I'm trying to set up a server for an NPO who connects to the Internet through an internal proxy (Websense). I can't access the Internet unless through the proxy.
Since it's a server I did not install a GUI so I'm wondering how to connect the new server to said proxy server. I have the IP address, port number and username-password for the proxy server. The new server has a static IP address and is ready too go!
I'm trying to setup a Centos 5.6 Squid Proxy Server with Content Filtering & Antivirus Scanning Incoming HTTP Traffic from the Internet
I then proceeded to setup an configure the Proxy Server, i was able to test and confirm that Squid and Dansguardian Content Filter is working, however i dont know if Clamav is scanning HTTP traffic before it hits the client/server. Is there a way i can check if the Antivirus scanning is working.. is there some log file or real world test i can i can do to confirm that Clamav is scanning incoming traffic or even blocking potential viruses ??
Anyone who has squid proxy server with Clamav configured and its working can share there settings/setup with me and how they tested it ??
My box has to connect to internet using specified http proxy.I have set proxy in both kde control center and yast2 control center. They both tell me the proxy works fine. But when I really try to use yast2 to update my system, it report an error:
Code:
Failed to download ./repo/repoindex.xml from [URL]
History: - [AbstractCommand.cc:195] URI = [URL]
Even I try
Code:
export http_proxy=http://XXXX
yast in command line,the error still exist.
In debian apt-get and slackware slackpkg,my proxy works fine. So I am sure it is not my fault and maybe it is a bug of yast2.
Is there a way to connect to a samba share on the other side of a dynamic ssh tunnel?I like to use ssh -D 8080 <host> to access the network on the other side of a ssh session. For applications with their own proxy settings it seem to work really nice.In this particular case I'd like to use the 'Connect to server' feature in Ubuntu to connect a samba share through the tunnel, but I can't figure out how to make only that connecton use proxy settings.If I enforce system wide proxy settings the ssh tunnel will die, so that is not an option.
View 1 Replies View RelatedHaving a bit of an issue connecting to my apache2 server. I'm running Ubuntu Server 10.04lts. I can only connect to my website via ip address global, ip address local, and the dyndns domain I have linked to my ip address. I have DMZ setup for my server with a local static address of 192.168.1.100. I can only connect to the default apache page via lan, and It wont load when I try via proxy. I need to know how to configure my router (wndr3300) so that I can connect to my server (address 192.168.1.100) and the pages from outside of my network.
View 5 Replies View RelatedI need to have Opensuse 11.2 use my proxy server here in the office and it is by hostname/ip:8080 only not HTTP. The problem is using Yast2 I don't have the option of using the proxy that way it wants http. I've been using opensuse on and off since 9 (great flavor BTW my favorite) Easy as you need it to be and just as complicated as you want it to be, a perfect mix.
View 8 Replies View RelatedI used windows OS and installed Ubuntu 10.04 (amd64) in separate partition and works well but had a problem in internet connectivity. Likely reason may be the proxy setting that we used in college (currently). I used this commands to set up the IP address and gateway.
ifconfig -a | grep eth
"eth0"
sudo ifconfig eth0 192.168.5.209 netmask 255.255.255.0
[code]....
Then I manually set the proxy setting of HTTP which is given as proxy server 192.168.5.2 and port as 8000, further more there is a wins setting which is 192.168.1.178, really don't know where to put this number.
My school network uses a http proxy to access the internet, but I am dubious about the security, and so I would like to use http inside ssh to keep my data secure. I don't really know where to start on this, so a step-by-step guide, or links to resources, would be helpful.
View 2 Replies View RelatedI have a http proxy account. It works well under windows through wodTunnel(an active X control component). But, I usually works under linux. I want to use it here. But I don't know how. I tried gstm, it can connect to the server successfully, but it seems can't respond to my http request. What should I do next?
View 3 Replies View RelatedMachine 1) I have a Server with RHEL5.
eth0 = 192.168.48.x (static class C ip connected to VLAN switch)
Internet available via HTTP proxy through vlan but from other main server but not from machine below.
Machine 2) I also have a Server with RHEL4.
eth0 = 124.30.XXX.xxx (public IP for availing internet)
eth1 = 192.168.60.xxx (class c ip to share internet via squid on the same LAB)
eth2 = 192.168.16.xxx (class c ip connected to VLAN switch)
Now what I want is ssh connectivity available to Machine 1, so as to enable remote machines on the internet connected. I know that it might be hard for Machine 1 to share ssh directly on the internet but if there is any kind of tool or tricks to setup pls tell. So the only chance is ssh via machine 2 then after connected to Machine 2 then again ssh to Machine 1. But how do I make ssh available online? IPtables are set correctly machine 2 can't be ping on the internet.
I bought a firefox extension which support proxy with username and password, but seems only http version and not socks 5 server which I already have installed on server. I know for privoxy, but privoxy don't support username/password. Is there anything else what works with username/password? Also what is different between http and socks5?
View 3 Replies View Relatedi am forwarding HTTP request to a internal server, it is quiet successful but access logs donot show the ip of the external m/c. Rather it shows the ip of the machine on which i have enabled port forwarding.
View 2 Replies View RelatedI am running Jaunty 9.0.4. I have go through a proxy to get out to the net. It was working. Sometime yesterday it was unable to resolve the proxy server. Can't even ping it. Other computers can. I even switch cables to no avail. What could block the proxy server? I can't even ping google.com Was it something I installed through add/remove software? Has anyone seen something like this before and even better has a solution or can offer a way to troubleshoot this? I can ping myself and the default gateway server.
View 1 Replies View RelatedI am unable to connect to the Internet in lucid via a proxy server using apt-get or synaptic. Opera & firefox connects to the internet fine with the proxy setting.
I have tried the following solutions:
1) set proxy setting using systems|preferences|network proxy
2) editing ~/.bashrc & /etc/.bashrc
3) creating a /etc/apt/apt.conf file.
4) putting the proxy setting in synaptic
For the proxy setting I have used the both the verbose name as well as the ip address. There is no logon requirements for the proxy server. Either formats work in the browsers.
I'm behind a very blocked firewall that only allows connections through port 80 and 443. I wish to ssh to my machine at home, but the port is blocked. Is there a simple server that I can run to route my ssh connection through http?
View 2 Replies View RelatedI am trying to configure an eBox to act as an http proxy but having trouble using that proxy on client computers to browse internet. The ifconfig on ebox returns the following:
eBox141:~# ifconfig
eth0
Link encap:Ethernet HWaddr 00:0c:29:ee:64:f2
inet addr:10.45.48.108 Bcast:10.45.255.255 Mask:255.255.0.0
inet6 addr: fe80::20c:29ff:feee:64f2/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:90045 errors:0 dropped:0 overruns:0 frame:0
TX packets:226 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:7043548 (6.7 MB) TX bytes:35150 (34.3 KB)
Interrupt:16 Base address:0x2024
eth1
Link encap:Ethernet HWaddr 00:0c:29:ee:64:fc
inet addr:192.168.122.158 Bcast:192.168.122.255 Mask:255.255.255.0
inet6 addr: fe80::20c:29ff:feee:64fc/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:1123 errors:0 dropped:0 overruns:0 frame:0
TX packets:781 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:949754 (927.4 KB) TX bytes:92267 (90.1 KB)
Interrupt:16 Base address:0x20a4
eth0 is on the internal lan with the client from which I want to access the internet
eth1 is can access internet all right.
The ifconfig on a client returns
eth0
Link encap:Ethernet HWaddr 00:0C:29:46:58:7F
inet addr:10.45.48.102 Bcast:10.45.255.255 Mask:255.255.0.0
inet6 addr: fe80::20c:29ff:fe46:587f/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:16014030 errors:0 dropped:0 overruns:0 frame:0
TX packets:835276 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1297106653 (1237.0 Mb) TX bytes:738158694 (703.9 Mb)
I configured the Firefox on the client to use eBox's ip address/port in the proxy settings but I still can't get on the internet.
eBox is on a vmware workstation 7. It is eBox 1.4.1
eBox has two virtual nics (above) - one is NAT (eth1) and the other is bridged (eth0)
The client is on vmware ESXi 4.0. It's an openSUSE 11.2.
hi
i want to redirect the packet to proxy server. can u help me.
Present network.
MY internal network ==> switch ==> proxyserver ==> router ==> internet.
(for internet i use
to connect proxy, in web browser==> lan settings ==> proxy server ip address )
What i want is
My internal network ==> getway or firewall ==> switch ==> proxy server ==> router==> internet. ( where this getway or firewall i can configure for forward http request to proxy server.)
so that i can separate my internal network from intranet but able to access the internet.
help me out
raghu
I want to start using squd3 as proxy server for one of my network 192.168.6.0/24
I was try using some configurations but http pages not loaded.
I have searched and searched for a reverse proxy solution for non-website traffic. TCP but not http, on ports other than 80, 443, 8080, etc. Basically I just need a TCP forwarder that works with multiple TCP servers, WITHOUT webpage caching features. I do not need or want any webpage caching. Can squid work as a reverse proxy for TCP traffic without http? The other program I came across in searching was HAproxy. Both programs are for http but I am curious if they would work for TCP servers that do not serve webpages.
View 2 Replies View RelatedSome time yesterday, I lost the ability to ssh my remote server, or even visit any webpages it hosts.
I've explored hosts.deny, /var/log/secure and even turned iptables off to see if it would fix anything. To no avail. Here's what my ssh login attempt looks like:
Quote:
localhost ~ $ ssh -vv x.x.x.x
OpenSSH_5.2p1, OpenSSL 0.9.8l 5 Nov 2009
debug1: Reading configuration data /etc/ssh_config
debug2: ssh_connect: needpriv 0
[Code]....
I'm a little stumped on this one so I reaching out to see if anyone here has any idea. I just changed my ISP to Surewest as they're doing fiber straight to the house in my area so I have 8Mbps up and down.
I have my linux box running openssh and I have no problems SSHing into it from my remote laptop at work. I use putty to connect to it and create a tunnel so I can configure my firefox to use it as a SOCKS proxy. The problem is my response time for page loads in firefox is atrocious now. It'll take over a minute to load yahoo.com. The only real differences in my setup now are my ISP and router hardware at home. Previously, I was using the firewall that was built into my AT&T Uverse gateway. Now, I'm using my old Linksys WRT54G v5.0 router with the latest firmware. My linux box is wired directly into it with ethernet. When I run the speed tests from that box I get my correct speeds of 8Mbps up and down with <15ms ping. From what I can tell, all of my router settings are correct.
I have a problem setting up a SSH tunnel. I know how it's usually done, but the setup is different this time. I am behind a HTTP(S) and FTP proxy, that does NTLM authentication, and I want to access a server beyond the proxy.
MY CLIENT <-> LAN <-> HTTP PROXY <-> INTERNET <-> MY SERVER
So far, the best I have achieved is installing and configuring CNTLM as a local proxy for the authentication part. Using CNTLM, I managed to access and mount a secured (https) DAV share using davfs2. In theory, CNTLM should let me setup permanent tunnels from local ports to distant ports, and it does; however these tunnels don't seem to work for SSH nor for IMAP (another protocol I tried).
I suspect the problem is that neither SSH nor IMAP is HTTP- or FTP-based, but anyway it does not work. So back to square one: how should I proceed to get ssh to connect through the HTTP proxy (with NTLM authentication) to the remote server? For that matter, if there's a better way than SSH to create a tunnel, that would work in my situation, that's OK with me. Just in case, here are the relevant parts from my firewall setup on the server:
Code:
# default policies
iptables -t filter -P INPUT DROP
iptables -t filter -P FORWARD DROP
iptables -t filter -P OUTPUT ACCEPT
# reset
iptables -t filter -F INPUT
iptables -t filter -F FORWARD
iptables -t filter -F OUTPUT
# allow continuation of established connections
iptables -t filter -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -t filter -A INPUT -f -j ACCEPT
# allow local connections
iptables -t filter -A INPUT -i lo -j ACCEPT
# open ports:
# ssh
iptables -t filter -A INPUT -p tcp --dport 22 -j ACCEPT
Yves.
Will squid or HAproxy work to reverse proxy non-http traffic? I have searched and searched for a reverse proxy solution for non-website traffic. TCP but not http, on ports other than 80, 443, 8080, etc. Basically I just need a TCP forwarder that works with multiple TCP servers, WITHOUT webpage caching features. I do not need or want any webpage caching. Can squid work as a reverse proxy for TCP traffic without http? The other program I came across in searching was HAproxy. Both programs are for http but I am curious if they would work for TCP servers that do not serve webpages.
View 4 Replies View RelatedA Linux (CentOS5.3) server is setup with apache reverse proxy. The reverse proxy server is opened to outside and an internal server is mapped to ProxyPass configuration. SSL certificate is also installed on the Apache reverse proxy server. The problem is, it is extremely slow in serving http requests through reverse proxy. There is no problem with server resources or bandwidth. When the internal server is directly accessed through Internet, there is no delay. The backend server and the reverse proxy server are also on the same switch (same subnet). When I searched the Net, there were recommendations to enable cache in Apache. I did so as follows in httpd.conf.
<IfModule mod_disk_cache.c>
CacheEnable disk /
CacheRoot "/var/cache/mod_proxy"
CacheDirLevels 5
CacheDirLength 3
</IfModule>
But still there is no progress. Do I want to enable cache in ssl.conf too? Or is there any other workaround to speed up Apache reverse proxy. Is there a way to check that caching is happening?
I've been trying to make myself anonymous, but I cant find 'Tor' anywhere, tried 'yum & kpackagekit' neither have it. I did find 'Privoxy', installed it, set proxy for HTTP and HTTPS in Firefox, but it says 'unknown proxy' when I try to use it! I've been to the Privoxy web site and read through the 'User manual', but most of it is 'geek' to me!
View 8 Replies View RelatedHow to forward local HTTP requests to remote Proxy with IPTables ?
View 1 Replies View RelatedI've been doing some security testing in a lab environment that does not have direct internet access. It's actually a little complicated: From home to connect to my lab machine, I
1. SSH to machineA.
2. SSH from machineA to machineB
where machineB is my actual lab machine. neither machineA or machineB allow anything other than SSH, and machineB is only accessible from machineA. However, I really need to run yum on machineB. I have managed to get internet access via Firefox on machineB by creating a series of SOCKS proxy via SSH.
1. machineB: ssh -L 12345:localhost:12345 user@machineA
2. machineA: ssh -D 12345 user@machineC
3. machineB: configure firefox to use socks proxy, localhost, 12345
where machineC has internet without limits placed. This is the only way I have managed to get internet working. I tried using ssh -L all the way from machineB->machineA->machineC but it didn't work (even when setting Firefox to use http proxy). I tried using ssh -D all the way, but again that doesn't work either.
I do have access via Firefox using socks proxy. However, yum update fails to retrieve mirror list, and from what I have found I don't believe yum supports socks proxy directly. Instead, it uses http_proxy / ftp_proxy. how to get yum to go out over the SOCKS proxy I created (same one using in Firefox)? It seems like since Firefox can access the internet and everything without issues, i should be able to get yum to tunnel through the same connection to access everything.... I tried
[URL]
I need to redirect all http/https/ftp traffic through the remote proxy, but when I changes connection settings in browser or in System->Preferences->Network Proxy it doesn't work well: instead of getting page content browser asks for saving some short (8 bytes) file with the same content for all requested pages. It happens in Chrome/Opera/Firefox. This proxy requires authorization and works on computer with Windos XP. It worked well when I was using Windows 7 and Proxifier, now I have Ubuntu 9.10 with all available updates.
View 3 Replies View Relatedi have a website named [URL]... now i want to access this website using proxy server(squid,or etc...) under my personal server named [URL]...means that [URL]...
View 4 Replies View RelatedHow To: Load Balancing & Failover With Dual/ Multi WAN on Linux proxy server I have 3 WANs connection (2 ADSL and 1 Wimax). And 30 clients on LAN.
eth0 connect with Wimax
ip= 172.23.x.x
eth1 connect with ADSL1
ip=10.10.6.x
eth2 connect with ADSL2
ip= 10.10.5.x
eth3 connect with LAN
ip=192.168.1.x
how to do Load Balancing & Failover With Dual/ Multi WAN on Linux proxy server.
