client_netmask

client_netmask

This directive is available to provide privacy for users. When Squid writes access.log and other log files, it applies this mask to the client's IP address. For example, if you set the netmask to 255.255.255.0, Squid logs a request from 1.2.3.0 instead of 1.2.3.4. Thus, if someone manages to read the log file, they know only approximately, not exactly, which host (or user) made each request.

If you use log_fqdn, Squid applies the client_netmask before issuing the DNS lookup. For example, Squid will try to find a hostname record for 1.2.3.0 instead of 1.2.3.4.

Syntax

client_netmask IPv4-netmask

Default

client_netmask 255.255.255.255

Example

client_netmask 255.255.255.0

Related

cache_access_log, useragent_log, referer_log, log_fqdn



    Appendix A. Config File Reference