TCP_DENIED/407 4184 GET

1. TCP_DENIED/407 4184 GET

Alessandro Cardoso
alecardoso

(usa Outra)

Enviado em 12/02/2020 - 14:12h

Boa Tarde Pessoal

Tenho recebido isso no meu arquivo access.log e está me acasionando muitos transtornos pois o arquivo não para de crescer.

1581524450.644 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.669 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.695 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.720 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.747 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.772 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.798 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.825 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.851 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.877 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.903 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.928 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.954 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524450.981 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.006 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.031 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.057 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.082 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.108 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.134 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.160 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.185 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.214 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.240 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.266 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.292 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.319 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html
1581524451.345 0 172.16.1.19 TCP_DENIED/407 4184 GET http://redirect.engpro.totvs.com.br/protheusfatbra - NONE/- text/html

segue o meu squid.conf

# INFORMA O CAMINHO DO PROGRAMA DE AUTENTICAÇÃO E O ARQUIVO DE LOGINS E SENHAS
auth_param basic program /usr/lib64/squid/ncsa_auth /etc/squid/passwd
auth_param basic children 5
auth_param basic credentialsttl 10 minutes
auth_param basic realm Autentique-se para acessar a Internet
auth_param basic casesensitive off

# CONFIGURAÇÃO DE CACHE / PORTA SQUID / HOSTMANE
cache_mem 128 MB
maximum_object_size_in_memory 64 KB
maximum_object_size 512 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 5000 16 256
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
coredump_dir /var/spool/squid
http_port 3128
visible_hostname localhost
max_filedesc 4096
error_directory /usr/share/squid/errors/pt-br/

# CONFIGURAÇÕES DE REFRESH
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320

#ACLs PADRAO DE ACESSO
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
acl localnet src 172.16.0.0/12 # RFC1918 possible internal network
acl localnet src 192.168.0.0/16 # RFC1918 possible internal network
acl SSL_ports port 443 # RFC 4291 link-local (directly plugged) machines
acl Safe_ports port 80 8080
acl Safe_ports port 81
acl Safe_ports port 83
acl Safe_ports port 84
acl Safe_ports port 90
acl Safe_ports port 587
acl Safe_ports port 995
acl Safe_ports port 21 # http
acl Safe_ports port 443 # ftp
acl Safe_ports port 563 # ftp
acl Safe_ports port 873 # ftp
acl Safe_ports port 210 # https
acl Safe_ports port 1025-65535 # gopher
acl Safe_ports port 280 # wais
acl Safe_ports port 488 # unregistered ports
acl Safe_ports port 591 # http-mgmt
acl Safe_ports port 777 # gss-http
acl CONNECT method CONNECT # filemaker

#LIBERAÇÃO DAS ACLs DE PORTAS
http_access deny !Safe_ports
http_access allow SSL_ports

#LIBERAÇÃO DAS ACLS DE AUTENTICAÇÃO
acl passwd proxy_auth "/etc/squid/passwd" REQUIRED
http_access allow passwd

acl liberados url_regex -i "/etc/squid/liberados"
http_access allow liberados

acl sites_proibidos url_regex -i "/etc/squid/sites_proibidos"
http_access deny sites_proibidos

#ACESSO AS PORTAS PADRÃO
http_access allow all



Obrigado pela ajuda.


  






Patrocínio

Site hospedado pelo provedor RedeHost.
Linux banner

Destaques

Artigos

Dicas

Tópicos

Top 10 do mês

Scripts