Re: [squid-users] Re: Access denials following Machine name change

From: Henrik Nordstrom <henrik@dont-contact.us>
Date: Fri, 03 Mar 2006 12:52:49 +0100

fre 2006-03-03 klockan 04:45 -0600 skrev Harry Putnam:

> And these lines are added to access.log:
>
> 1141382106.544 0 192.168.1.2 TCP_DENIED/403 1395 GET
> http://www.google.com/ - NONE/- text/html
>
> 1141382108.484 48 192.168.0.4 TCP_MISS/200 1588 GET
> http://www.google.com/ - DIRECT/72.14.203.99 text/html
>
> 1141382108.584 0 192.168.1.2 TCP_DENIED/403 1441 GET
> http://www.google.com/intl/en/images/logo.gif - NONE/-
> text/html
>
> You notice a new host IP is in there (ending 1.2). That is a second
> nic that talks to a dmz machine. It shouldn't be there right?

Right.

Seems your Squid is looping back on itself. Looks to me like you have a
cache_peer line telling Squid to use itself as parent on the 1.2
address. Could not see any such line in the config you pasted earlier,
but the above is very strong indications this is what is going on.

> cache.log has nothing to say so far.

odd... loops are normally reported... but perhaps not in this case as
it's the looped request is denied by http_access..

Regards
Henrik

Received on Fri Mar 03 2006 - 04:52:55 MST

This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:03 MST