Re: [squid-users] Log Files running out disk space
tis 2010-08-17 klockan 16:08 +0600 skrev Nyamul Hassan: 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument Smells like some internal bug causing the listener socket to be wrongly closed. And, that is the time from when it started. Is there any way to determine what is causing this? Not easily. Basically need a debug log catching when the problem starts, but to get those you need to be able to reproduce the problem. the requests logged in access.log at about the time it started MAY help, but quite likely not.. Regards Henrik
Re: [squid-users] Log Files running out disk space
Nyamul Hassan wrote: Hi, One of proxies died down today, because the log files were overwhelming: -rw-r- 1 squid squid 61440 Aug 17 16:01 access.log -rw-r- 1 squid squid 523366451 Aug 17 02:59 access.log.0 -rw-r- 1 squid squid 771658231 Aug 17 00:00 access.log.1 -rw-r- 1 squid squid 562853886 Aug 16 21:00 access.log.2 -rw-r- 1 squid squid 618221433 Aug 16 18:00 access.log.3 -rw-r- 1 squid squid 572403480 Aug 16 15:00 access.log.4 -rw-r- 1 squid squid 379977665 Aug 16 12:00 access.log.5 -rw-r- 1 squid squid 348474013 Aug 16 09:00 access.log.6 -rw-r- 1 squid squid 367307983 Aug 16 06:00 access.log.7 -rw-r- 1 squid squid 663904388 Aug 16 03:00 access.log.8 -rw-r- 1 squid squid 735110835 Aug 16 00:00 access.log.9 -rw-r- 1 squid squid 36715761664 Aug 17 16:01 cache.log -rw-r- 1 squid squid 14262776941 Aug 17 03:00 cache.log.0 -rw-r- 1 squid squid 955445 Aug 17 00:00 cache.log.1 -rw-r- 1 squid squid 748262 Aug 16 21:00 cache.log.2 -rw-r- 1 squid squid 1069482 Aug 16 18:00 cache.log.3 -rw-r- 1 squid squid 698758 Aug 16 15:00 cache.log.4 -rw-r- 1 squid squid 497547 Aug 16 11:59 cache.log.5 -rw-r- 1 squid squid 271153 Aug 16 08:59 cache.log.6 -rw-r- 1 squid squid 355351 Aug 16 05:59 cache.log.7 -rw-r- 1 squid squid 759748 Aug 16 02:59 cache.log.8 -rw-r- 1 squid squid 1037802 Aug 15 23:59 cache.log.9 As you can see, those HUGE cache log files were filled up in less than 12 hours. Opening them up, I find they were filled with the following lines, repeated over and over again: 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument And, that is the time from when it started. Is there any way to determine what is causing this? Start with the Squid version and what settings your http_port are configured with. Then we check for what it means. Google locates several requests, strangely around August each year for the last few. Someone describes it thus: The problem is however elsewhere, since it somewhere fails to obtain a socket (or has its socket destroyed by the kernel somehow) so that when it calls accept(2) on the socket it's not a socket any more. Might be a SYN-flood DoS by that description. But your OS security should be catching such a thing before it gets near any internal software like Squid. Amos -- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.6 Beta testers wanted for 3.2.0.1
Re: [squid-users] Log Files running out disk space
On Tue, Aug 17, 2010 at 17:03, Amos Jeffries squ...@treenet.co.nz wrote: Nyamul Hassan wrote: Hi, One of proxies died down today, because the log files were overwhelming: -rw-r- 1 squid squid 61440 Aug 17 16:01 access.log -rw-r- 1 squid squid 523366451 Aug 17 02:59 access.log.0 -rw-r- 1 squid squid 771658231 Aug 17 00:00 access.log.1 -rw-r- 1 squid squid 562853886 Aug 16 21:00 access.log.2 -rw-r- 1 squid squid 618221433 Aug 16 18:00 access.log.3 -rw-r- 1 squid squid 572403480 Aug 16 15:00 access.log.4 -rw-r- 1 squid squid 379977665 Aug 16 12:00 access.log.5 -rw-r- 1 squid squid 348474013 Aug 16 09:00 access.log.6 -rw-r- 1 squid squid 367307983 Aug 16 06:00 access.log.7 -rw-r- 1 squid squid 663904388 Aug 16 03:00 access.log.8 -rw-r- 1 squid squid 735110835 Aug 16 00:00 access.log.9 -rw-r- 1 squid squid 36715761664 Aug 17 16:01 cache.log -rw-r- 1 squid squid 14262776941 Aug 17 03:00 cache.log.0 -rw-r- 1 squid squid 955445 Aug 17 00:00 cache.log.1 -rw-r- 1 squid squid 748262 Aug 16 21:00 cache.log.2 -rw-r- 1 squid squid 1069482 Aug 16 18:00 cache.log.3 -rw-r- 1 squid squid 698758 Aug 16 15:00 cache.log.4 -rw-r- 1 squid squid 497547 Aug 16 11:59 cache.log.5 -rw-r- 1 squid squid 271153 Aug 16 08:59 cache.log.6 -rw-r- 1 squid squid 355351 Aug 16 05:59 cache.log.7 -rw-r- 1 squid squid 759748 Aug 16 02:59 cache.log.8 -rw-r- 1 squid squid 1037802 Aug 15 23:59 cache.log.9 As you can see, those HUGE cache log files were filled up in less than 12 hours. Opening them up, I find they were filled with the following lines, repeated over and over again: 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument And, that is the time from when it started. Is there any way to determine what is causing this? Start with the Squid version and what settings your http_port are configured with. Then we check for what it means. Google locates several requests, strangely around August each year for the last few. Someone describes it thus: The problem is however elsewhere, since it somewhere fails to obtain a socket (or has its socket destroyed by the kernel somehow) so that when it calls accept(2) on the socket it's not a socket any more. Might be a SYN-flood DoS by that description. But your OS security should be catching such a thing before it gets near any internal software like Squid. Amos -- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.6 Beta testers wanted for 3.2.0.1 Squid 2.7STABLE9 http_port 3128 transparent iptables is running, but no rules are there. Regards HASSAN
Re: [squid-users] Log Files running out disk space
Nyamul Hassan wrote: On Tue, Aug 17, 2010 at 17:03, Amos Jeffries squ...@treenet.co.nz wrote: Nyamul Hassan wrote: Hi, One of proxies died down today, because the log files were overwhelming: -rw-r- 1 squid squid 61440 Aug 17 16:01 access.log -rw-r- 1 squid squid 523366451 Aug 17 02:59 access.log.0 -rw-r- 1 squid squid 771658231 Aug 17 00:00 access.log.1 -rw-r- 1 squid squid 562853886 Aug 16 21:00 access.log.2 -rw-r- 1 squid squid 618221433 Aug 16 18:00 access.log.3 -rw-r- 1 squid squid 572403480 Aug 16 15:00 access.log.4 -rw-r- 1 squid squid 379977665 Aug 16 12:00 access.log.5 -rw-r- 1 squid squid 348474013 Aug 16 09:00 access.log.6 -rw-r- 1 squid squid 367307983 Aug 16 06:00 access.log.7 -rw-r- 1 squid squid 663904388 Aug 16 03:00 access.log.8 -rw-r- 1 squid squid 735110835 Aug 16 00:00 access.log.9 -rw-r- 1 squid squid 36715761664 Aug 17 16:01 cache.log -rw-r- 1 squid squid 14262776941 Aug 17 03:00 cache.log.0 -rw-r- 1 squid squid 955445 Aug 17 00:00 cache.log.1 -rw-r- 1 squid squid 748262 Aug 16 21:00 cache.log.2 -rw-r- 1 squid squid 1069482 Aug 16 18:00 cache.log.3 -rw-r- 1 squid squid 698758 Aug 16 15:00 cache.log.4 -rw-r- 1 squid squid 497547 Aug 16 11:59 cache.log.5 -rw-r- 1 squid squid 271153 Aug 16 08:59 cache.log.6 -rw-r- 1 squid squid 355351 Aug 16 05:59 cache.log.7 -rw-r- 1 squid squid 759748 Aug 16 02:59 cache.log.8 -rw-r- 1 squid squid 1037802 Aug 15 23:59 cache.log.9 As you can see, those HUGE cache log files were filled up in less than 12 hours. Opening them up, I find they were filled with the following lines, repeated over and over again: 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument 2010/08/17 02:33:11| comm_accept: FD 28: (22) Invalid argument 2010/08/17 02:33:11| httpAccept: FD 28: accept failure: (22) Invalid argument And, that is the time from when it started. Is there any way to determine what is causing this? Start with the Squid version and what settings your http_port are configured with. Then we check for what it means. Google locates several requests, strangely around August each year for the last few. Someone describes it thus: The problem is however elsewhere, since it somewhere fails to obtain a socket (or has its socket destroyed by the kernel somehow) so that when it calls accept(2) on the socket it's not a socket any more. Might be a SYN-flood DoS by that description. But your OS security should be catching such a thing before it gets near any internal software like Squid. Squid 2.7STABLE9 http_port 3128 transparent iptables is running, but no rules are there. One interesting thing I note is that you have your logs rotated every 3 hours. Except during the event. The Squid problem seems to be that something (possibly the accepting) blocked the rotation from happening several times. FWIW; Squid has a connection limiter to prevent more connections being opened than there are available FD resource on the system. There is an outside chance this limiter paused a great number of sudden connections which died off. Which at a later point got 'kicked' for acceptance but were already gone. Generating that error. Might be something else. I've cc'd Henrik who still maintains 2.7. The 40GB size of logs seems to point at a DoS behind it all anyway. Meanwhile if its still going I suggest finding some SYN-flood protection rules and adding them to iptables. See what changes with that in place. Amos -- Please be using Current Stable Squid 2.7.STABLE9 or 3.1.6 Beta testers wanted for 3.2.0.1
RE: [squid-users] LOG files
Mark B mailto:[EMAIL PROTECTED] wrote on 29 June 2005 04:38 AM: Hey Chris, If you're using windows for squid, the file will be already in use, you may need to stop squid, copy to an alternative location, then start squid. Give that a go. If it's under *nix, then just vi squid.log Correction. The windows log file may still be viewed. A
RE: [squid-users] LOG files
Mark B mailto:[EMAIL PROTECTED] wrote on 29 June 2005 04:38 AM: Hey Chris, If you're using windows for squid, the file will be already in use, you may need to stop squid, copy to an alternative location, then start squid. Give that a go. If it's under *nix, then just vi squid.log Correction. The windows log file may still be viewed. A
Re: [squid-users] LOG files
Hey Chris, If you're using windows for squid, the file will be already in use, you may need to stop squid, copy to an alternative location, then start squid. Give that a go. If it's under *nix, then just vi squid.log Kind Regards, Mark B. - Original Message - From: Christian Souw [EMAIL PROTECTED] To: squid-cache.org squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 10:46 AM Subject: [squid-users] LOG files Dear all, This is really stupid question, forgive me. I want to check the access log in Squid. I try to open the file (access.log) directly like windows (just double click), it won't open or show me anything. Is anybody here can tell me how to open the squid access log ? I need to check my users connection and audit them. Thanks a lot Chris
Re: [squid-users] LOG files
Dear Mark, I used fedora core 3, is that the same like you told me ? Thanks Chris - Original Message - From: Mark B [EMAIL PROTECTED] To: Christian Souw [EMAIL PROTECTED] Cc: squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 9:37 AM Subject: Re: [squid-users] LOG files Hey Chris, If you're using windows for squid, the file will be already in use, you may need to stop squid, copy to an alternative location, then start squid. Give that a go. If it's under *nix, then just vi squid.log Kind Regards, Mark B. - Original Message - From: Christian Souw [EMAIL PROTECTED] To: squid-cache.org squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 10:46 AM Subject: [squid-users] LOG files Dear all, This is really stupid question, forgive me. I want to check the access log in Squid. I try to open the file (access.log) directly like windows (just double click), it won't open or show me anything. Is anybody here can tell me how to open the squid access log ? I need to check my users connection and audit them. Thanks a lot Chris
Re: [squid-users] LOG files
On 6/29/05, Christian Souw [EMAIL PROTECTED] wrote: Dear all, This is really stupid question, forgive me. I want to check the access log in Squid. I try to open the file (access.log) directly like windows (just double click), it won't open or show me anything. Is anybody here can tell me how to open the squid access log ? I need to check my users connection and audit them. Thanks a lot Chris The logfile is in unix format and needs to be converted to dos format so windows can read it. you can try open it in windows command line using 'edit filename' to view it but even then you well not be able to see all of the file and it is not easy to browse throw it. http://www.squid-cache.org/Scripts/ Here you well find many logfile analysis software for squid. Some of them run on windows os directly or as perl scripts. My favorite one is SARG it runs on many unix and unix-like OSs. You can then view the reports it generates as html files either from a web server like apache or copy the reports to a windows client and view the html files. http://sarg.sourceforge.net/sarg.php check the sample report to see if this software is for you! -- Kind regards Abu Khaled
Re: [squid-users] LOG files
Chris, Try access it from a console terminal, and cd into the appropriate location, and type: more access.log, you will then be able to view the file, make sure you're accessing the right file also, verify inside your squid.conf. Alternatively find a squid auditing package that will do it for you, have a look at: http://freshmeat.net/search/?q=squidsection=projectsGo.x=0Go.y=0 Good Luck. - Original Message - From: Christian Souw [EMAIL PROTECTED] To: Mark B [EMAIL PROTECTED] Cc: squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 10:58 AM Subject: Re: [squid-users] LOG files Dear Mark, I used fedora core 3, is that the same like you told me ? Thanks Chris - Original Message - From: Mark B [EMAIL PROTECTED] To: Christian Souw [EMAIL PROTECTED] Cc: squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 9:37 AM Subject: Re: [squid-users] LOG files Hey Chris, If you're using windows for squid, the file will be already in use, you may need to stop squid, copy to an alternative location, then start squid. Give that a go. If it's under *nix, then just vi squid.log Kind Regards, Mark B. - Original Message - From: Christian Souw [EMAIL PROTECTED] To: squid-cache.org squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 10:46 AM Subject: [squid-users] LOG files Dear all, This is really stupid question, forgive me. I want to check the access log in Squid. I try to open the file (access.log) directly like windows (just double click), it won't open or show me anything. Is anybody here can tell me how to open the squid access log ? I need to check my users connection and audit them. Thanks a lot Chris
Re: [squid-users] LOG files
Thank you Sir, I'll try it now. vr/Chris - Original Message - From: Abu Khaled [EMAIL PROTECTED] To: Christian Souw [EMAIL PROTECTED] Cc: squid-cache.org squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 9:48 AM Subject: Re: [squid-users] LOG files On 6/29/05, Christian Souw [EMAIL PROTECTED] wrote: Dear all, This is really stupid question, forgive me. I want to check the access log in Squid. I try to open the file (access.log) directly like windows (just double click), it won't open or show me anything. Is anybody here can tell me how to open the squid access log ? I need to check my users connection and audit them. Thanks a lot Chris The logfile is in unix format and needs to be converted to dos format so windows can read it. you can try open it in windows command line using 'edit filename' to view it but even then you well not be able to see all of the file and it is not easy to browse throw it. http://www.squid-cache.org/Scripts/ Here you well find many logfile analysis software for squid. Some of them run on windows os directly or as perl scripts. My favorite one is SARG it runs on many unix and unix-like OSs. You can then view the reports it generates as html files either from a web server like apache or copy the reports to a windows client and view the html files. http://sarg.sourceforge.net/sarg.php check the sample report to see if this software is for you! -- Kind regards Abu Khaled
Re: [squid-users] LOG files
Thank you Sir, I'll try it. vr/Chris - Original Message - From: Mark B [EMAIL PROTECTED] To: Christian Souw [EMAIL PROTECTED] Cc: squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 9:55 AM Subject: Re: [squid-users] LOG files Chris, Try access it from a console terminal, and cd into the appropriate location, and type: more access.log, you will then be able to view the file, make sure you're accessing the right file also, verify inside your squid.conf. Alternatively find a squid auditing package that will do it for you, have a look at: http://freshmeat.net/search/?q=squidsection=projectsGo.x=0Go.y=0 Good Luck. - Original Message - From: Christian Souw [EMAIL PROTECTED] To: Mark B [EMAIL PROTECTED] Cc: squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 10:58 AM Subject: Re: [squid-users] LOG files Dear Mark, I used fedora core 3, is that the same like you told me ? Thanks Chris - Original Message - From: Mark B [EMAIL PROTECTED] To: Christian Souw [EMAIL PROTECTED] Cc: squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 9:37 AM Subject: Re: [squid-users] LOG files Hey Chris, If you're using windows for squid, the file will be already in use, you may need to stop squid, copy to an alternative location, then start squid. Give that a go. If it's under *nix, then just vi squid.log Kind Regards, Mark B. - Original Message - From: Christian Souw [EMAIL PROTECTED] To: squid-cache.org squid-users@squid-cache.org Sent: Wednesday, June 29, 2005 10:46 AM Subject: [squid-users] LOG files Dear all, This is really stupid question, forgive me. I want to check the access log in Squid. I try to open the file (access.log) directly like windows (just double click), it won't open or show me anything. Is anybody here can tell me how to open the squid access log ? I need to check my users connection and audit them. Thanks a lot Chris
RE: [squid-users] Log Files SquidGuard
Hi, I have a problem. I need a log of all users (no hosts) surfing in internet, but in the /var/log/squid/squidGuard/squidGuard.log looks (but I dont have the users surfing log) 2004-12-07 10:29:58 [6065] init urllist /home/etc/squidGuard/Executables_Files/urls 2004-12-07 10:29:58 [6065] init expressionlist /home/etc/squidGuard/Executables_Files/expressions 2004-12-07 10:29:58 [6065] squidGuard 1.2.0 started (1102433398.620) 2004-12-07 10:29:58 [6065] squidGuard ready for requests (1102433398.652) How I can make to register the web access users as access.log squid log file? As you state squidGuard.log is only for squidguards operation. Squid user activity is logged in squids access.log M.
Re: [squid-users] log files problems
On Sun, 7 Mar 2004, Payal Rathod wrote: file grew almost 1.8Gb and squid stopped. I still had a space of 10Gb on the file system where logs were dumped. Why did squid stop then? Because your OS does not allow files larger than 2GB for normal applications. Unfortunately, I could not do much so I immediately stoped squid, removed the access.log file after checking the culprit 5 IPs and deleted the file. Then the culprit machines were physically removed from the network and then squid was restarted. I rotate logs everyday at morning 08.00 to have reports through calamaris. In such a suitation, what is the best way to deal with it? Apart from what you have already done: * rotate the logs more often before the magic 2GB file size limit is reached. * write a little script monitoring access.log and when seeing suspicious activity automatically add a firewall rule to block that IP from accessing the proxy. Regards Henrik
Re: [squid-users] log files problems
On Sun, Mar 07, 2004 at 06:53:32PM +0100, Henrik Nordstrom wrote: Because your OS does not allow files larger than 2GB for normal applications. OT, but any way I can increase this limit? Apart from what you have already done: * rotate the logs more often before the magic 2GB file size limit is reached. Ok. But that means I lose some control over the logging data. * write a little script monitoring access.log and when seeing suspicious activity automatically add a firewall rule to block that IP from accessing the proxy. Sounds good, can you give a bit more details on what the script should look for? With warm regards, Payal
Re: [squid-users] log files problems
On Sun, 7 Mar 2004, Payal Rathod wrote: On Sun, Mar 07, 2004 at 06:53:32PM +0100, Henrik Nordstrom wrote: Because your OS does not allow files larger than 2GB for normal applications. OT, but any way I can increase this limit? You could compile Squid with 64-bit file I/O. See what the --enable-large-files option does in Squid-3. Please note that Squid has not been actively tested with 64-bit file I/O and there may be issues in servicing very large objects etc.. and in addition the on-disk cache format differs so you must restart your Squid with a clean cache when enabling this. * rotate the logs more often before the magic 2GB file size limit is reached. Ok. But that means I lose some control over the logging data. Not at all. It just becomes a few more files to keep track of per day. * write a little script monitoring access.log and when seeing suspicious activity automatically add a firewall rule to block that IP from accessing the proxy. Sounds good, can you give a bit more details on what the script should look for? High rates of failed requests (TCP_MISS/5xx) is a good start. Regards Henrik
Re: [squid-users] Log files too large
Schelstraete Bart wrote: Gator wrote: I am finding that Squid (2.5.STABLE2) will fail when the log files reach a certain size. I moved them off to access.log.2 and store.log.2 and life was fine again. 1624135928 Aug 8 10:36 access.log.2 2147483647 Aug 8 09:02 store.log.2 How do I set up these files to rotate automatically so this doesn't happen again? You cannot do that automatically. What I'm doing is create a cronjob that rotates the logfiles every night and is creating statistics for that day. Squid doesn't have a limit on the file size, but the filesystem has a 2Gb filesize limit. Sorry my mistake. Squid should be modified to allow files bigger then 2 gigs...but the question is: Who wants that I think nobody wants to use this. rgrds, Bart
Re: [squid-users] Log files too large
Gator wrote: I am finding that Squid (2.5.STABLE2) will fail when the log files reach a certain size. I moved them off to access.log.2 and store.log.2 and life was fine again. 1624135928 Aug 8 10:36 access.log.2 2147483647 Aug 8 09:02 store.log.2 How do I set up these files to rotate automatically so this doesn't happen again? You cannot do that automatically. What I'm doing is create a cronjob that rotates the logfiles every night and is creating statistics for that day. Squid doesn't have a limit on the file size, but the filesystem has a 2Gb filesize limit. Bart
Re: [squid-users] Log files too large
On Saturday 09 August 2003 18.35, Schelstraete Bart wrote: Sorry my mistake. Squid should be modified to allow files bigger then 2 gigs...but the question is: Who wants that I think nobody wants to use this. Squid-3.0 does have experimental support for large files, at least on Linux. But as you say not many should be interested in this feature. A 2GB access log is rather huge, and rotating the logs to keep them at reasonable sizes is not such big pain. Regards Henrik -- Donations welcome if you consider my Free Squid support helpful. https://www.paypal.com/xclick/business=hno%40squid-cache.org If you need commercial Squid support or cost effective Squid or firewall appliances please refer to MARA Systems AB, Sweden http://www.marasystems.com/, [EMAIL PROTECTED]
Re: [squid-users] log files with
ABOKHALAF, Nassri Abdellatif wrote: Henrik Wrote: By using proxy authentication. Regards Henrik Does this means that users get a popup menu when they open they web browser ? If you use Basic authentication yes, not if you use NTLM. NTML requires MSIE browsers and users logged on to a Microsoft NT domain. See the Squid FAQ on using winbind for installation instructions of the Squid parts. REgards Henrik
Re: [squid-users] log files with
By using proxy authentication. Regards Henrik ABOKHALAF, Nassri Abdellatif wrote: Hello, I want to use squid to give statistics about my users. But access.log only gives me IPs but no User names. Supose many users use the same machine at diferent times. (users log in a W2000 domain) How can i Make log with user names ? thank you in advance, Nassri
RE: [squid-users] log files with
Henrik Wrote: By using proxy authentication. Regards Henrik Does this means that users get a popup menu when they open they web browser ? Any way of doing this quietly ? i mean without user interaction ? Regards nassri ABOKHALAF, Nassri Abdellatif wrote: Hello, I want to use squid to give statistics about my users. But access.log only gives me IPs but no User names. Supose many users use the same machine at diferent times. (users log in a W2000 domain) How can i Make log with user names ? thank you in advance, Nassri