Squid3 access.log TCP_DENIED

loggingsquid

In squid.conf we have some

http_access deny ACL

catching a lot of connection attempts, so filling the access.log with TCP_DENIED lines.

It is normal behaviour, but too much verbose for us.
Is it possible to avoid logging these ones ?

best regards, Sala

Best Answer

The access_log directive in squid.conf defines where and how access.log data is to be logged. This directive can be followed with a list of ACLs which all must match for any given request to be logged to that output. http://www.squid-cache.org/Doc/config/access_log/

You can do it like this:

 acl dontLog http_status 403
 access_log none dontLog
 access_log stdio:/var/log/squid/access.log squid

... or like this:

 acl dontLog http_status 403
 access_log stdio:/var/log/squid/access.log squid !dontLog

Related Solutions

Understand squid access.log

The log format is user-definable, but odds are good you're using the default native log format. The Squid cache FAQ describes the native log format in detail, including the result code you're asking about.

Ubuntu 9.10 and Squid 2.7 Transparent Proxy TCP_DENIED

You must tell squid that it is setup as a transparent system

Instead of

http_port 3128

You need

# enable the transparent option for interception caching
http_port 3128 transparent

Best Answer

Related Solutions

Understand squid access.log

Ubuntu 9.10 and Squid 2.7 Transparent Proxy TCP_DENIED

Related Topic