You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@trafficserver.apache.org by Stas Obydionnov <st...@gmail.com> on 2012/07/06 00:01:12 UTC
Transparent HTTPS proxy using ATS
Hi,
First of all, I would like to thank all people behind the ATS, I just enjoy
each time I work with it. Thanks you very much guys.
Now to the question.
I would like to raise the subj once again. I saw discussions in this
mailing list and read /. article.
The motivation for this is a security requirements. We need to perform URL
filtering on all HTTP(S) traffic. I'm aware of an ethic aspect of such
approach, but unfortunately "bad people" are using HTTPS connections more
and more for transferring stolen information and downloading malware to the
infected machines. In addition blocking certain sites (like gambling) in
the office is also an acceptable policy. So now SSL interception on proxy
server is a requirement defined by IT managers of many organizations.
The mechanism for this is described here(
http://mail-archives.apache.org/mod_mbox/trafficserver-dev/201206.mbox/%3CE0E627D3EA79C24397D2A4543361AB19049B9C35@CEXNT.commtouch.com%3E).
In squid language, I think, it's called "ssl bumping", I found the
following article
http://blog.davidvassallo.me/2011/03/22/squid-transparent-ssl-interception/ on
how to configure squid transparently to intercept SSL.
So my question is: is such kind of setup is possible using ATS or maybe
this functionality may be implemented in plugin?
Thank you in advance.
Stas.
Re: Polling erro
Posted by lyt_yudi <ly...@126.com>.
WARNING: bad configurations: no nameservers given
lyt_yudi
From: Saraswathi Venkataraman
Date: 2012-07-09 22:23
To: users@trafficserver.apache.org
Subject: Polling erro
I keep getting this polling error on one of my ATS machines. What does this mean?
[TrafficServer] using root directory '/usr/local'
[Jul 9 17:21:14.152] Manager {140087364458464} NOTE: [LocalManager::pollMgmtProcessServer] New process connecting fd '16'
[Jul 9 17:21:14.152] Manager {140087364458464} NOTE: [Alarms::signalAlarm] Server Process born
[Jul 9 17:21:15.166] {47794182640032} STATUS: opened /usr/local/var/log/trafficserver/diags.log
[Jul 9 17:21:15.166] {47794182640032} NOTE: updated diags config
[Jul 9 17:21:15.169] Server {47794182640032} NOTE: cache clustering enabled
[Jul 9 17:21:15.205] Server {47794182640032} WARNING: unable to DNS ravid01: 2
[Jul 9 17:21:15.208] Server {47794182640032} NOTE: cache clustering enabled
[Jul 9 17:21:15.232] Server {47794182640032} NOTE: logging initialized[7], logging_mode = 3
[Jul 9 17:21:15.243] Server {47794182640032} NOTE: traffic server running
[Jul 9 17:21:15.243] Server {47794182640032} WARNING: bad configurations: no nameservers given
NOTE: Traffic Server received Sig 11: Segmentation fault
/usr/local/bin/traffic_server - STACK TRACE:
/usr/local/bin/traffic_server[0x527b2d]
/lib64/libpthread.so.0[0x3887e0f4a0]
[0xccccccd]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN19AIOCallbackInternal11io_completeEiPv+0x3f)[0x69108f]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN7EThread13process_eventEP5Eventi+0x12c)[0x6fe24c]
/usr/local/bin/traffic_server(_ZN7EThread7executeEv+0x9b)[0x6fe45f]
/usr/local/bin/traffic_server[0x6fd368]
/lib64/libpthread.so.0[0x3887e077f1]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: [LocalManager::pollMgmtProcessServer] Server Process terminated due to Sig 11: Segmentation fault
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: [Alarms::signalAlarm] Server Process was reset
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:19.095] Manager {140087364458464} NOTE: [LocalManager::startProxy] Launching ts process
Layout configuration
--prefix = '/usr/local'
--exec_prefix = '/usr/local'
--bindir = '/usr/local/bin'
--sbindir = '/usr/local/bin'
--sysconfdir = '/usr/local/etc/trafficserver'
--datadir = '/usr/local/share/trafficserver'
--includedir = '/usr/local/include'
--libdir = '/usr/local/lib'
--libexecdir = '/usr/local/libexec/trafficserver'
--localstatedir = '/usr/local/var'
--runtimedir = '/usr/local/var/trafficserver'
--logdir = '/usr/local/var/log/trafficserver'
--mandir = '/usr/local/man'
--infodir = '/usr/local/info'
--cachedir = '/usr/local/var/trafficserver'
[TrafficServer] using root directory '/usr/local'
[Jul 9 17:21:19.103] Manager {140087364458464} NOTE: [LocalManager::pollMgmtProcessServer] New process connecting fd '16'
[Jul 9 17:21:19.104] Manager {140087364458464} NOTE: [Alarms::signalAlarm] Server Process born
[Jul 9 17:21:20.117] {47197641802144} STATUS: opened /usr/local/var/log/trafficserver/diags.log
[Jul 9 17:21:20.117] {47197641802144} NOTE: updated diags config
[Jul 9 17:21:20.120] Server {47197641802144} NOTE: cache clustering enabled
[Jul 9 17:21:20.156] Server {47197641802144} WARNING: unable to DNS ravid01: 2
[Jul 9 17:21:20.159] Server {47197641802144} NOTE: cache clustering enabled
[Jul 9 17:21:20.184] Server {47197641802144} NOTE: logging initialized[7], logging_mode = 3
[Jul 9 17:21:20.194] Server {47197641802144} NOTE: traffic server running
[Jul 9 17:21:20.194] Server {47197641802144} WARNING: bad configurations: no nameservers given
NOTE: Traffic Server received Sig 11: Segmentation fault
/usr/local/bin/traffic_server - STACK TRACE:
/usr/local/bin/traffic_server[0x527b2d]
/lib64/libpthread.so.0[0x3887e0f4a0]
[0xccccccd]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN19AIOCallbackInternal11io_completeEiPv+0x3f)[0x69108f]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN7EThread13process_eventEP5Eventi+0x12c)[0x6fe24c]
/usr/local/bin/traffic_server(_ZN7EThread7executeEv+0x9b)[0x6fe45f]
/usr/local/bin/traffic_server[0x6fd368]
/lib64/libpthread.so.0[0x3887e077f1]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: [LocalManager::pollMgmtProcessServer] Server Process terminated due to Sig 11: Segmentation fault
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: [Alarms::signalAlarm] Server Process was reset
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:24.049] Manager {140087364458464} NOTE: [LocalManager::startProxy] Launching ts process
Layout configuration
--prefix = '/usr/local'
--exec_prefix = '/usr/local'
--bindir = '/usr/local/bin'
--sbindir = '/usr/local/bin'
--sysconfdir = '/usr/local/etc/trafficserver'
--datadir = '/usr/local/share/trafficserver'
--includedir = '/usr/local/include'
--libdir = '/usr/local/lib'
--libexecdir = '/usr/local/libexec/trafficserver'
--localstatedir = '/usr/local/var'
--runtimedir = '/usr/local/var/trafficserver'
--logdir = '/usr/local/var/log/trafficserver'
--mandir = '/usr/local/man'
--infodir = '/usr/local/info'
--cachedir = '/usr/local/var/trafficserver'
[TrafficServer] using root directory '/usr/local'
[Jul 9 17:21:24.057] Manager {140087364458464} NOTE: [LocalManager::pollMgmtProcessServer] New process connecting fd '16'
[Jul 9 17:21:24.057] Manager {140087364458464} NOTE: [Alarms::signalAlarm] Server Process born
[Jul 9 17:21:25.071] {47633962434976} STATUS: opened /usr/local/var/log/trafficserver/diags.log
[Jul 9 17:21:25.071] {47633962434976} NOTE: updated diags config
[Jul 9 17:21:25.074] Server {47633962434976} NOTE: cache clustering enabled
[Jul 9 17:21:25.110] Server {47633962434976} WARNING: unable to DNS ravid01: 2
[Jul 9 17:21:25.112] Server {47633962434976} NOTE: cache clustering enabled
[Jul 9 17:21:25.137] Server {47633962434976} NOTE: logging initialized[7], logging_mode = 3
[Jul 9 17:21:25.148] Server {47633962434976} NOTE: traffic server running
[Jul 9 17:21:25.148] Server {47633962434976} WARNING: bad configurations: no nameservers given
Thanks & Regards
Saraswathi Venkataraman | Xoriant Solutions Pvt. Ltd.
Winchester, Hiranandani Business Park, Powai, Mumbai 400076, INDIA.
Tel: +91 22 30511000 | Ext: 1113 | http://www.xoriant.com
Stas.
Polling erro
Posted by Saraswathi Venkataraman <sa...@Xoriant.Com>.
I keep getting this polling error on one of my ATS machines. What does this mean?
[TrafficServer] using root directory '/usr/local'
[Jul 9 17:21:14.152] Manager {140087364458464} NOTE: [LocalManager::pollMgmtProcessServer] New process connecting fd '16'
[Jul 9 17:21:14.152] Manager {140087364458464} NOTE: [Alarms::signalAlarm] Server Process born
[Jul 9 17:21:15.166] {47794182640032} STATUS: opened /usr/local/var/log/trafficserver/diags.log
[Jul 9 17:21:15.166] {47794182640032} NOTE: updated diags config
[Jul 9 17:21:15.169] Server {47794182640032} NOTE: cache clustering enabled
[Jul 9 17:21:15.205] Server {47794182640032} WARNING: unable to DNS ravid01: 2
[Jul 9 17:21:15.208] Server {47794182640032} NOTE: cache clustering enabled
[Jul 9 17:21:15.232] Server {47794182640032} NOTE: logging initialized[7], logging_mode = 3
[Jul 9 17:21:15.243] Server {47794182640032} NOTE: traffic server running
[Jul 9 17:21:15.243] Server {47794182640032} WARNING: bad configurations: no nameservers given
NOTE: Traffic Server received Sig 11: Segmentation fault
/usr/local/bin/traffic_server - STACK TRACE:
/usr/local/bin/traffic_server[0x527b2d]
/lib64/libpthread.so.0[0x3887e0f4a0]
[0xccccccd]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN19AIOCallbackInternal11io_completeEiPv+0x3f)[0x69108f]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN7EThread13process_eventEP5Eventi+0x12c)[0x6fe24c]
/usr/local/bin/traffic_server(_ZN7EThread7executeEv+0x9b)[0x6fe45f]
/usr/local/bin/traffic_server[0x6fd368]
/lib64/libpthread.so.0[0x3887e077f1]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: [LocalManager::pollMgmtProcessServer] Server Process terminated due to Sig 11: Segmentation fault
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: [Alarms::signalAlarm] Server Process was reset
[Jul 9 17:21:18.092] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:19.095] Manager {140087364458464} NOTE: [LocalManager::startProxy] Launching ts process
Layout configuration
--prefix = '/usr/local'
--exec_prefix = '/usr/local'
--bindir = '/usr/local/bin'
--sbindir = '/usr/local/bin'
--sysconfdir = '/usr/local/etc/trafficserver'
--datadir = '/usr/local/share/trafficserver'
--includedir = '/usr/local/include'
--libdir = '/usr/local/lib'
--libexecdir = '/usr/local/libexec/trafficserver'
--localstatedir = '/usr/local/var'
--runtimedir = '/usr/local/var/trafficserver'
--logdir = '/usr/local/var/log/trafficserver'
--mandir = '/usr/local/man'
--infodir = '/usr/local/info'
--cachedir = '/usr/local/var/trafficserver'
[TrafficServer] using root directory '/usr/local'
[Jul 9 17:21:19.103] Manager {140087364458464} NOTE: [LocalManager::pollMgmtProcessServer] New process connecting fd '16'
[Jul 9 17:21:19.104] Manager {140087364458464} NOTE: [Alarms::signalAlarm] Server Process born
[Jul 9 17:21:20.117] {47197641802144} STATUS: opened /usr/local/var/log/trafficserver/diags.log
[Jul 9 17:21:20.117] {47197641802144} NOTE: updated diags config
[Jul 9 17:21:20.120] Server {47197641802144} NOTE: cache clustering enabled
[Jul 9 17:21:20.156] Server {47197641802144} WARNING: unable to DNS ravid01: 2
[Jul 9 17:21:20.159] Server {47197641802144} NOTE: cache clustering enabled
[Jul 9 17:21:20.184] Server {47197641802144} NOTE: logging initialized[7], logging_mode = 3
[Jul 9 17:21:20.194] Server {47197641802144} NOTE: traffic server running
[Jul 9 17:21:20.194] Server {47197641802144} WARNING: bad configurations: no nameservers given
NOTE: Traffic Server received Sig 11: Segmentation fault
/usr/local/bin/traffic_server - STACK TRACE:
/usr/local/bin/traffic_server[0x527b2d]
/lib64/libpthread.so.0[0x3887e0f4a0]
[0xccccccd]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN19AIOCallbackInternal11io_completeEiPv+0x3f)[0x69108f]
/usr/local/bin/traffic_server(_ZN12Continuation11handleEventEiPv+0x6c)[0x4e1346]
/usr/local/bin/traffic_server(_ZN7EThread13process_eventEP5Eventi+0x12c)[0x6fe24c]
/usr/local/bin/traffic_server(_ZN7EThread7executeEv+0x9b)[0x6fe45f]
/usr/local/bin/traffic_server[0x6fd368]
/lib64/libpthread.so.0[0x3887e077f1]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
/lib64/libc.so.6(clone+0x6d)[0x3887ae570d]
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: [LocalManager::pollMgmtProcessServer] Server Process terminated due to Sig 11: Segmentation fault
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: [Alarms::signalAlarm] Server Process was reset
[Jul 9 17:21:23.045] Manager {140087364458464} ERROR: (last system error 2: No such file or directory)
[Jul 9 17:21:24.049] Manager {140087364458464} NOTE: [LocalManager::startProxy] Launching ts process
Layout configuration
--prefix = '/usr/local'
--exec_prefix = '/usr/local'
--bindir = '/usr/local/bin'
--sbindir = '/usr/local/bin'
--sysconfdir = '/usr/local/etc/trafficserver'
--datadir = '/usr/local/share/trafficserver'
--includedir = '/usr/local/include'
--libdir = '/usr/local/lib'
--libexecdir = '/usr/local/libexec/trafficserver'
--localstatedir = '/usr/local/var'
--runtimedir = '/usr/local/var/trafficserver'
--logdir = '/usr/local/var/log/trafficserver'
--mandir = '/usr/local/man'
--infodir = '/usr/local/info'
--cachedir = '/usr/local/var/trafficserver'
[TrafficServer] using root directory '/usr/local'
[Jul 9 17:21:24.057] Manager {140087364458464} NOTE: [LocalManager::pollMgmtProcessServer] New process connecting fd '16'
[Jul 9 17:21:24.057] Manager {140087364458464} NOTE: [Alarms::signalAlarm] Server Process born
[Jul 9 17:21:25.071] {47633962434976} STATUS: opened /usr/local/var/log/trafficserver/diags.log
[Jul 9 17:21:25.071] {47633962434976} NOTE: updated diags config
[Jul 9 17:21:25.074] Server {47633962434976} NOTE: cache clustering enabled
[Jul 9 17:21:25.110] Server {47633962434976} WARNING: unable to DNS ravid01: 2
[Jul 9 17:21:25.112] Server {47633962434976} NOTE: cache clustering enabled
[Jul 9 17:21:25.137] Server {47633962434976} NOTE: logging initialized[7], logging_mode = 3
[Jul 9 17:21:25.148] Server {47633962434976} NOTE: traffic server running
[Jul 9 17:21:25.148] Server {47633962434976} WARNING: bad configurations: no nameservers given
Thanks & Regards
Saraswathi Venkataraman | Xoriant Solutions Pvt. Ltd.
Winchester, Hiranandani Business Park, Powai, Mumbai 400076, INDIA.
Tel: +91 22 30511000 | Ext: 1113 | http://www.xoriant.com<http://www.xoriant.com/>
Stas.