Squid ACL name CONNECT not defined [RESOLVIDO]

pablokapp
(usa Debian)

Enviado em 23/08/2012 - 17:26h

Configurei meu squid das formas mais basicas que achei e sempre quando reinicio o servidor da um erro "ACL name CONNECT not defined!"
FATAL: bungle squid.conf line 26: http_access deny CONNECT !SSL_ports


segue abaixo meu squid.conf
http_port 3128
visible_hostname LINUXTOP
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl safe_ports port 80 # http
acl safe_ports port 21 # ftp
acl safe_ports port 443 563 #http snews
acl safe_ports port 70 # gopher
acl safe_ports port 210 # wais
acl safe_ports port 280 # http-mgmt
acl safe_ports port 488 # gss-http
acl safe_ports port 591 # filemaker
acl safe_ports port 777 # multiling http
acl safe_ports port 901 # swat
acl safe_ports port 1025-65535 # portas altas
acl purge method PURGE
acl CONNETCT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports

acl redelocal src 192.168.75.250/24
http_access allow localhost
http_access allow redelocal

http_access deny all

eduardo
(usa Linux Mint)

Enviado em 23/08/2012 - 20:20h

Você tem um erro de digitação aqui ó:
acl CONNETCT method CONNECT

O correto é:
acl CONNECT method CONNECT

Tenta ai ;)

eduardo
(usa Linux Mint)

Enviado em 25/08/2012 - 09:47h

Resolveu? Se sim, marque o tópico com resolvido e marque a Melhor Resposta ;)

pablokapp
(usa Debian)

Enviado em 27/08/2012 - 11:17h

essa parte sim mais ainda tem um erro bungle squid.conf line 3: http_access allow LINUXTOP
da failed.

eduardo
(usa Linux Mint)

Enviado em 27/08/2012 - 11:20h

Como está seu squid.conf agora?

pablokapp
(usa Debian)

Enviado em 27/08/2012 - 12:07h

http_port 3128
visible_hostname LINUXTOP
http_access allow LINUXTOP
error_directory /usr/share/squid/errors/Portugese/
cache_mem 128 MB
maximum_object_size_in_memory 128 KB
maximum_object_size 1024 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /top/squid 8192 16 256
cache_access_log /top/squid/acess.log
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280
acl all src 192.168.75.0/255.255.255.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl safe_ports port 80 # http
acl safe_ports port 21 # ftp
acl safe_ports port 443 563 #http snews
acl safe_ports port 70 # gopher
acl safe_ports port 210 # wais
acl safe_ports port 280 # http-mgmt
acl safe_ports port 488 # gss-http
acl safe_ports port 591 # filemaker
acl safe_ports port 777 # multiling http
acl safe_ports port 901 # swat
acl safe_ports port 3389 # area de trabalho win
acl safe_ports port 1025-65535 # portas altas
acl purge method PURGE
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports

acl bloqueados url_regex -i "/top/squid/bloqueados"
http_access deny bloqueados

acl redelocal src 192.168.75.250/24
http_access allow localhost
http_access allow redelocal

http_access deny all
http_reply_access allow all

johnnyb
(usa Fedora)

Enviado em 27/08/2012 - 13:49h

Amigo tente esse e veja se da certo caso nao de poste o erro blz

http_port 3128
visible_hostname LINUXTOP
error_directory /usr/share/squid/errors/Portugese/

# *** Configuração do cache
cache_mem 128 MB
maximum_object_size_in_memory 128 KB
maximum_object_size 1024 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /top/squid 8192 16 256
cache_access_log /top/squid/acess.log
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280

# *** Configuração do range da rede
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl redelocal src 192.168.75.250/24
acl manager proto cache_object

# *** Configuração das portas
acl all src all
acl SSL_ports port 443 563
acl safe_ports port 80 # http
acl safe_ports port 21 # ftp
acl safe_ports port 443 563 #http snews
acl safe_ports port 70 # gopher
acl safe_ports port 210 # wais
acl safe_ports port 280 # http-mgmt
acl safe_ports port 488 # gss-http
acl safe_ports port 591 # filemaker
acl safe_ports port 777 # multiling http
acl safe_ports port 901 # swat
acl safe_ports port 3389 # area de trabalho win
acl safe_ports port 1025-65535 # portas altas
acl purge method PURGE
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports

# *** Configuração dos Bloqueios
acl bloqueados url_regex -i "/top/squid/bloqueados"

# *** Liberação de acesso sempre bloquei primeiro para depois liberar
http_access deny bloqueados
http_access allow localhost
http_access allow redelocal
http_access deny all

pablokapp
(usa Debian)

Enviado em 27/08/2012 - 15:04h

warning: netmask away part of the specified IP in '192.168.75.250/255.255.0'
warning: netmask away part of the specified IP in '127.0.0.1/255.255.255.0'
warning: netmask away part of the specified IP in '192.168.75.250/24'

agora da isso .



http_port 3128
visible_hostname LINUXTOP

error_directory /top/
cache_mem 128 MB
maximum_object_size_in_memory 128 KB
maximum_object_size 1024 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /top/squid 8192 16 256
cache_access_log /top/squid/acess.log
refresh_pattern ^ftp: 15 20% 2280
refresh_pattern ^gopher: 15 0% 2280
refresh_pattern . 15 20% 2280

acl all src 192.168.75.250/255.255.255.0
acl localhost src 127.0.0.1/255.255.255.0
acl to_localhost dst 127.0.0.0/8
acl redelocal src 192.168.75.250/24
acl manager proto cache_object

acl SSL_ports port 443 563
acl safe_ports port 80 # http
acl safe_ports port 21 # ftp
acl safe_ports port 443 563 #http snews
acl safe_ports port 70 # gopher
acl safe_ports port 210 # wais
acl safe_ports port 280 # http-mgmt
acl safe_ports port 488 # gss-http
acl safe_ports port 591 # filemaker
acl safe_ports port 777 # multiling http
acl safe_ports port 901 # swat
acl safe_ports port 3389 # area de trabalho win
acl safe_ports port 1025-65535 # portas altas
acl purge method PURGE
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports

acl bloqueados url_regex -i "/top/squid/bloqueados"
http_access deny bloqueados

http_access allow localhost
http_access allow redelocal

http_access deny all
http_reply_access allow all

eduardo
(usa Linux Mint)

Enviado em 27/08/2012 - 15:08h

Cara, tuas máscaras estão erradas. Deixa assim ó:

acl all src 192.168.75.0/255.255.255.0
acl localhost src 127.0.0.1
acl redelocal src 192.168.75.0/24

pablokapp
(usa Debian)

Enviado em 28/08/2012 - 09:38h

Funcionou ;D
aaaah finalmente .

pablokapp
(usa Debian)

Enviado em 28/08/2012 - 10:13h

so que os computadores ainda nao usam o proxy .