|
Title: Output from /var/log/squid/access.log Post by: jkimathi on Tuesday 26 January 2010, 02:36:22 am Hi there,
I am using Endian Firewall Community release 2.3.0; and my output from tail -f /var/log/access.log is the one shown in part (1) here below. I need my out put from /var/log/squid/acess.og to be like the one on the part that follows;Reason is because part (2) is the one that can be used by SARG to show me where my users are going. Note that the entries on part (1) are starting with something like Jan 25 17:17:40 firewall squid[28014]: while the entries in part (2) dont have such entries infront of them. Please help. PART ONE Jan 25 17:17:40 firewall squid[28014]: 1264432660.334 359 192.168.1.182 TCP_MISS/000 411 CONNECT mail.google.com:443 dudu FIRST_UP_PARENT/content1 - Jan 25 17:17:40 firewall squid[28014]: 1264432660.337 325 127.0.0.1 TCP_MISS/200 39 CONNECT mail.google.com:443 - DIRECT/74.125.95.17 - Jan 25 17:17:40 firewall squid[28014]: 1264432660.367 391 192.168.1.182 TCP_MISS/000 435 CONNECT chatenabled.mail.google.com:443 dudu FIRST_UP_PARENT/content1 - Jan 25 17:17:40 firewall squid[28014]: 1264432660.370 354 127.0.0.1 TCP_MISS/200 39 CONNECT chatenabled.mail.google.com:443 - DIRECT/209.85.227.189 - Jan 25 17:17:42 firewall squid[28014]: 1264432662.189 237022 192.168.1.103 TCP_MISS/000 3712 CONNECT mail.google.com:443 gerald FIRST_UP_PARENT/content1 - PART TWO 1264432660.334 359 192.168.1.182 TCP_MISS/000 411 CONNECT mail.google.com:443 dudu FIRST_UP_PARENT/content1 - 1264432660.337 325 127.0.0.1 TCP_MISS/200 39 CONNECT mail.google.com:443 - DIRECT/74.125.95.17 - 1264432660.367 391 192.168.1.182 TCP_MISS/000 435 CONNECT chatenabled.mail.google.com:443 dudu FIRST_UP_PARENT/content1 - 1264432660.370 354 127.0.0.1 TCP_MISS/200 39 CONNECT chatenabled.mail.google.com:443 - DIRECT/209.85.227.189 - 1264432662.189 237022 192.168.1.103 TCP_MISS/000 3712 CONNECT mail.google.com:443 gerald FIRST_UP_PARENT/content1 - |