SQUID ANE ERROR GAN..., NEED HELP...!!!

Diskusi tentang Ubuntu Server baik webserver, database server, samba server dan service lainnya serta jaringan menggunakan Sistem Operasi Ubuntu.
User avatar
Bays_Sands
Posts: 2
Joined: 31 May 2014, 20:55
Location: Indonesia

SQUID ANE ERROR GAN..., NEED HELP...!!!

Postby Bays_Sands » 31 May 2014, 21:14

Dear FUI..
ane masih newbie nih di ubuntu, apalagi di ubuntu server...
ane punya masalah dgn proxy server ane yg diinstall di ubuntu 10.04..

sebelumnya ini proxy ga apa2... HIT/MISS jalan dan cache ane jg udah keisi 21% dari 80GB

tapi ini proxy tiba2 error... user/client ane ga bisa browsing.. buka google aja error... yg bisa hanya facebook bisa tapi lemot luar biasa...

berikut squid.conf nya...
Tampilkan

Code: Select all

=======================================================================
http_port 3128 transparent
server_http11 on

pid_filename /var/run/squid.pid
coredump_dir /var/spool/squid/
error_directory /usr/share/squid/errors/English
icon_directory /usr/share/squid/icons
mime_table /usr/share/squid/mime.conf

cache_mem 8 MB
maximum_object_size_in_memory 512 bytes
memory_replacement_policy heap GDSF
cache_replacement_policy heap LFUDA

minimum_object_size 0 KB
maximum_object_size 512 MB
cache_swap_low 97
cache_swap_high 99

cache_dir aufs /cache1 61000 143 256
cache_dir aufs /cache2 61000 143 256

# cache_dir aufs /cache 12000 28 256

access_log daemon:/var/log/squid/access.log squid
cache_log /var/log/squid/cache.log
cache_store_log none
store_dir_select_algorithm  round-robin
logfile_daemon /usr/lib/squid/logfile-daemon
logfile_rotate 1

acl all src all
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 172.16.1.0/24      # RFC1918 possible internal network
acl localnet src 192.168.1.0/24      # RFC1918 possible internal network

acl SSL_ports port 443
acl Safe_ports port 80            # http
acl Safe_ports port 21            # ftp
acl Safe_ports port 443            # https
acl Safe_ports port 70            # gopher
acl Safe_ports port 210            # wais
acl Safe_ports port 1025-65535      # unregistered ports
acl Safe_ports port 280            # http-mgmt
acl Safe_ports port 488            # gss-http
acl Safe_ports port 591            # filemaker
acl Safe_ports port 777            # multiling http
acl CONNECT method CONNECT
acl purge method PURGE
acl snmppublic snmp_community public

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

http_access allow localnet
http_access allow all
http_access deny all

icp_access allow localnet
icp_access deny all
icp_port 0

buffered_logs on

acl shoutcast rep_header X-HTTP09-First-Line ^ICY.[0-9]
upgrade_http0.9 deny shoutcast

acl apache rep_header Server ^Apache
broken_vary_encoding allow apache

forwarded_for off
header_access From deny all
header_access Server deny all
header_access Link deny all
header_access Via deny all
header_access X-Forwarded-For deny all
httpd_suppress_version_string on

shutdown_lifetime 10 seconds

snmp_port 3401
snmp_access allow snmppublic all
dns_timeout 1 minutes

dns_nameservers 202.148.1.196 8.8.8.8
#dns_testnames 127.0.0.1

#fqdncache_size 4096      # aslinya
fqdncache_size 16384
#ipcache_size 10240      # aslinya
ipcache_size 16384
ipcache_low 97
ipcache_high 99
log_fqdn off
memory_pools off

maximum_single_addr_tries 2
retry_on_error on

icp_hit_stale on

strip_query_terms on

query_icmp on
reload_into_ims on
emulate_httpd_log off
negative_ttl 0 seconds
pipeline_prefetch on
vary_ignore_expire on
half_closed_clients off
high_page_fault_warning 2
nonhierarchical_direct on
prefer_direct off
cache_mgr xxx@xxxxx
cache_effective_user proxy
cache_effective_group proxy
visible_hostname xxx@xxxxx
unique_hostname xxx@xxxxx
cachemgr_passwd none all
client_db on
max_filedescriptors 8192

# TAG: ZPH
zph_mode tos
zph_local 0x30
zph_parent 0
zph_option 136

===================================================================

ane juga make mikrotik untuk redirect port 80 ke 3128

berikut nat printnya

===
chain dstnat protocol tcp dst-port 80 in-interface LAN action dst-nat to-address 100.100.100.2 to ports 3128

kira2 kenapa yaaa...
ada kah yang salah... mohon koreksi n solusinya...
User avatar
q_p
Posts: 3109
Joined: 14 Oct 2012, 13:01
Contact:

Re: SQUID ANE ERROR GAN..., NEED HELP...!!!

Postby q_p » 31 May 2014, 22:03

Coba dilihat di file log-nya, terutama baris2 terakhir =
[font:Courier New]tail -30 /var/log/squid/cache.log[/font]
User avatar
Bays_Sands
Posts: 2
Joined: 31 May 2014, 20:55
Location: Indonesia

Re: SQUID ANE ERROR GAN..., NEED HELP...!!!

Postby Bays_Sands » 31 May 2014, 22:16

kaya ini gan..

1401549059.456 14 192.168.1.254 TCP_REFRESH_MISS/200 1584 GET http://finance.services.appex.bing.com/ ... vc/AppTile? - DIRECT/115.124.93.147 application/xml
1401549059.662 1063 192.168.1.254 TCP_MISS/302 637 GET http://appexbingfinance.trafficmanager. ... vc/AppTile? - DIRECT/137.117.213.84 text/html
1401549059.671 6 192.168.1.254 TCP_REFRESH_MISS/200 1629 GET http://finance.services.appex.bing.com/ ... vc/AppTile? - DIRECT/115.124.93.147 application/xml
1401549059.693 362 192.168.1.254 TCP_MISS/302 641 GET http://appexbingfinance.trafficmanager. ... vc/AppTile? - DIRECT/137.117.213.84 text/html
1401549059.702 7 192.168.1.254 TCP_REFRESH_MISS/200 1633 GET http://finance.services.appex.bing.com/ ... vc/AppTile? - DIRECT/115.124.93.147 application/xml
1401549059.812 732 192.168.1.254 TCP_MISS/302 609 GET http://appexbingfinance.trafficmanager. ... vc/AppTile? - DIRECT/137.117.213.84 text/html
1401549059.821 5 192.168.1.254 TCP_REFRESH_MISS/200 1585 GET http://finance.services.appex.bing.com/ ... vc/AppTile? - DIRECT/115.124.93.147 application/xml
1401549059.822 740 192.168.1.254 TCP_MISS/302 609 GET http://appexbingfinance.trafficmanager. ... vc/AppTile? - DIRECT/137.117.213.84 text/html
1401549059.831 6 192.168.1.254 TCP_REFRESH_MISS/200 1580 GET http://finance.services.appex.bing.com/ ... vc/AppTile? - DIRECT/115.124.93.147 application/xml
1401549097.985 3 192.168.1.254 TCP_MISS/200 277 GET http://172.16.1.2/userman/? - DIRECT/172.16.1.2 text/xml
1401549098.000 9 192.168.1.254 TCP_MISS/200 617 POST http://172.16.1.2/userman/? - DIRECT/172.16.1.2 text/xml
1401549189.244 377 192.168.1.254 TCP_REFRESH_HIT/200 462 GET http://download.yourfileinfo.com/software_version.txt - DIRECT/54.230.72.149 text/plain
1401549189.250 0 192.168.1.254 TCP_HIT/200 433 GET http://download.yourfileinfo.com/data_version.txt - NONE/- text/plain

jalan sih proxynya.. cuman yang berkaitan dengan google pasti error.. ga bisa sama sekali diakses itu google....

HELP PLIZZ
User avatar
bang_andi
Posts: 398
Joined: 03 Sep 2010, 09:07
Location: Di sekitar sungai musi...
Contact:

Re: SQUID ANE ERROR GAN..., NEED HELP...!!!

Postby bang_andi » 04 Jun 2014, 22:46

coba bantu om...

ini siapa tau ya, kemungkinan...

sblm masalah trjadi... ente ada gk edit squid.conf nya.. ya misalkan buat acl baru utk memblok kata tertentu...

atau mungkin sblmnya pernah utak atik rules di mikrotiknya...

klo ada backup konfigurasi squid.conf & mikrotik, coba di restore om..

tpi hati2 klo restore pd mikrotik, tdk semuanya kmbali sprti settingan semula, ada yg harus disesuaikan kmbali...rada repot ye

Return to “Ubuntu Server”

Who is online

Users browsing this forum: Yahoo [Bot] and 4 guests