The Squid log analyzer

SquidAnalyzer

Squid proxy native log analyser and reports generator with full statistics about times, hits, bytes, users, networks, top urls and top domains. Statistic reports are oriented toward user and bandwidth control; this is not a pure cache statistics generator.

SquidAnalyzer use flat files to store data and don't need any SQL, SQL Lite or Berkeley databases.

This log analyzer is incremental and should be run in a daily cron or more often on huge network trafic.

News

Jan 22 2012 v4.2

This release fixes several issues related to network and user aliases. It also adds support to squidmime logformat and allow full user anonymization. 

	- Fix network alias issue broken in last release, now data files will
	  store the network alias instead of the default class C network. Thank
	  to Fabrice Prigent for the report.
	- Add support to multiple regex pattern to match networks aliases. See
	  network-aliases file for more information.
	- User aliases are now directly changed into data files instead of html
	  file like before.
	- Add support to multiple regex pattern to match users aliases. See
	  users-aliases file for more inforamtion.
	- Add AnonymizeLogin configuration directives to allow full anomymization
	  of all users/ip.  Thanks to Fabrice Prigent for the request.
	- Add support to squidmime logformat, original request and reply header
	  are simply omitted. Squid and squidmime native format are still the
	  only log format supported.

UPGRADE: If you use network and/or user aliases, even if I try to preserved backward
compatibility, you may want to start with new data files as these informations are
now replaced directly into the data file instead of the HTML files. Changes only
concern file SquidAnalyzer.pm so you can just override it. There's also a new
configuration directive 'AnonymizeLogin' so you may copy/paste his definition in
default squidanalyzer.conf file.

Screenshot of the v4.x

This is a report for 2 days in december and one user (me :-). This is just to show the interface and is not representative of the real activity in a Squid proxy.

Jan 18 2012 v4.1

This release fix some issues encountered during the install process and fixes a line format error detected on some data file. 

	- Fix data file parser issue with largest_file_size or largest_file_url are empty.
	  Thanks to David Walser for the report.
	- Add line number when reporting bad format into a data file.
	- Add missing DESTDIR variable into the allowed commande line arguments. Thanks to
	  David Walser for the report.
	- Fix error when header file are missing as they are no more used now. Thanks to
	  David Walser for the report.
	- Remove salogo.png from install script, it is now replaced by file logo-squidanalyzer.png.
	  Thanks to David Walser for the report.
	- Install of README, INSTALL and Changelog is now disabled by default, you must set DOCDIR
	  parameter to install those files in the desired directory. Thanks to David Walser for
	  the request.
	
UPGRADE: Only SquidAnalyzer.pm have changed so you can just override this file. Other are related to the installation part.

Dec 28 2011 v4.0

The long pending new version of SquidAnalyzer has been released today after 4 years. Here are the complete changelog: 

        - Fix regex search failure on fake domain. Thanks to Michel Reischl for the report.
        - Add support to squid log with client dnsname instead of ip address. Thanks to Matthew Jurgens for the patch.
        - Add options --logfile (-l) and --configfile (-c) to squid-analyzer command line argument. Thanks to Matthew Jurgens for the patch.
        - Add the first and last time an url is viewed by a user on day and hour views. Thanks to Franco Mazz for the feature request.
        - Allow column sorting using the Javascript sorttable library available at http://www.kryogenix.org/code/browser/sorttable/.
	  Thanks to Matthew Jurgens for the patch.
        - Renamed file Changes as ChangeLog.
        - Makefile.PL is now able to do a full install by creating directories and moving files.
        - Allow parsing of compressed log file. SquidAnalyzer will automaticaly use zcat when the logfile extention ends with .gz
        - The cost column now is not shown when the cost price is 0.
        - Change CSS style of links.
        - Complete rewrite of report menu and calendar sot that they appears on all HTML page.
	- Change License from Artistic to GPL v3.
	- Remove HeaderFile, replaced by squidanalyzer.css file.
	- Add --rebuild option to allow rebuild of all html and graph output from data files. This should be done after upgrading.
	- Add ..._REFRESH_UNMODIFIED into cache HIT statistics.

UPGRADE: Even if backward compatibility is preserved on data files, the HTML and
graph have changed, so after re-installing SquidAnalyzer you may want to run
squid-analyzer with the --rebuild command line option to regenerate those files.
So run the following commands:

        tar xzf SquidAnalyzer-4.0.tar.gz
        cd SquidAnalyzer-4.0/
        perl Makefile.PL HTMLDIR=/var/www/squidanalyzer
        make && make install
        /usr/local/bin/squid-analyzer --rebuild

should the normal procedure to upgrade. Change the path to the HTML output if required.

Dec 27 2011 Web site

SquidAnalyzer has now a dedicated web site!

Help support
SquidAnalyzer!

 

Copyright (c) 2001-2012 Gilles Darold - All rights reserved. (GPL v3).