Networking :: Make All The Port To Pass Through Squid Server?
Apr 7, 2011
I have been working in Linux for the past two years.And working in squid for the past 6 months.The following is my Setup
ETH1 - ISP1 (Active)
ETH2 - LAN (Active)
ETH3 - ISP2 (Inactive)
Using Iptables I forward 80 port through squid (3128).Other ports just get connected in the proxy machine itself since it has IP_FORWARD enabled. All my client machines browsers enabled with "Use proxy 3128". I just want to make all the port to pass through squid server.
View 1 Replies
ADVERTISEMENT
Feb 22, 2011
I've a strange situation in my network: pcs gatewayed to another network, then a proxy, then a firewall.pcs --> router --> cloud --> router --> proxy --> switch <-- fw --> Internet(router, proxy and fw are alla connected by the switch)Some months ago the situation was: pcs --> router --> cloud --> router --> switch <-- fw --> Internet.There was a static route in the router that gatewayed the packets to the firewall, but that route has been deleted, and I cannot reinsert it because I've not access to the routers, so we have to use a proxy to go to Internet, and we have the configuration of all pcs (Windows XP) with the fields "proxy" filled.The proxy ha only one NIC gatewayed to the firewall, and Ubuntu and squid installed, but we have some problems:
1. we cannot use email, so how can we make port 110 and 25 packets pass?
2. squid seems to slow down, so can we uninstall it and route all the traffic directly to the firewall to speed up?
View 2 Replies
View Related
Feb 1, 2010
I need your help for a problem that it's happening in my customer. What I need is to change the configuration of a proxy, configured on Linux Cent OS v 4.3( explanation - see below) .My squid configuration's file it's like this:
[Code]...
View 3 Replies
View Related
Jun 14, 2010
i have the following ip assignments
fedora (iptables)
eth0 -private :192.168.1.1
eth1 -public : 186.117.50.6
squid proxy
192.168.1.10:3128
my clients range
192.168.2.0/24
how can i make my clients to browse internet only from proxy server my network is NAT 'ed. Please specify a iptable rule to allow internet access for my clients to browse ONLY if they come through proxy server.
View 1 Replies
View Related
May 26, 2010
I'm running IPF on solaris 10 Note :i believe the idea will be the same it doesn't matter either its linux or solaris
Code:
bash-3.00# ipf -V #display ipf version
ipf: IP Filter: v4.1.9 (592)
[code]....
View 9 Replies
View Related
Jul 12, 2011
i've got a software that uses a specific tcp port e.g 11111. i want to redirect all the traffic from 11111 to squid port 3128. i'm using the following commands to redirecting:
iptables -t nat -A PREROUTING -p tcp -m tcp -i eth0 --dport 11111 -j DNAT --to 192.168.0.1:3128
iptables -A FORWARD -p tcp -m tcp -i eth0 --dport 11111 -j ACCEPT
my ubuntu server has two interfaces. eth0 is for local network (dhcp assigns ips) and eth1 is for internet. my ubuntu server acts as a gateway and as an authentication server for users.
at squid also i have the following configuration regarding my port:
acl myport port 11111 http_access allow CONNECT myport. my squid installation is not transparent as users need to authenticate in order to access the web.
my application is a windows application and of course is not working. i examined the packets with wireshark and i noticed that when the program tries to access the internet, squid replies with err_invalid_request (the packet contains that data). the program is trying to send some plain text via port 11111 and as far as i can image, somehow squid declines the data. i cant get rid off squid as i want to pass the traffic from squid. what is the problem?
View 1 Replies
View Related
Apr 25, 2011
I have got a reverse proxy that is working just fine, it accepts requests on port 443 and port 80 and ONLY sends traffic upstream to port 80 to the apache server listening on localhost. I use the following config:
https_port 10.14.1.72:443 cert=/etc/squid/self_certs/site.crt key=/etc/squid/self_certs/site.key defaultsite=site vhost
cache_peer 127.0.0.1 parent 443 80 no-query originserver login=PASS
http_port 10.14.1.72:80 vhost
My problem is the following : The site should act differently in some occasions based on whether http or https was requested. So my idea is to setup second http vhost on apache listening to port 8080 and on that vhost I would server the https code. So is it possible to use SQUID to :
Send traffic destined for port 443 to localhost:8080
and
Send traffic destined for port 80 to localhost:80 ?
View 13 Replies
View Related
Jan 26, 2010
Here is my network diagram ADSL router----firewall--LAN inside the LAN my squid is running. currently all users are working with out proxy server. I installed the proxy server inside the LAN. now all users can access web browsing ,but no other ports are working , like POP3, smtp, then some other TCP port based applications are not working. My firewall ( juniper) is created and tested the rules to allow the POP3 and smtp and selected poprts which is working , but I redirected through squid proxy server the clients are not able to access. where do I have to create rules?
** in squid proxy( i already did in safe port list stillnot working)
** IP tables?
View 6 Replies
View Related
Dec 22, 2010
I want to make a transparent squid proxy server in centos. The squid proxy version is 2.6 stable. I made a normal squid server but want to make it transparent so that users do not need to enter the proxy settings in web browser. Even i searched about this on google but not getting it properly.I have two lan cards on centos system. ETH1 used for LAN and ETH2 used for WAN. And in this squid.conf i written "http_port 172.16.31.1:3128 transparent" and i also added a rule in iptables which is "iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port 3128" but still i have to enter proxy settings at client's web browser to use internet
View 4 Replies
View Related
Sep 6, 2010
We are trying to create a message forwarder program that receive a message on Port A and pass it on t Port B. Also receive a message from Port C and Pass it on to Port D as follows.
[Code]...
View 4 Replies
View Related
Nov 9, 2010
I am using Redhat linux 9.0 and using squid proxy server.My problem is tht i my squid server is responsing very slowing. whenevr i try to open sites the site starts to open after 3 or 4 seconds and often squid does not open the complete site. its stop the site in middle. My squid Configurtion is below. Is there any need to tune the system parameters Like from 'SYSCTL.conf' for better diskd performence or another problem. at this time i am using default system parameters. Please help me in detail what is the reason of squid slow performence if there ia a need of any system tuning please tell me in detail. I am very thankfull to you.I am really worried about slow performence of the squid. I also try to offline_mode on but the same problem. code...
View 3 Replies
View Related
May 18, 2010
I have installed squid server.. but how can i make tranceparrent proxy?
View 1 Replies
View Related
Apr 6, 2010
How can I set my server to listen at a different port for http access. I would like to use port 8080 (to circumnavigate isp blocks). Also can I do the same thing for sftp connections?
View 3 Replies
View Related
Jun 27, 2010
I need to make some C program under linux to make some scripts that can talk to my Server's Parallel port by sending some quare signal as high or low, so what i can do ?
View 4 Replies
View Related
Mar 6, 2011
I installed squid cache on my ubuntu server 10.10 and it is work fine but i want to know how to make it cache all files like .exe .mp3 .avi ....etc. and the other thing i want to know is how to make my client take the files from the cache in the full speed. since am using mikrotik system to use pppoe for clients and i match it with my ubuntu squid
View 1 Replies
View Related
Sep 3, 2010
How do I change the ports that something like xchat uses to make it use the same port as firefox? I am currently somewhere that has all non browser ports blocked.
View 1 Replies
View Related
May 23, 2010
My squid server works fine in fedora 11 system . Is there any web like interface for admins to create,change,modify users of squid and to view their logs.
View 1 Replies
View Related
Jan 17, 2011
I would like to ask some help and tutorial for setting up and how to configure squid proxy server in my (Home PC Server). I am a newbie in Linux Centos. I already installed in my system the CentOS 5.5 . Now, I want to configure it as my internet server, all of my 4 system running in Windows including the laptop I want to connect through my CentOS pc with username authentication. I assign all IP address by static. see tthe attachement in my set up. [url] I just want to know what I need to change and add in my squid config file. And how can I configure properly my CentOS with 2 LAN card as internet server.
View 1 Replies
View Related
Feb 18, 2010
I want to do a simple port redirect, i.e. whatever comes trough whatever interface on port AAAA will get redirected to port BBBBI thought that iptables -t nat -I PREROUTING --source 0/0 --destination 0/0 -p tcp --dport AAAA -j REDIRECT --to-ports BBBBhowever it doesn't work, e.g. nc -v -w2 -z localhost AAAA gives:
nc: connect to localhost port AAAA (tcp) failed: Connection refused
while
nc -v -w2 -z localhost BBBB
[code]....
View 10 Replies
View Related
Jun 11, 2011
I have 10 systems on my network and I have centos5.5 installed on server. All other clients are on WinXP. I am using squid server to share internet on my network.Problem is: whenever an user trying to open a website through squid server, it opens too slow, but if same user tries to open same website by passing squid server, it opens 3 times faster. Downloading speed is same in both scenario. Only buffering speed is slow through squid.
View 1 Replies
View Related
Aug 20, 2009
Can't seem to access my squid server on port 80. I have port 80 allowed in the conf for this IP. apache is listening to port 80 but only on the 2nd IP. iptables is allowing through port 80 incoming nmap shows no ports open on 80 though:
Code:
Starting Nmap 5.00 ( http://nmap.org ) at 2009-08-20 11:19 BST
NSE: Loaded 0 scripts for scanning.
Initiating SYN Stealth Scan at 11:19
[code]....
View 8 Replies
View Related
Feb 3, 2010
I have to configure squid server which will have two internet connections on two separate lan cards and both will run simultaneously.I know how to configure squid server with one internet connection
View 4 Replies
View Related
Dec 17, 2009
We have two offices suppose A and B. At office A, we use centos 5.3 computer as router and squid proxy server. At office B we use a cisco router to connect to Internet. Computers at office A that has direct access to Internet can access computers behind cisco router at office B using vnc viewer. But computers at office A that can use internet only through squid proxy can't access computers behind cisco router at office B. Is there any way so that I could allow squid clients to access computer behind cisco router at office B using vnc viewer.
View 3 Replies
View Related
May 2, 2010
I have a mail server i need it to send message via port 587 not port 25, i make some changes to my postfix server which i use and it is already successed making a telnet to 587 port like it :
[Code]....
View 3 Replies
View Related
Jun 7, 2010
I'm trying to do a shell script which are suppose to run a program as a specific user at system boot up. The problem is that I don't know for sure how to make the script add the users password to the prompt when it's necessary.
Basically the program would be run like this:
sudo -u extrema program_name -r /srv/program_name -d
and in this example the password is, "hidden".
How would I make this script run this program as user extrema with the password "hidden" at boot-up? I know how to put the script in the rc.X directory and so on, its more the syntax of the code.
View 4 Replies
View Related
Mar 16, 2010
How to configure SQUID proxy server in ubuntu 9.10 ?
View 7 Replies
View Related
Mar 16, 2010
how-to configure squid proxy server. I still haven't been able to find a solution. I want to set up squid as a open http proxy server. So people from other networks can connect through the proxy without having to login.Do I have to use iptables to reroute http traffic to squids proxy port? I have forwarded the port in my ISP modem so I know thats working, its the squid config that has flaws or iptables locally.
View 1 Replies
View Related
Jul 16, 2011
I'm going to be going off to college in the fall and the internet probably won't be blazing fast like it is at home, so I was wanting to set my desktop up so that it would act as a local cache of the parts of the internet i frequent the most, but I can't find anything like that. All the tutorials I've found are either for sharing the load on a server or for setting up a separate machine as the squid.
View 3 Replies
View Related
Jan 12, 2011
To use squid i want to install linux in my 200 GB hard disk. I need guidance regarding to installation phase.A server which will be dedicated for squid proxy what things should I keep while installing my red hat linux operating system.I mean the partition sizes for swap ,root ,boot and any partion for squid cache should I need during making partitions ?
View 2 Replies
View Related
May 11, 2011
I have an Ubuntu Server 10.10 machine running in-between my firewall and the rest of my network that monitors the internet connection and functions as a web cache.
It had been working for about a year, but started having an issue where no one (either from the server itself or from the local network) could connect to a website. Port 80 was the only one affected, which is forwarded via iptables to port 3128 for Squid.
After lots of trial and error, I thought to do a packet capture from the internet-side of the server (which I should've done in the first place!). Turns out the tcp handshake is not completed. The connection is started with a syn packet; the web server (google.com for example) responds with a SYN/ACK, and then nothing else is sent until the squid server tries again with another SYN packet. It repeats several times like that, then gives up and gives a connection timeout error message.
My iptables rules are as follows:
I'm no guru when it comes to iptables, and when I originally setup the server, I knew even less. So if something is wrong or at least could be done better with the rules please tell me. Also, I should note that I'm using bridge-utils to bridge the two ethernet interfaces. Squid is set as an intercepting (transparent) proxy.
View 2 Replies
View Related
