[squid-users] Squid Authentication

From: Michael T. Cheshire <[email protected]>
Date: Mon, 26 Nov 2001 16:56:55 +1030

Hi Everyone,

Just quick question :

Here is the output from my SARG (Generates Reports based on squid's
access.log) :

N USERID CONNECT BYTES %BYTES IN-CACHE-OUT USED TIME
MILISEC %TIME
 
1 xxxxx 4.461 91.952.887 25.70% 0.97% 99.03% 02:26:34 8.794.584
4.73%
2 xxxxx 14.461 78.528.441 21.95% 12.10% 87.90% 05:05:13 18.313.500
9.85%
3 everybody 40.809 58.677.302 16.40% 100.00% 0.00% 00:01:32 92.982
0.05%
4 xxxxx 13.761 50.776.843 14.19% 41.76% 58.24% 03:51:22 13.882.368
7.47%
5 xxxxx 11.592 28.490.155 7.96% 9.95% 90.05% 03:18:22 11.902.943
6.40%
6 xxxxx 5.199 16.916.589 4.73% 9.20% 90.80% 00:43:34 2.614.478
1.41%
7 xxxxx 4.251 14.389.871 4.02% 15.27% 84.73% 34:50:20 125.420.989
67.48%
8 xxxxx 2.514 9.346.915 2.61% 8.16% 91.84% 00:47:05 2.825.545
1.52%
9 xxxxx 1.725 6.939.035 1.94% 19.10% 80.90% 00:28:15 1.695.873
0.91%
10 xxxxx 339 1.377.460 0.38% 40.95% 59.05% 00:04:46 286.314
0.15%
11 xxxxx 124 391.717 0.11% 66.21% 33.79% 00:00:48 48.095
0.03%

when you click on "everybody", you get :
  
 ACCESSED SITE CONNECT BYTES %BYTES IN-CACHE-OUT USED TIME MILISEC %TIME

   <http://www.apec.acer.com.au:443> www.apec.acer.com.au:443 5.958
8.144.586 13.88% 100.00% 0.00% 00:00:08 8.623 9.27% DENIED
 ng.ingrammicro.com 1.990 3.363.888 5.73% 100.00% 0.00% 00:00:03 3.178
3.42% DENIED
 au.ingrammicro.com 1.586 2.323.572 3.96% 100.00% 0.00% 00:00:02 2.670
2.87% DENIED
 ad-adex3.flycast.com 1.338 2.102.886 3.58% 100.00% 0.00% 00:00:01 1.305
1.40% DENIED
   <http://www.ezula.com> www.ezula.com 1.077 1.498.107 2.55% 100.00%
0.00% 00:00:00 706 0.76% DENIED
   <http://www.enterprise.cwo.com.au:443> www.enterprise.cwo.com.au:443
1.000 1.382.000 2.36% 100.00% 0.00% 00:00:01 1.165 1.25% DENIED
 techpac.com.au 741 1.068.080 1.82% 100.00% 0.00% 00:00:02 2.195 2.36%
DENIED
   <http://www.realestate.com.au> www.realestate.com.au 563 821.302
1.40% 100.00% 0.00% 00:00:01 1.781 1.92% DENIED
 d2.webhancer.com 546 746.382 1.27% 100.00% 0.00% 00:00:00 321 0.35%
DENIED
 d1.webhancer.com 546 746.382 1.27% 100.00% 0.00% 00:00:00 332 0.36%
DENIED

<blah blah>

I am running NTLM authentication.

Now the "everybody" list obviously contains no user and therefore all
the DENIED cache accesses.

Now according to the main list I have 57,667,000 bytes which have gone
into the cache but not out. Does this mean that even though the user
failed authentication, the proxy still went out and got the data even
though it didnt pass it to the user?

Thanks in advance for your help..

Michael.

---

Regards,

-----------------------------------------------------------------------
Michael Cheshire
Network Engineer
Microarts Pty Ltd
mailto:michael.cheshire@microarts.com.au
<mailto:michael.cheshire@microarts.com.au>
http://www.microarts.com.au <http://www.microarts.com.au/>
PH : 8373 7000 / 0402 277 092
-----------------------------------------------------------------------

Disclaimer:

Confidentiality
This message contains privileged and/or confidential information
intended only for the use of the addressee named above. If you are not
the intended recipient of this message you are hereby notified that
you must not disseminate, re-transmit, copy or take any action in
reliance on it. If you have received this message in error please
delete the document and notify Microarts immediately. Any views
expressed in this message are those of the individual sender, except
where the sender specifically states them to be the views of Microarts.

Viruses
Any loss/damage incurred by using this material is not the sender's
responsibility. Microarts entire liability will be limited to
re-supplying the material. No warranty is made that this material is
free from computer virus or any other defect.

-----------------------------------------------------------------------

 
Received on Sun Nov 25 2001 - 23:28:47 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:04:30 MST