Hi,
I have a problem with ftp and https requests.
I'm running squid in debug mode to trace function calls for a ftp and a
https request and finding below lines in cache.log:
for a https request I'm getting:
**************
client_side.cc(2862) clientParseRequests: local=216.239.32.20:443
remote=10.1.116.50 FD 10 flags=17: attempting to parse
HttpParser.cc(29) reset: Request buffer is ���
HttpParser.cc(39) parseRequestFirstLine: parsing possible request: ���
HttpParser.cc(248) HttpParserParseReqLine: Parser: retval -1: from 0->49:
method 0->-1; url -1->-1; version -1->-1 (0/0)
**************
In fact the request is unrecognizable for squid.
and for a ftp request:
**************
AsyncCall.cc(30) make: make call ConnStateData::clientReadRequest [call39]
AsyncJob.cc(117) callStart: ConnStateData status in: [ job3]
client_side.cc(2923) clientReadRequest: local=10.1.116.49:22
remote=10.1.116.50 FD 10 flags=17 size 0
client_side.cc(2959) clientReadRequest: local=10.1.116.49:22
remote=10.1.116.50 FD 10 flags=17 closed?
client_side.cc(2401) connFinishedWithConn: local=10.1.116.49:22
remote=10.1.116.50 FD 10 flags=17 closed
comm.cc(1102) _comm_close: comm_close: start closing FD 10
**************
That's very wonderful! squid could not read request from socket!
here is my config file:
**************
acl localhost src 127.0.0.1/32 ::1
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow all
# Deny requests to certain unsafe ports
#http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
#http_access deny CONNECT !SSL_ports
#http_access allow localnet
http_access allow localhost
# Squid normally listens to port 3128
http_port 3128
http_port 3129 tproxy
debug_options rotate=1 ALL,5
# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid3
# Add any of your own refresh_pattern entries above these.
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern (Release|Packages(.gz)*)$ 0 20% 2880
refresh_pattern . 0 20% 4320
cache deny all
**************
Received on Wed Jan 29 2014 - 05:53:14 MST