Архив форумов ЦИТФорума

[omar_22]

Доброе время суток...
Проблема такая
поставил связку squid+squidGuard+sarg+stc
почти все работает...
что не работет
1. в логах появляется запись
1201066426.921 9 127.0.0.1 TCP_DENIED/403 1345 GET cache_object://127.0.0.1/active_requests - NONE/- text/html
1201066426.938 8 127.0.0.1 TCP_DENIED/403 1337 GET cache_object://127.0.0.1/client_list - NONE/- text/html
1201066426.957 9 127.0.0.1 TCP_DENIED/403 1323 GET cache_object://127.0.0.1/info - NONE/- text/html

я так понимаю проьблема в сквиде с настройкой доступа к кешу ...
вот мой конфиг сквида
#################################
http_port 37882

icp_port 0
snmp_port 0

logfile_rotate 5

hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
pid_filename /opt/squid/logs/squid.pid
cache_store_log none
emulate_httpd_log off
hosts_file /etc/hosts
log_icp_queries off
buffered_logs on
ipcache_size 1024
ipcache_high 95
ipcache_low 90

dns_nameservers 127.0.0.1 192.168.1.1

coredump_dir /opt/squid/var/logs/squid
error_directory /opt/squid/share/errors/Russian-1251

refresh_pattern ^ftp: 10080 20% 40320
refresh_pattern ^gopher: 1440 0% 10080
refresh_pattern . 0 20% 10080
refresh_pattern -i \.gif 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.png 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.jpg 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.jpeg 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.pdf 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.zip 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.tar 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.gz 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.tgz 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.exe 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.prz 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.ppt 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.inf 10080 100% 43200 override-lastmod override-expire
refresh_pattern -i \.swf 10080 100% 43200 override-lastmod override-expire

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 9091 873 4459
acl Safe_ports port 80 20 21 443 563 70 210 9091 4459 631 873 901
acl purge method PURGE
acl CONNECT method CONNECT
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

cache_mem 32 MB
cache_swap_low 80
cache_swap_high 85

cache_effective_user nobody
cache_dir ufs /opt/squid/cache 1000 16 256
cache_access_log /opt/squid/logs/access.log squid
cache_log /opt/squid/logs/cache.log
cachemgr_passwd none active_requests
cachemgr_passwd none client_list
cachemgr_passwd none info

ftp_user anonymous@
ftp_list_width 64
ftp_passive on

redirector_bypass on
redirect_program /opt/squidGuard/bin/squidGuard
redirect_children 5

auth_param basic casesensitive on
auth_param basic program /opt/squid/libexec/ncsa_auth /opt/stc/etc/password
auth_param basic children 5
auth_param basic realm Web-Caching Proxy server
auth_param basic credentialsttl 2 hour

acl trusted_users src "/opt/stc/etc/trusted_users"
acl all_users proxy_auth REQUIRED
http_access allow trusted_users
http_access allow all_users

http_access deny all
http_reply_access allow all_users
http_reply_access allow trusted_users
http_reply_access deny all

visible_hostname mainserver.kchus.local

client_netmask 255.255.255.255
log_fqdn off
memory_pools off
forwarded_for off
#
далее следуют acl на группы на пользователей....
что не так в конфиге?

Помогите пжалуста разобраться

[sendmoreinfo]