In primul rand scuze pt. lungimea mail-ului (dar ....), deci:
Se da o retea cu statii NT Workstation si 2000 Profesional si server Red Hat
7.0
(2.2.17-14)
Conducerea are nevoie de urmatoarele:
Traficul total statii
Nr de mail-uri primite si expediate pe cont
Trafic total
==========================
Cu ipchains am implementat in rc.ipchains
Ex:
# Accounting rules
/sbin/ipchains -A input -p tcp -d PC_STEPANOV 1080
/sbin/ipchains -A input -p tcp -s PC_STEPANOV 1080
Am de asemenea restrictii:
# Limit access to squid port (1080 TCP)
/sbin/ipchains -A input -p tcp -s $LOCALNET --destination-port 1080 -j
ACCEPT
/sbin/ipchains -A input -p tcp -s 127.0.0.1 --destination-port 1080 -j
ACCEPT
/sbin/ipchains -A input -p tcp --destination-port 21 -j DENY -l
iar in squid.conf:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
# **USER SPECIFIC**
acl localnet src 192.168.0.0/255.255.0.0
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl workhours time M T W H F 8:00-16:00
acl nicus src 192.168.222.142/255.255.255.255
.....
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
http_access allow localhost
http_access allow localnet
http_access allow nicus
http_access allow all !workhours
http_access deny all
===============================================
Intrebari:
1. de ce totusi statiile au acces prin proxy si in timpul workhours
(8:00-16:00). Am incercat si doar cu:
acl workhours time 8:00-16:00, dar tot merge. Mentionez ca in versiunea
anterioara (RH 5.2) cu acl workhours time M, T, W, H, F 8:00-16:00 - a mers,
adica nu te lasa decat in afara acestor ore. Dar in versiunea actuala, nu
i-a placut de virgule. dupa ce i le-am scos, acum nu da erori dar nici nu-si
face treaba. - Help please.
2. ce trebuie sa pun in rc.ipchains pt. a avea tot traficul unei statii ?
3. Daca placa de retea din server are de ex. IP 192.168.3.1 iar modemul
193.226.98.107 care e regula care-mi da tot traficul catre/dinspre provider
?
4. Cum restrictionez ca o statie sa nu mai poata accesa pagini www daca-si
dezactiveaza proxy ?
-------------
5. Pentru Squid am reusit sa-mi fac o statistica, si sa o trimit pe mail
(vezi mai jos) Stiti de ceva asemanator si pt. MAIL ?
============================================================================
=
Proxy-Report (06.Mar 01 14:54:12 - 08.Mar 01 03:54:43)
# Summary
lines parsed: 13824
invalid lines: 0
unique hosts/users: 24
parse time (sec): 104
# Incoming requests by method
method request % kByte % sec
kB/sec
--------------------------------- -------- ------ --------- ------ ---- ----
---
GET 12041 87.10 55924 94.04 9
0.50
POST 1689 12.22 3353 5.64 21
0.10
HEAD 58 0.42 14 0.02 5
0.05
CONNECT 35 0.25 178 0.30 22
0.24
OPTIONS 1 0.01 1 0.00 18
0.08
--------------------------------- -------- ------ --------- ------ ---- ----
---
Sum 13824 100.00 59470 100.00 11
0.40
# Incoming UDP-requests by status: none
# Incoming TCP-requests by status
status request % kByte % sec
kB/sec
--------------------------------- -------- ------ --------- ------ ---- ----
---
HIT 2709 19.60 8472 14.25 1
3.04
TCP_IMS_HIT 1581 11.44 356 0.60 0
10.36
TCP_HIT 444 3.21 6673 11.22 1
13.50
TCP_MEM_HIT 432 3.12 530 0.89 0
72.96
TCP_REFRESH_HIT 252 1.82 914 1.54 9
0.41
MISS 10847 78.46 50993 85.75 13
0.35
TCP_MISS 10459 75.66 50554 85.01 14
0.36
TCP_CLIENT_REFRESH_MISS 332 2.40 370 0.62 7
0.15
TCP_REFRESH_MISS 56 0.41 68 0.11 10
0.12
ERROR 268 1.94 5 0.01 0
0.04
TCP_MISS 232 1.68 1 0.00 0
0.01
TCP_REFRESH_MISS 30 0.22 0 0.00 1
0.00
TCP_DENIED 3 0.02 3 0.00 0
84.71
TCP_CLIENT_REFRESH_MISS 2 0.01 0 0.00 0
0.00
NONE 1 0.01 1 0.00 0
49.27
--------------------------------- -------- ------ --------- ------ ---- ----
---
Sum 13824 59470 11
0.40
# Outgoing requests by status
status request % kByte % sec
kB/sec
--------------------------------- -------- ------ --------- ------ ---- ----
---
DIRECT Fetch from Source 6162 55.52 28641 55.18 18
0.26
DIRECT 3537 31.87 17187 33.11 17
0.29
TIMEOUT_DIRECT 2625 23.65 11454 22.07 19
0.23
HIT on Sibling or Parent Cache 1643 14.80 4660 8.98 3
0.90
PARENT_HIT 1643 14.80 4660 8.98 3
0.90
FETCH from Parent Cache 3294 29.68 18606 35.84 10
0.58
FIRST_PARENT_MISS 2973 26.79 17980 34.64 7
0.89
FIRST_UP_PARENT 203 1.83 220 0.42 35
0.03
TIMEOUT_FIRST_UP_PARENT 118 1.06 405 0.78 40
0.09
--------------------------------- -------- ------ --------- ------ ---- ----
---
Sum 11099 51907 13
0.35
# Outgoing requests by destination
neighbor type request % kByte % sec
kB/sec
--------------------------------- -------- ------ --------- ------ ---- ----
---
DIRECT 6162 55.52 28641 55.18 18
0.26
proxy.dnttm.ro 4937 44.48 23266 44.82 3
0.63
FIRST_PARENT_MISS 2973 26.79 17980 34.64 2
0.89
PARENT_HIT 1643 14.80 4660 8.98 0
0.90
FIRST_UP_PARENT 203 1.83 220 0.42 1
0.03
TIMEOUT_FIRST_UP_PARENT 118 1.06 405 0.78 0
0.09
--------------------------------- -------- ------ --------- ------ ---- ----
---
Sum 11099 51907 13
0.35
# Request-destinations by 2ndlevel-domain
destination request % kByte %
hit-%
--------------------------------------- -------- ------ --------- ------ ---
---
*.oracle.com 2139 15.47 3533 5.94
51.66
....
*.drunlock.com 129 0.93 532 0.89
56.59
other: 275 2nd-level-domains 4453 32.21 29983 50.42
7.64
--------------------------------------- -------- ------ --------- ------ ---
---
Sum 13824 100.00 59470 100.00
19.60
# Request-destinations by toplevel-domain
destination request % kByte %
hit-%
--------------------------------------- -------- ------ --------- ------ ---
---
*.com 10505 75.99 39886 67.07
20.86
*.ro 1093 7.91 3895 6.55
2.01
<unresolved> 248 1.79 312 0.53
10.48
<error> 112 0.81 97 0.16
0.00
...
*.ca 1 0.01 3 0.01
0.00
--------------------------------------- -------- ------ --------- ------ ---
---
Sum 13824 100.00 59470 100.00
19.60
# TCP-Request-protocol
protocol request % kByte %
hit-%
--------------------------------------- -------- ------ --------- ------ ---
---
http: 13677 98.94 59195 99.54
19.81
<error> 112 0.81 97 0.16
0.00
<secure> 35 0.25 178 0.30
0.00
--------------------------------------- -------- ------ --------- ------ ---
---
Sum 13824 100.00 59470 100.00
19.60
# Requested content-type
content-type request % kByte %
hit-%
--------------------------------------- -------- ------ --------- ------ ---
---
image/gif 6073 43.93 10194 17.14
37.94
text/html 2758 19.95 27955 47.01
4.53
<unknown> 2367 17.12 3680 6.19
1.82
text/plain 1457 10.54 2150 3.62
1.58
image/jpeg 520 3.76 3696 6.21
8.85
application/x-javascript 235 1.70 827 1.39
42.13
<error> 112 0.81 97 0.16
0.00
application/octet-stream 85 0.61 7799 13.11
14.12
text/css 76 0.55 137 0.23
51.32
text/javascript 41 0.30 34 0.06
0.00
<secure> 35 0.25 178 0.30
0.00
application/x-shockwave-flash 18 0.13 252 0.42
5.56
image/png 16 0.12 21 0.04
50.00
application/pdf 9 0.07 472 0.79
66.67
application/zip 7 0.05 1137 1.91
14.29
application/x-compressed 6 0.04 155 0.26
0.00
application/java-vm 2 0.01 26 0.04
50.00
application/x-gzip 2 0.01 606 1.02
0.00
application/java-archive 2 0.01 15 0.03
50.00
application/java 1 0.01 9 0.01
0.00
other: 2 content-types 2 0.01 31 0.05
0.00
--------------------------------------- -------- ------ --------- ------ ---
---
Sum 13824 100.00 59470 100.00
19.60
# Requested extensions
extensions request % kByte %
hit-%
--------------------------------------- -------- ------ --------- ------ ---
---
gif 7063 51.09 10341 17.39
33.00
<dynamic> 3913 28.31 17509 29.44
0.33
<none> 725 5.24 8127 13.67
2.48
jpg 635 4.59 3965 6.67
7.09
...
other: 32 extensions 127 0.92 4533 7.62
19.69
--------------------------------------- -------- ------ --------- ------ ---
---
Sum 13824 100.00 59470 100.00
19.60
# Incoming UDP-requests by host: none
# Incoming TCP-requests by host
host request hit-% kByte hit-% sec
kB/sec
--------------------------------- -------- ------ --------- ------ ---- ----
---
MARIUS 1910 14.19 7331 8.98 14
0.27
192.168.222.147 1750 49.89 2415 10.49 2
0.62
PC_CRISTI 1585 22.15 6538 12.37 14
0.29
...
PC_ROXANA 7 0.00 26 0.00 5
0.83
--------------------------------- -------- ------ --------- ------ ---- ----
---
Sum 13824 19.60 59470 14.25 11
0.40
# Performance in 60 minute steps
incomin hit miss direct sibling
fetch
date request MByte kB/sec kB/sec kB/sec kB/sec kB/sec
kB/sec
--------------- -------- ------ ------- ------- ------- ------- ------- ----
---
06.Mar 01 14:00 108 0 0.84 24.83 0.83 0.63 0.68
1.54
06.Mar 01 15:00 621 3 0.82 0.93 0.82 0.60 0.62
1.33
...
08.Mar 01 02:00 10 0 0.18 - 0.18
8 - -
08.Mar 01 03:00 10 0 0.09 - 0.09
9 - -
--------------- -------- ------ ------- ------- ------- ------- ------- ----
---
overall 13824 58 0.40 3.04 0.35 0.26 0.90
0.58
---
Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to
unsubscribe from this list.
