This Docker container creates an instance of squid-deb-proxy that listens
for apt connections and caches packages.
Several third party repositories are configured in the ACL, in addition to official repositories.
- Docker (with buildkit enabled)
- docker-compose
Build the image and run the container locally.
docker compose up -d --buildConfigure apt on clients to use the proxy by specifying it in the
/etc/apt/apt.conf.d/00squidproxy file.
# /etc/apt/apt.conf.d/00squidproxy
Acquire {
Retries "0";
HTTP { Proxy "http://<proxy IP>:3143"; };
};Access the Grafana UI at: http://localhost:3144
The default credentials are admin:admin
Helpful Grafana logql queries to look at the data:
{filename="/data/squid/log/access.log"}
| regexp `^\d+.\d+.*[HIT|MISS|DENIED|NOFETCH|TUNNEL].*\d{3} (?P<bytes>(\d+))`
sum by (type) (
sum_over_time({filename="/data/squid/log/access.log"}
| regexp `(^(?P<datetime>\d+.\d+).*(?P<type>(HIT|MISS|DENIED|NOFETCH|TUNNEL)).*\d{3} (?P<bytes>(\d+)))`
| __error__="" | unwrap bytes[15m])
)
sum by (repo) (
count_over_time(
{filename="/data/squid/log/access.log"}
| regexp `\sTCP.*?(?P<repo>[-a-zA-Z0-9@:%._\+~#=]{1,256}\.[a-zA-Z0-9()]{1,6}\b)`
| __error__="" [15m])
)To see if there are any cases where Squid is blocking the request and additional items
need to be added to the extra-sources.acl use the following Grafana logql query:
{filename="/data/squid/log/access.log"} |~ "DENIED"docker compose down -v- https://askubuntu.com/questions/3503/best-way-to-cache-apt-downloads-on-a-lan
- https://github.com/SafeEval/docker-squid-deb-proxy - forked version
- http://wiki.squid-cache.org/SquidFaq/SquidLogs
- https://www.websense.com/content/support/library/web/v773/wcg_help/squid.aspx
- LogQL Query Youtube Video Tutorial
- https://grafana.com/blog/2021/01/11/how-to-use-logql-range-aggregations-in-loki/