Re: [squid-users] TCP_DENIED/TCP_MISS from Amos Jeffries on 2012-03-20 (squid-users)

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Wed, 21 Mar 2012 16:27:12 +1300

On 21.03.2012 15:04, alexus wrote:
> I dont understand maybe someone else can help me understand that...
> how is that I allowed this domain in my log I get deny and next line
> is miss?!
>
> 1332295011.844 0 186.176.225.154 TCP_DENIED/407 4183 GET
> http://f.femowe.com/cgi/r? - NONE/- text/html
> 1332295013.395 166 186.176.225.154 TCP_MISS/302 1552 GET
> http://f.femowe.com/cgi/r? gmbproxy DIRECT/70.42.23.12 text/html
>

That is Authentication happening.

The client and Squid requests credentials "DENIED/407".
Then the client repeats with credentials and gets admitted.

http://wiki.squid-cache.org/SquidFaq/SquidLogs#Squid_result_codes
http://wiki.squid-cache.org/SquidFaq/SquidLogs#HTTP_status_codes

>
> and this is what I have in my squid.conf
>
> acl bk dstdomain f.femowe.com
> http_access deny !bk

This config snippet is irrelevant by itself ... it denies on URL which
are *not* involving the domain which your log snippet is about.

Amos
Received on Wed Mar 21 2012 - 03:27:16 MDT

This archive was generated by hypermail 2.2.0 : Thu Mar 22 2012 - 12:00:03 MDT