SSL_ports port 6667 #tchat
> acl MULTIMEDIA rep_mime_type -i ^(audio\/x-mpegurl|audio\/mpeg|video
> \/flv|video\/x-flv|application\/x-shockwave-flash|audio\/ogg|video\/ogg|
> application\/ogg)$
>
> url_rewrite_access deny localhost
> url_rewrite_access allow all
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost
> http_access allow manager localhost
> http_access allow purge localhost
> http_access deny purge
> http_access deny blockedsites
> http_access allow office_network
> http_access deny to_localhost
> http_access deny all
>
> hierarchy_stoplist cgi-bin ?
> visible_hostname proxyweb
> ignore_expect_100 off
> dead_peer_timeout 10 seconds
> dns_timeout 2 minutes
> connect_timeout 1600 seconds
> persistent_request_timeout 3 minutes
> pconn_timeout 1600 seconds
> maximum_object_size 300 MB
> minimum_object_size 0 KB
> maximum_object_size_in_memory 1024 KB
> http_port 3128
>
> cache_effective_user squid
> cache_effective_group squid
> #cache_replacement_policy heap LFUDA
> cache_mem 8 MB
> cache_swap_high 90
> cache_swap_low 95
> ipcache_size 1024
> ipcache_low 90
> ipcache_high 95
> fqdncache_size 1024
>
> ftp_list_width 32
> ftp_passive on
> ftp_sanitycheck on
> ftp_epsv on
> ftp_epsv_all off
> ftp_telnet_protocol off
>
> debug_options ALL,1
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern -i (/cg-bin/|\?) 0 0% 0
> refresh_pattern . 0 20% 4320
> icp_port 3130
>
>
> log_fqdn off
> coredump_dir /var/squid/cache
> cache_store_log /var/log/squid/store.log
> cache_log /var/log/squid/cache.log
> pid_filename /var/run/squid.pid
> access_log none manager
> access_log /var/log/squid/access.log common
> access_log /var/log/squid/sarg.log squid
> cache_dir ufs /var/cache/squid 2000 16 256
Just remove
acl localhost src 127.0.0.1/8 0.0.0.0/32
and
acl manager proto cache_object
And squid should start
Received on Thu Sep 22 2011 - 10:25:33 MDT
This archive was generated by hypermail 2.2.0 : Thu Sep 22 2011 - 12:00:03 MDT