Solved

Possible to log Squid access logs remotely?

Posted on 2011-02-23
3
1,088 Views
Last Modified: 2012-05-11
Hi guys,

We have a requirement to log all internet traffic through our 300+ sites. All sites have a standard Centos based server setup, and I was thinking of running squid to log all access attempts by clients in these remote sites.

Is there any decent way of getting these logs in a remote database, where we can record and view details like websites visited etc (using something like AWStats). I have been reading up upon Squid parent Cache and it could possibly do what I want to achieve.

Other option is to run a cron job to manually copy these access logs to the remote syslog server, then running MySQL Squid Access Report on this one server/or running AWStats to collect this information.

Any suggestions on what the best path would be much appreciated. I would love to know how others do it or what are the best practices.
0
Comment
Question by:demon777
  • 2
3 Comments
 
LVL 12

Expert Comment

by:Kent W
ID: 34965637
You can, but be warned..if the connection between the two aren't substantial, you will saturate the link.
Squid logs massively by default.

http://eric.lubow.org/2007/system-administration/syslog-ng-and-squid-logging/
0
 
LVL 1

Author Comment

by:demon777
ID: 34965693
Thanks that's a very helpful link. I'm just reading up on it, we don't have syslog-ng on our 300+ servers so it would have to rolled out.
Is there any way to do this through the normal syslog?
0
 
LVL 12

Accepted Solution

by:
Kent W earned 500 total points
ID: 34965811
You can, using traditional syslodg/klogd, but beware, this is only UDP, so you have to be able to get those packets reliable to your logging facility server.
-ng supports TCP also, so it works better over hops.  If your logging server is local, though, UDP should work fine.  You would use the facilities just like any other remote loggin in Linux.  

This will explain how do to them both.

http://www.enterprisenetworkingplanet.com/netos/article.php/3521481/Enhance-Security-with-a-Linux-Logging-Server.htm
0

Featured Post

How your wiki can always stay up-to-date

Quip doubles as a “living” wiki and a project management tool that evolves with your organization. As you finish projects in Quip, the work remains, easily accessible to all team members, new and old.
- Increase transparency
- Onboard new hires faster
- Access from mobile/offline

Join & Write a Comment

Suggested Solutions

I have seen several blogs and forum entries elsewhere state that because NTFS volumes do not support linux ownership or permissions, they cannot be used for anonymous ftp upload through the vsftpd program.   IT can be done and here's how to get i…
Note: for this to work properly you need to use a Cross-Over network cable. 1. Connect both servers S1 and S2 on the second network slots respectively. Note that you can use the 1st slots but usually these would be occupied by the Service Provide…
This video explains how to create simple products associated to Magento configurable product and offers fast way of their generation with Store Manager for Magento tool.
You have products, that come in variants and want to set different prices for them? Watch this micro tutorial that describes how to configure prices for Magento super attributes. Assigning simple products to configurable: We assigned simple products…

757 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now