Unable log log mac address in Server

Previous Topic Next Topic
 
classic Classic list List threaded Threaded
4 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Unable log log mac address in Server

arun.xavier
Hi all,

I set up squid in 2 different environments.

One in my local network and One in aws ec2.

I am getting device mac address in local network, but I get 00:00:00:00:00:00 in aws.

Is it a network issue ? or Is does this works this way?

Squid Version Details:

squid -v

Squid Cache: Version 4.0.19-20170508-r15031
Service Name: squid
Ubuntu linux
configure options:  '--prefix=/usr' '--localstatedir=/var' '--datadir=/usr/share/squid' '--sysconfdir=/etc/squid' '--libexecdir=/usr/lib/squid' '--with-swapdir=/var/spool/squid' '--with-logdir=/var/log/squid' '--with-pidfile=/var/run/squid.pid' '--with-default-user=proxy' '--enable-inline' '--enable-delay-pools' '--enable-cache-digests' '--enable-icap-client' '--enable-follow-x-forwarded-for' '--enable-eui' '--enable-esi' '--enable-icmp' '--enable-zph-qos' '--enable-ecap' '--disable-translation' '--with-filedescriptors=65536' '--with-large-files' '--with-openssl' '--enable-ssl' '--enable-ssl-crtd' '--enable-build-info=Ubuntu linux' '--enable-linux-netfilter'

Differences in Configuration file:

acl allnetwork src 0.0.0.0/0
http_access allow allnetwork
ssl_bump bump all
always_direct allow all
http_port 3128 ssl-bump generate-host-certificates=on cert=/etc/squid/cert/cert.pem key=/etc/squid/cert/key.pem
strip_query_terms off
logformat squid %{%Y-%m-%d,%H:%M:%S}tl.%03tu %6tr %>a %Ss/%03>Hs %<st %rm %ru %[un %Sh/%<a %mt %>eui


I have same configurations in both aws and local, but squid in aws fails to log mac addres.

What might be the reason ?

Regards

_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
- Arun Xavier
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Unable log log mac address in Server

Enrico Heine
Hi Xavier,

it is a normal network behavior. The reason is we might believe that we use IP's in the local network. That of course is true, but in the local network the real end to end communication is done from & to MAC address (OSI Layer 2) when a IP-packet (layer 3) leaves the local network then target and source mac are unknown to the client and server. So they only know the IP's.

Am 9. Juni 2017 09:39:37 MESZ schrieb Arun Xavier <[hidden email]>:
Hi all,

I set up squid in 2 different environments.

One in my local network and One in aws ec2.

I am getting device mac address in local network, but I get 00:00:00:00:00:00 in aws.

Is it a network issue ? or Is does this works this way?

Squid Version Details:

squid -v

Squid Cache: Version 4.0.19-20170508-r15031
Service Name: squid
Ubuntu linux
configure options:  '--prefix=/usr' '--localstatedir=/var' '--datadir=/usr/share/squid' '--sysconfdir=/etc/squid' '--libexecdir=/usr/lib/squid' '--with-swapdir=/var/spool/squid' '--with-logdir=/var/log/squid' '--with-pidfile=/var/run/squid.pid' '--with-default-user=proxy' '--enable-inline' '--enable-delay-pools' '--enable-cache-digests' '--enable-icap-client' '--enable-follow-x-forwarded-for' '--enable-eui' '--enable-esi' '--enable-icmp' '--enable-zph-qos' '--enable-ecap' '--disable-translation' '--with-filedescriptors=65536' '--with-large-files' '--with-openssl' '--enable-ssl' '--enable-ssl-crtd' '--enable-build-info=Ubuntu linux' '--enable-linux-netfilter'

Differences in Configuration file:

acl allnetwork src 0.0.0.0/0
http_access allow allnetwork
ssl_bump bump all
always_direct allow all
http_port 3128 ssl-bump generate-host-certificates=on cert=/etc/squid/cert/cert.pem key=/etc/squid/cert/key.pem
strip_query_terms off
logformat squid %{%Y-%m-%d,%H:%M:%S}tl.%03tu %6tr %>a %Ss/%03>Hs %<st %rm %ru %[un %Sh/%<a %mt %>eui


I have same configurations in both aws and local, but squid in aws fails to log mac addres.

What might be the reason ?

Regards

_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Unable log log mac address in Server

Amos Jeffries
Administrator
In reply to this post by arun.xavier
On 09/06/17 19:39, Arun Xavier wrote:

> Hi all,
>
> I set up squid in 2 different environments.
>
> One in my local network and One in aws ec2.
>
> I am getting device mac address in local network, but I
> get 00:00:00:00:00:00 in aws.
>
> Is it a network issue ? or Is does this works this way?
>

Not sure about the answer to those. If those machines have the same OS
then it is probably related to one being a real machine with real
hardware and one a VM on fake hardware.


> Squid Version Details:
>
> squid -v
>
> Squid Cache: Version 4.0.19-20170508-r15031
> Service Name: squid
> Ubuntu linux
> configure options:  '--prefix=/usr' '--localstatedir=/var'
> '--datadir=/usr/share/squid' '--sysconfdir=/etc/squid'
> '--libexecdir=/usr/lib/squid' '--with-swapdir=/var/spool/squid'
> '--with-logdir=/var/log/squid' '--with-pidfile=/var/run/squid.pid'
> '--with-default-user=proxy' '--enable-inline' '--enable-delay-pools'
> '--enable-cache-digests' '--enable-icap-client'
> '--enable-follow-x-forwarded-for' '--enable-eui' '--enable-esi'
> '--enable-icmp' '--enable-zph-qos' '--enable-ecap'
> '--disable-translation' '--with-filedescriptors=65536'
> '--with-large-files' '--with-openssl' '--enable-ssl'
> '--enable-ssl-crtd' '--enable-build-info=Ubuntu linux'
> '--enable-linux-netfilter'
>
> Differences in Configuration file:
>
> acl allnetwork src 0.0.0.0/0 <http://0.0.0.0/0>
> http_access allow allnetwork

Why are you calling that ACL "allnetwork" ? it matches many machines on
the Internet - which is far more than your network. But then it only
matches IPv4, which is not even close to 'all' sources.


> ssl_bump bump all
> always_direct allow all
> http_port 3128 ssl-bump generate-host-certificates=on
> cert=/etc/squid/cert/cert.pem key=/etc/squid/cert/key.pem
> strip_query_terms off
> logformat squid %{%Y-%m-%d,%H:%M:%S}tl.%03tu %6tr %>a %Ss/%03>Hs %<st
> %rm %ru %[un %Sh/%<a %mt %>eui
>
>
> I have same configurations in both aws and local, but squid in aws
> fails to log mac addres.
>
> What might be the reason ?


Amos

_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Unable log log mac address in Server

Matus UHLAR - fantomas
>On 09/06/17 19:39, Arun Xavier wrote:
>>I set up squid in 2 different environments.
>>
>>One in my local network and One in aws ec2.
>>
>>I am getting device mac address in local network, but I get
>>00:00:00:00:00:00 in aws.
>>
>>Is it a network issue ? or Is does this works this way?

On 09.06.17 23:10, Amos Jeffries wrote:
>Not sure about the answer to those. If those machines have the same
>OS then it is probably related to one being a real machine with real
>hardware and one a VM on fake hardware.

most probably. While virtual machines in clouds do have ethernet addresses
if they have (virtual) ethernet cards, amazon apparently hides them from
each other.

--
Matus UHLAR - fantomas, [hidden email] ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Remember half the people you know are below average.
_______________________________________________
squid-users mailing list
[hidden email]
http://lists.squid-cache.org/listinfo/squid-users
Loading...