Monty,
There was a similar question a while back like this:
______________________________________________________________
Subject: Re: [squid-users] NTLM Authentication / access.log
tis 2006-10-03 klockan 20:11 +0200 skrev Tino Reichardt:
> is there a way to deny the logging of the 407/DENIED or 403/DENIED
> requests to squid.
Good question. May be possible using the rep_header acl looking for the X-Squid-Error header. But haven't verified.
Regards
Henrik
_______________________________________________________________
Maybe there's a clue there, though I wasn't able to avoid logging 407 with the above suggestion, but I don't really know enough to make a good try anyway.
I am able to remove 407 from my daily logs after the fact though using the following command on my access.log:
cat /var/log/squid/access.log | grep -v 'TCP.*407 ' > /var/log/squid/access_no_407.log
I'm guessing you can do something similar to show ONLY 403 errors?
If you don't need this info real-time maybe this would work for you also.
I'd still like to be able to have my log file ignore 407 error on the fly though, as with NTLM auth it uses up something like 1/3 of the total log size.
Geoff
-----Original Message-----
From: Monty Ree [mailto:chulmin2@hotmail.com]
Sent: Thursday, November 30, 2006 5:38 AM
To: squid-users@squid-cache.org
Subject: [squid-users] only "Access Denied" error to log?
Hello, all.
I would like to leave logs only "Access Denied" 403(forbidden) error
related.
Anyone who can help me?
How can I set squid.conf to leave only "Access Denied" error to log file?
Thanks for your help in advance.
_________________________________________________________________
¿À´Ã ¹«½¼ ÀÏÀÌ »ý±æ±î ±Ã±ÝÇϽÃÁÒ? MSN ¿î¼¼¿¡¼ È®ÀÎÇϼ¼¿ä.
http://fortune.msn.co.kr/
Received on Thu Nov 30 2006 - 11:26:22 MST
This archive was generated by hypermail pre-2.1.9 : Fri Dec 01 2006 - 12:00:03 MST