Squid Transparent Proxy e analisi dei log

To: debian-italian <debian-italian@lists.debian.org>
Subject: Squid Transparent Proxy e analisi dei log
From: jangar <gianluca.gargiulo@gmail.com>
Date: Mon, 24 Oct 2005 10:19:44 +0200
Message-id: <[🔎] ff5259670510240119i2c5b5c6fg@mail.gmail.com>

Salve,

da quando ho installato squid come proxy trasparente facendo il DNat
da Shorewall sto riscontrando nell'esecuzione di sarg per i report che
i client nativi non vengono registrati da squid, bensì solo il client
10.0.0.0 (ovvero il network). Come è possibile riuscire a tracciare la
navigazione dei singoli client?

Grazie

P.S.: posto la configurazione di squid

----------------------------------------------------------------------------------------------------------------------------------
http_port 10.0.0.102:3128
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 64 MB
cache_replacement_policy lru
memory_replacement_policy lru
mime_table /usr/share/squid/mime.conf
client_netmask 255.255.255.0
ftp_user squid@nopassword.com
ftp_passive on
hosts_file /etc/hosts
refresh_pattern ^ftp:           1440    20%     10080
refresh_pattern ^gopher:        1440    0%      1440
refresh_pattern .               0       20%     4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 # https, snews
acl SSL_ports port 873 # rsync
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 631 # cups
acl Safe_ports port 873 # rsync
acl Safe_ports port 901 # SWAT
acl purge method PURGE
acl CONNECT method CONNECT
acl porn url_regex -i "/etc/squid/blocked/porn"
acl porn1 url_regex -i "/etc/squid/blocked/porn1"
acl our_networks src 10.0.0.0/24
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access allow CONNECT !SSL_ports
http_access deny !Safe_ports
http_access deny porn
http_access deny porn1
http_access allow our_networks
http_access allow localhost
http_access allow all
http_access deny all
http_reply_access allow all
icp_access allow all
cache_mgr webmaster@XXXXXXX
icp_port 0
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
httpd_accel_no_pmtu_disc on
error_directory /usr/share/squid/errors/Italian
coredump_dir /var/spool/squid
high_memory_warning 128 MB
ie_refresh on
----------------------------------------------------------------------------------------------------------------------------------

Reply to:

Prev by Date: Re: [OT]Re: Re: SAP: questo sconosciuto
Next by Date: Re: latex bottom page
Previous by thread: Re: latex bottom page
Next by thread: bloccare accesso ad internet per un'applicazione
Index(es):
- Date
- Thread