论坛徽章:: 0

电梯直达

1楼 [收藏(0)] [报告]

发表于 2010-04-13 15:02 |只看该作者 |倒序浏览

部分配置如下：
acl SSL_ports port 443 563 5000
acl Safe_ports port 80 # http
acl Safe_ports port 81 # https
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 8002 # zjg eport
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 25
acl Safe_ports port 110
acl CONNECT method CONNECT

acl mynetwork src 172.21.55.0/24
acl mmxfile urlpath_regex -i \.mp3$ \.avi$ \.torrent$ \.rmvb$ \.rm$ \.ts$ \.wmv$ \.wma$ \.flv$ \.mpeg$ \.ra$ \.mpe$ \.smi$ \.3gp$ \.mp4$ \.td$ \.td.cfg$
acl disable_site dstdomain "/usr/local/etc/squid/deny_site.txt"
http_access deny disable_site
http_access deny mmxfile
http_access allow mynetwork
http_access deny !mynetwork
http_access allow manager localhost
http_access deny manager
http_access allow Safe_ports
http_access deny !Safe_ports
#http_access deny CONNECT !SSL_ports
http_access allow localnet
http_access deny all
broken_vary_encoding allow apache

大部分网站都能正常运行，但是访问某个网站是出现403错误，部分日志如下：
1271136593.745    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271136597.022    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271136669.964    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271136780.908    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271136798.511    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271136860.089    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271136880.377    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137001.592    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137004.864    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137121.593    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137126.987    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137158.866    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137183.418    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137215.885    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137231.915    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137238.642    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137290.616    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137612.972    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137673.444    0 172.21.55.150 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137815.164    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271137818.012    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138009.903    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138038.106    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138041.171    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138053.560    0 172.21.55.153 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138213.863    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138222.057    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138255.085    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138333.087    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138696.359    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138849.193    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271138871.311    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271139406.958    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271139652.930    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271139854.800    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271140092.491    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271140163.033    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271140409.778    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271140424.422    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271141012.669    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271141049.754    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271141072.719    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271141075.178    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html
1271141077.888    0 172.21.55.15 TCP_DENIED/403 1356 CONNECT 10.10.255.7:8002 - NONE/- text/html

请大家帮忙解决！谢谢了。

文库|博客

vitas333_cu

丰衣足食

论坛徽章:: 0

2楼 [报告]

发表于 2010-04-17 08:11 |只看该作者

negative_ttl 0 minutes

这样可以不缓存 http 的一些错误代码比如 403, 503, 204等等..

实战分享：从技术角度谈机器学习入门| 【大话IT】RadonDB低门槛向MySQL集群下战书 | ChinaUnix打赏功能已上线！ | 新一代分布式关系型数据库RadonDB知多少？

返回列表

Chinaunix › 论坛 › IT运维 › 服务器应用 › 请教 squid 2.7 tcp_denied/403问题？

[proxy] 请教 squid 2.7 tcp_denied/403问题？ [复制链接]