I have been playing on Squid for the past two weeks. I got transparent mode up and running. I have two networks in LAN: 192.168.1.0, 10.0.0.0.

How do i make these two networks pass thru my Squid machine??

Can squid log ftp downloads,chat programs,skype voip calls??

How do i monitor the bandwidth usage per IP address in access.log??

How to monitor file downloads by size and IP address??

Are there any good GUI based tools to monitor access.log??

Basically i need both LAN n/w to pass thru transparent squid box with 2 LAN ports to router for loging and monitoring. I also have incoming traffic but can you detail on how to let incoming access into my network on any port?? Should i use iptables?? commands??

eth0 is connected to internet 10.0.0.2 router
eth1 to lan 192.168.1.0

I would also like to know wat gateway to set for eth1??

I would be really thankful if somebody could take some time to help me out.

Thnak you so much in advance.

As I don't know the answer for all your questions (and there are not just a few), I will only answer the ones I know.

But before that, you should tell us in which network your squid machine is working in :P

Yes. Set router to use squid as proxy.
As far as I know, squid would only log packets that pass through it. It means that it will log everything you will need, but unfortunately for you it won't be readeable so easily...

Please, can you translate to English?


By the way, welcome to the community, I hope you're not one of them that comes to ask help and disappear, are you?

HI. thanks for ur reply. My squid box is 192.168.1.122. My first router is 192.168.1.1 which connects to 10.0.0.2 router to ISP. Therefore if i want to chuck the first router and replace it with SQUID box i ll need to configure 2 LAN cards but i am doubtful abt setting gateway address.

eth0: 10.0.0.1
gw: 10.0.0.2

eth1: 192.168.1.122
gw: 10.0.0.2

Are the above settings rite? Should i use iptables to NAT from eth0 to eth1?

How do i let thru both incoming and outgoing connections thru squid so that i can log incoming connections as well? shud i use Iptables again?

I have seen only HTTP traffic in my access.log? how do i log FTP downloads,voip protocols etc?? Please help me in this regard.

I hope you are clear with the settings now.

Thank you

You can't. That's something for iptables' log or ulog target,
not for an application level proxy. All you'll see in squid is
http (and ftp if you set it up like that).

I think you have to set you're first network interface this way:

and the second one:

Skuzye

How to get full report by user and application of all incoming and outgoing internet traffic from squid access.log. Applications like skype, voip,chat programs

thanks

As I said above: you can't. Squid is a web-proxy, you'll
get http and web-traffic at best. To be able to do what
you're after you'll need to get nufw or something the like
(which gives you a breakdown per individual since it requires
authentication) or you'll have to use iptables ulog and be
content with accounting per IP address.

Re-requesting the same (impossible) thing won't make it
achievable. That's like saying how do I get my BMW to
fly ... ain't happening (at least not w/o serious money,
time and effort - same with squid).


Cheers,
Tink