LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 01-10-2008, 03:37 PM   #1
texmansru47
Member
 
Registered: Jul 2004
Location: Texas
Distribution: CentOS 4.X
Posts: 42

Rep: Reputation: 15
How to uninstall Squid


We had Squid 2.5 from the CENTOS build CDs loaded and running on the linux server we have in place at work. The problem was one of our team deleted the /var/logs/squid/access.log when it got too big (instead of the squid -k rotate command). Of course Squid barfed... and would never start back up. I was reading on the Squid pages and I saw where basically a reinstallation was required. Dumby me trusted the person I asked to uninstall the software, did not so when I deployed the install of the updated verison of Squid (2.5 Stable14) it loaded fine and runs... the problem... the proxy is not working at all on the clients... My iptables is as follows:

Chain INPUT (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere
ACCEPT tcp -- anywhere proxy.com tcp dpt:squid state NEW,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:10000
ACCEPT udp -- anywhere anywhere udp
ACCEPT tcp -- anywhere anywhere tcp
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere

Chain FORWARD (policy ACCEPT)
target prot opt source destination
RH-Firewall-1-INPUT all -- anywhere anywhere
ACCEPT tcp -- anywhere anywhere tcp dpt:10000

Chain OUTPUT (policy ACCEPT)
target prot opt source destination

Chain RH-Firewall-1-INPUT (2 references)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere tcp dpt:10000
ACCEPT tcp -- proxy.com anywhere tcp spt:squid state NEW,ESTABLISHED
ACCEPT udp -- anywhere anywhere udp dpt:syslog
ACCEPT tcp -- anywhere anywhere tcp dpt:shell
ACCEPT udp -- anywhere anywhere udp dpt:ntp
ACCEPT tcp -- anywhere anywhere tcp dpt:ntp
ACCEPT udp -- anywhere anywhere udp dpt:9090
ACCEPT tcp -- anywhere anywhere tcp dpt:9090
ACCEPT udp -- anywhere anywhere udp dpt:radius
ACCEPT tcp -- anywhere anywhere tcp dpt:radius
ACCEPT tcp -- anywhere anywhere tcp dpt:5222
ACCEPT udp -- anywhere anywhere udp dpt:5222
ACCEPT all -- anywhere anywhere
ACCEPT icmp -- anywhere anywhere icmp any
ACCEPT ipv6-auth-- anywhere anywhere
ACCEPT ipv6-crypt-- anywhere anywhere
ACCEPT udp -- anywhere 224.0.0.251 udp dpt:5353
ACCEPT udp -- anywhere anywhere udp dpt:ipp
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh state NEW
ACCEPT tcp -- anywhere anywhere tcp dpt:ftp state NEW
ACCEPT tcp -- anywhere anywhere tcp dpt:http state NEW
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp state NEW
REJECT all -- anywhere anywhere reject-with icmp-port-unreachable

So my question is this... should I uninstall both verisons of Squid and reload the stable14 verison fresh (saving my squid.conf file of course) or is there a way to make this work without the hassle of a dual uninstall (I know to run make uninstall for the stabe14 verison but I'm not sure how to remove the verison that came with the installation CDs)???

Thanks,
_________________
 
Old 01-10-2008, 03:56 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,396

Rep: Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963
squid has *NOTHING* to do with ip tables... i don't understand why you're mixing the two... the tables there list "squid" as it'[s just a well known port, 3128 == squid. there's no reason to uninstall squid in the first place. deleting the access.log is trivial and will in no way stop it reloading at all. you need to actually look at your logs in more detail. by installing squid you presumably actually upgraded squid, maybe you replaced the personalised squid.conf with the factory defaults??
 
Old 01-11-2008, 11:18 AM   #3
texmansru47
Member
 
Registered: Jul 2004
Location: Texas
Distribution: CentOS 4.X
Posts: 42

Original Poster
Rep: Reputation: 15
But the iptables have a great deal to do with the squid operations... i.e. open the ports to the proxy itself... that is in every help file I have seen. I made a copy of my squid.conf and moved it... once I reloaded the software I migrated the original squid.conf back to /etc/squid/ directory. In webmin I can see the configuration file perfectly. The problem is absolutely NO client on my network can see the internet at all (no sites) if I try to push the proxy information to them. That is my concern and problem.

What I can find this maybe solely an iptables issue, but I'm not sure. the logs are useless since they do not state anything outside of the SARG requests I'm making against the Proxy server. Everything was working perfectly until the access.log file was deleted in squid. In addition, during a reboot the iptables lost it's configuration as well. I have to run an iptables-restore command to get that back (took forever!), but once I did iptables was fine, but no squid.

I need to find some solution or a point in point in the right direction to figure this issue out. Because I'm lost as to why everything looks right, but no client can use the proxy.

Thanks,
 
Old 01-11-2008, 11:22 AM   #4
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,396

Rep: Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963
well as above, screwing with squid will not be able to affect iptables in any way at all. obviously the two come into collision if you are blocking it, but it's either an issue with squid or with iptables. is squid running? Can you access squid through localhost? can you telnet to port 3128 locally and remotely? if you can't get that remotely then yes that would suggest iptables certainly, but if you do get a tcp socket opening then iptables will have no part to play in the issue you have, in which case you're back to squid. that test *should* be enough to at least confirm which part of the equation is at fault.
 
Old 01-11-2008, 04:18 PM   #5
texmansru47
Member
 
Registered: Jul 2004
Location: Texas
Distribution: CentOS 4.X
Posts: 42

Original Poster
Rep: Reputation: 15
The telnet is a great idea... I will have to load Telnet on the server (I prefer to use only ssh). I will run that test and see what happens.

Thanks,
 
Old 01-11-2008, 04:23 PM   #6
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,396

Rep: Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963Reputation: 1963
well actually ssh will work too, just won't look as pretty. wget, indeed *anything* that can open a tcp port. best actually would be nmap... by defualt it's do a TCP handshake to many common ports, and i'd be sure 3128 woudl be included. if not, just tell it to use that port directly.
 
Old 01-11-2008, 04:40 PM   #7
texmansru47
Member
 
Registered: Jul 2004
Location: Texas
Distribution: CentOS 4.X
Posts: 42

Original Poster
Rep: Reputation: 15
I will try ssh and nmap... Thanks again.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
error in uninstall make squid, how should I remove it then? Niceman2005 Linux - Software 5 07-03-2009 02:09 AM
Need to uninstall SuSe 8.1 & there is no uninstall jwhibdon Linux - Software 10 10-26-2006 11:57 AM
How do you uninstall software which doesn't have an uninstall-file? lagu2653 Linux - Software 2 12-08-2005 12:36 PM
uninstall from src if no make uninstall dtra Linux - Software 3 04-29-2005 09:13 AM
Source uninstall with 'make uninstall' HOWTO! Creeps Linux - Newbie 6 09-14-2004 11:03 AM


All times are GMT -5. The time now is 09:07 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration