RE: [squid-users] SSL-bump DNS lookup issue

From: Darren Breeze <darrenjbreeze_at_netvigator.com>
Date: Tue, 11 Feb 2014 05:57:29 +0800

Hi and Thanks Amos

scanning the log there is a successful DNS lookup but is seems to fail
looking up a key once it gets a valid IP address

2014/02/08 23:27:55.260| ModEpoll.cc(139) SetSelect: FD 6, type=1,
handler=1, client_data=0, timeout=0
2014/02/08 23:27:55.260| comm.cc(326) comm_udp_recvfrom: comm_udp_recvfrom:
FD 6 from [::]
2014/02/08 23:27:55.260| dns_internal.cc(1361) idnsRead: idnsRead: FD 6:
received 49 bytes from 127.0.0.1:53
2014/02/08 23:27:55.260| dns_internal.cc(1168) idnsGrokReply: idnsGrokReply:
QID 0x6bb6, 1 answers
2014/02/08 23:27:55.260| comm.cc(326) comm_udp_recvfrom: comm_udp_recvfrom:
FD 6 from 127.0.0.1:53
2014/02/08 23:27:55.260| dns_internal.cc(1361) idnsRead: idnsRead: FD 6:
received 61 bytes from 127.0.0.1:53
2014/02/08 23:27:55.260| dns_internal.cc(1168) idnsGrokReply: idnsGrokReply:
QID 0x89c6, 1 answers
2014/02/08 23:27:55.260| dns_internal.cc(1091) idnsCallback: Merging DNS
results ssl.gstatic.com A has 1 RR, AAAA has 1 RR
2014/02/08 23:27:55.260| cbdata.cc(348) cbdataInternalFree: cbdataFree:
0x98bf008
2014/02/08 23:27:55.260| cbdata.cc(365) cbdataInternalFree: cbdataFree:
Freeing 0x98bf008
2014/02/08 23:27:55.260| dns_internal.cc(1124) idnsCallback: Sending 2 (OK)
DNS results to caller.
2014/02/08 23:27:55.260| cbdata.cc(510) cbdataReferenceValid:
cbdataReferenceValid: 0x98bc428
2014/02/08 23:27:55.260| cbdata.cc(456) cbdataInternalUnlock: cbdataUnlock:
0x98bc428=0
2014/02/08 23:27:55.260| cbdata.cc(348) cbdataInternalFree: cbdataFree:
0x98bc428
2014/02/08 23:27:55.260| cbdata.cc(365) cbdataInternalFree: cbdataFree:
Freeing 0x98bc428
2014/02/08 23:27:55.261| ipcache.cc(497) ipcacheParse: ipcacheParse: 2
answers for 'ssl.gstatic.com'
2014/02/08 23:27:55.261| ipcache.cc(566) ipcacheParse: ipcacheParse:
ssl.gstatic.com #0 [2404:6800:4005:c00::78]
2014/02/08 23:27:55.261| ipcache.cc(555) ipcacheParse: ipcacheParse:
ssl.gstatic.com #1 74.125.128.120
2014/02/08 23:27:55.261| cbdata.cc(510) cbdataReferenceValid:
cbdataReferenceValid: 0x98bcaa8
2014/02/08 23:27:55.261| cbdata.cc(456) cbdataInternalUnlock: cbdataUnlock:
0x98bcaa8=0
2014/02/08 23:27:55.261| peer_select.cc(286) peerSelectDnsPaths: Found
sources for 'ssl.gstatic.com:443'
2014/02/08 23:27:55.261| peer_select.cc(287) peerSelectDnsPaths:
always_direct = ALLOWED
2014/02/08 23:27:55.261| peer_select.cc(288) peerSelectDnsPaths:
never_direct = DENIED
2014/02/08 23:27:55.261| peer_select.cc(292) peerSelectDnsPaths:
DIRECT = local=[::] remote=[2404:6800:4005:c00::78]:443 flags=1
2014/02/08 23:27:55.261| peer_select.cc(292) peerSelectDnsPaths:
DIRECT = local=0.0.0.0 remote=74.125.128.120:443 flags=1
2014/02/08 23:27:55.261| peer_select.cc(301) peerSelectDnsPaths:
timedout = 0
2014/02/08 23:27:55.261| cbdata.cc(510) cbdataReferenceValid:
cbdataReferenceValid: 0x99091a8
2014/02/08 23:27:55.261| cbdata.cc(456) cbdataInternalUnlock: cbdataUnlock:
0x99091a8=1
2014/02/08 23:27:55.261| FwdState.cc(373) startConnectionOrFail:
ssl.gstatic.com:443
2014/02/08 23:27:55.261| HttpRequest.cc(508) clearError: old error details:
0/0
2014/02/08 23:27:55.261| FwdState.cc(1080) connectStart: fwdConnectStart:
ssl.gstatic.com:443
2014/02/08 23:27:55.261| pconn.cc(340) key: PconnPool::key(local=[::]
remote=[2404:6800:4005:c00::78]:443 flags=1, ssl.gstatic.com) is
{[2404:6800:4005:c00::78]:443/ssl.gstatic.com}
2014/02/08 23:27:55.261| pconn.cc(436) pop: lookup for key
{[2404:6800:4005:c00::78]:443/ssl.gstatic.com} failed.
2014/02/08 23:27:55.261| cbdata.cc(510) cbdataReferenceValid:
cbdataReferenceValid: 0x98e3e68
2014/02/08 23:27:55.261| cbdata.cc(510) cbdataReferenceValid:
cbdataReferenceValid: 0x98e3e68
2014/02/08 23:27:55.261| cbdata.cc(419) cbdataInternalLock: cbdataLock:
0x98e3e68=5
2014/02/08 23:27:55.261| cbdata.cc(456) cbdataInternalUnlock: cbdataUnlock:
0x98e3e68=4
2014/02/08 23:27:55.261| FilledChecklist.cc(61) ~ACLFilledChecklist:
ACLFilledChecklist destroyed 0xbfca97bc
Received on Mon Feb 10 2014 - 21:58:32 MST

This archive was generated by hypermail 2.2.0 : Tue Feb 11 2014 - 12:00:08 MST