Server :: Squid And Apache2 - Http_access All Deny At The End Of The File - Allow External Petitions To Web?
Nov 11, 2010
I have a server running both apache2 (default port) and squid (3128 port) I set an squid ACL so my LAN 192.168.1.0 gets filtered. ok all works fine except for external web petitions. When i try to access my web server from the outside, using my public ip, i get a SQUID DENIED. i guess that is because in squid ACL's there is something like: http_access all deny at the end of the file. How can i allow external petitions to my web?
View 4 Replies
ADVERTISEMENT
Jul 3, 2010
I have encountered a problem using squid, I am currently configuring my squid to deny all http and https except 1 external dst ip address which I will use to connect trough RDP, how can I configure my squid with what I want to accomplish?
View 1 Replies
View Related
Nov 15, 2010
How to deny download some file types on squid ?
I tried below in my squid.conf
acl blockfiles urlpath_regex -i "/etc/squid/src/blockfiles"
http_access allow localnet freesites !blockfiles
and in my /etc/squid/src/blockfiles
.[Ee][Xx][Ee]$
.[Aa][Vv][Ii]$
.[Mm][Pp][Gg]$
.[Mm][Pp][Ee][Gg]$
.[Mm][Pp]3$
.[Rr][Aa][Rr]$
I still able to download
View 2 Replies
View Related
Aug 23, 2010
I'm trying to use Squid to restrict web access on the computers of my LAN. All of the computers are using static IP address and we use our firewall to deny all HTTP access except for the proxy machine so everyone needs to go through the proxy to access the web.
Most of of the computers have access to websites that are listed on a white list that I called "goodsites". I have a range of IP address that I listed in a file called "super_users". These IP adresses are able to access everything except sites that I have put in a black list called "badsites".
I would like to restrict the use of audio/video streaming for all the IP adresses including the super_users. So far I have been able to effectively block streaming for all the IP addresses except the super_users that are able to bypass this restriction.
Here is the transcript of my squid.conf file:
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 10.0.0.0/8# RFC1918 possible internal network
[Code]....
View 11 Replies
View Related
Nov 22, 2010
Im currently serving a web in apache2; no problems I recently set up squid to filter internet for my LAN users.
***i dont want squid to accelerate WEB requests in my apache2.
So the problem is that SQUID blocks my 192.168.1. LAN denied attemps, so far, its ok BUT IT ALSO BLOCKS ANY OF THE INTERNET USERS TRYING TO REACH MY HOSTED WEB.
Can i have both servers in the same box without interferring each other?
View 6 Replies
View Related
Dec 22, 2010
I have just installed Squid proxy. i also use WPAD to deploy policies for all client. Both works well together. Now i want to configure firewall Juniper SSG140 will be deny all request from client to access internet and redirect to Squid. I mean deny HTTP & HTTPS except Squid (port 3128), even i want to all access to internet have to through Squid proxy. I don't expert about the firewall Juniper. May i know step by step configure it.
[URL]
View 6 Replies
View Related
Aug 24, 2009
I am trying to access log file which located in /etc/log/apache2. I could get into the directory using `su`. I was able to run ls command under the directory and everything was file. I could run a command,
ls -d /var/log/apache2/*
However after I switched to my account, I got an error. sudo ls -d /var/log/apache2/* ls: cannot access /var/log/apache2/*: No such file or directory
I want to use this command in a bash script to get a list of log files. Should I write the script as root and run it as root?
View 3 Replies
View Related
Dec 31, 2010
I have a Debian 5.0.7 installed to my server. I try to install Apache and SVN to this server. I use this tutorial: http://www.howtoforge.com/subversion...-ubuntu-server
But is unfortunately not working.
My apache virtual host configuration file is:
Code:
This passwd file containing 1 user:
Code:
The rights for the passwd file:
Code:
And apache2 is running like this:
Code:
And if I try to login to my page I got an "Internal Server Error" page.
And my error is in the apache log is this:
Code:
So I'm a little bit confused about it. The apache2 should have rights to open this file. I checked it, the file is exist and the apache2 is have rights for it. I don't understand it.
View 1 Replies
View Related
Nov 19, 2010
I have suse10 64 bit installed. I am setting up a svn server on it. After installation and adding the modules ,while reloading the apache2 it's throwing the error as: HTML Code: httpd2-prefork: Syntax error on line 113 of /etc/apache2/httpd.conf: Syntax error on line 31 of /etc/apache2/sysconfig.d/loadmodule.conf: Cannot load /usr/lib64/apache2/mod_dav_svn.so into server: /usr/lib64/libsvn_subr-1.so.0: undefined symbol: apr_memcache_add_server
View 9 Replies
View Related
Dec 9, 2009
I am getting this error
Starting web server: apache2[Wed Dec 09 15:36:40 2009] [warn] NameVirtualHost XX.XX.XX.XXX:80 has no VirtualHosts(99)Cannot assign requested address: make_sock: could not bind to address 68.178.232.100:80
no listening sockets available, shutting down Unable to open logs failed!
also what is 68.178.232.100
View 1 Replies
View Related
Jun 1, 2010
I'm trying to setup apache2 to drop a core file when it crashes. I know that you need to set the CoreDumpDirectory directive in /etc/apache2/apache2.conf and run "ulimit -c unlimited" from the command line (and restart apache after the ulimit command). But, on a reboot, even though the output of "ulimit -a" shows unlimited, apache2 will not create a core dump file unliess you set ulimit -c unlimited again and restart apache2. There must be a way to configure apache2.conf or something so that ulimit -c unlimited is set prior to apache2 starting, no?
View 2 Replies
View Related
Mar 16, 2011
I am running squid 2.6 (as proxy server) in cent os 5. When I use the following command I see
Code:
#tail -f /var/log/squid/access.log
i can always see
TCP_MISS
TCP_REFRESH_MISS
TCP_CLIENT_MISS
which means that the client computer does not gain web pages from squid cache. If the client gain access gain then there should be
TCP_HIT,
TCP_REFRESH_HIT
TCP_REFRESH_HIT/200
but unfortunately I can not see this message There is no problem with the client side and they are happy but being a system admin it is a serious thing that why there is no chance to see TCP_REFRESH_HIT. The squid cache size is only 2GB.
View 1 Replies
View Related
Mar 14, 2011
I am using squid 2.6 on my cent os 5 .I want to shutdown the system at 7:00 pm for that purpose I write in# crontab -e 0 19 * * * /sbin/shutdown -h nowThe thing which I want to clear that when the system will going to turn off it will also stop squid service? If not then how can I automatically stop squid service and then crontab file execute
View 6 Replies
View Related
Dec 7, 2010
I would like to know if it is possible to deny the access to a file for root? Would ACL's be a possibility? I have "googled" around but haven't found anything interesting (except SELinux). I should secure a password file to an important database.
View 6 Replies
View Related
May 23, 2010
My squid server works fine in fedora 11 system . Is there any web like interface for admins to create,change,modify users of squid and to view their logs.
View 1 Replies
View Related
Jan 17, 2011
I would like to ask some help and tutorial for setting up and how to configure squid proxy server in my (Home PC Server). I am a newbie in Linux Centos. I already installed in my system the CentOS 5.5 . Now, I want to configure it as my internet server, all of my 4 system running in Windows including the laptop I want to connect through my CentOS pc with username authentication. I assign all IP address by static. see tthe attachement in my set up. [url] I just want to know what I need to change and add in my squid config file. And how can I configure properly my CentOS with 2 LAN card as internet server.
View 1 Replies
View Related
Apr 6, 2010
I want to deny access to my server by PC's from other sub LAN on my company, so I will add the lines ALL: xxx.xx.xx. to hosts.allow and ALL: ALL to hosts.deny?
VampirD
Microsoft Windows is like air conditioning
Stops working when you open a window.
-----BEGIN PGP SIGNATURE-----
[Code].....
View 3 Replies
View Related
Mar 11, 2010
I can't seem to set this older server right to deny outside access while I build a website on it. What I am trying to accomplish is deny anyone outside of my network access to the website, but replace the 403 error with a temp page letting them know it is coming soon. I have googled for hours and everything I have tried just denies me as well. Seems to be all or nothing.
My last attempt was:
Code:
<VirtualHost *:80>
ServerName www.mydomain.com
ServerAlias mydomain.com
ServerAdmin me@mydomain.com
DocumentRoot /home/me/www/site
ErrorDocument 403 /temp.htm
<Directory />
Options FollowSymLinks -Indexes Multiviews
AllowOverride None
Order Deny,Allow
Allow from 192.168.0.*
Deny from all
</Directory>
</VirtualHost>
View 11 Replies
View Related
Jun 30, 2010
I have create distro groups in zimbra and have add member sin there. when i connect an account on mapi etc. [URL] i have create a persona in order client to send from [URL] rather than [URL] How can i restrict inside postfix to relay using [URL]?
View 1 Replies
View Related
Feb 18, 2010
I have a squid3 on a debian lenny box but cannot get access to any site.
If i remove the http_access deny all works, but i just want those ip to get access to squid
My squid.conf
Code:
intranet:/etc/squid3# cat squid.conf
acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
#acl all src 0.0.0.0/0
[Code].....
View 3 Replies
View Related
Aug 22, 2010
i have set up my Apache2 server and i have this question. Because my netbook (eeePC 701 4g surf) has a very small SSD Drive (4GB) is it possible to set the default directory of apache to be an external USB Drive? And if it is, how?
View 2 Replies
View Related
Mar 8, 2011
I am a newbie in Linux. I have Fedora 13 OS 32 bits. I am working with PowerDNs and Poweradmin. How can I configure this with PowerDNS?
1. Allow localhost recursion but deny recursion to external clients. Is there a tutorial for that?
2. Set up cache nameserver for localhost (like caching-nameserver in Bind).
Is there a tutorial for that?
3. My Master Server with PowerDNS is working well from localhost but external clients cannot access it.
I have iptables with these rules:
[Code]....
View 1 Replies
View Related
Jan 14, 2011
I am using python as a cgi for a simple game that i'm planning to run on a website. It requires the user to enter his name and age. This is saved in a file newly created in his/her name. However, I'm getting this error The above is a description of an error in a Python program, formatted
63 for a Web browser because the 'cgitb' module was enabled. In case you
64 are not reading this in a Web browser, here is the original traceback:
65
66 Traceback (most recent call last):
67 File "/var/www/webprog.cgi", line 51, in <module>
68 main()
69 File "/var/www/webprog.cgi", line 44, in main
[Code]...
View 4 Replies
View Related
Feb 9, 2011
I'm rather (VERY) inexperienced when it comes to Linux, but Fedora 14 is the environment I have to use on my laptop at work, so please forgive any dumb that comes out of me.
How do I tell php to send an email with mail() using an external mail server?
The situation: I've got apache/php running a webserver on my local machine. It's for dev purposes only, and the website files I'm using are checked out from our SVN. This lets me make changes to our website while not actually changing our website.
I've come across an issue I'm fixing where I need to verify that an email is successfully getting sent out, and unfortunately, this email is sent out using php's mail(), and not our website's usual $mail object. Unfortunately, I don't have the authority to change how this sends out right now, just when it sends out.
I've been running everything fine on my machine for a month now, and haven't needed the mail stuff until now. How do I tell php to send an email using an external server?
View 1 Replies
View Related
Dec 11, 2010
I plugged in my external dvd-r (asus) via usb. It showed me some message on shell, that it has detected the cdrom(although its dvd rom as well but nevermind) and its of ASUS. But how do i know which dev it was associated with in /dev/? Since i had to test something, i plugged it out, and save the output of ls /dev/ > ~/result.txt
after plugging the dvd-rom, i compared the results and was able to find that it was associated with simple cdrom i.e. /dev/cdrom. I wanted to know that is there any command that will tell me which /dev/ file was associated with external dvdrom? i tried to see in the following result
1) df -h ( no results, just the already mounted partitions)
2) fdisk -l ( same as above)
3) dmesg | tail (shown almost the same result as was shown on shell at the time of plugging the dvd)
View 9 Replies
View Related
Jan 6, 2010
my squid show like this when i try create swap directory
[Code]....
View 2 Replies
View Related
Oct 24, 2010
Using Debian Lenny I'm getting the following message in my mail: /etc/cron.daily/logrotate:
Quote:
apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.0.1 for ServerName
View 1 Replies
View Related
Jan 26, 2011
Probably an easy (which means stoopid) question...I am trying to reroute a website using my hosts file so that it matches my servers certificate file for testing without effect dns and the live site.When I went to edit my /etc/hosts file it is non-existent. I have, I am assuming in it's place, hosts.allow and hosts.deny. Can anyone explain why I do not have a hosts file?
View 1 Replies
View Related
Jan 5, 2011
I am working on Apache2, and am up to the 'test' phase of the process. I accidental sent the apachectl file to acapche2 instead of apache2:
[rootlocalhost sbin]# mv apachectl /acpache2
I should have done: mv apachectl /usr/local/apache2/bin
That didn't happen..
I echoed ; echo ./apachectl
./apachectl
Sooo, I know its alive, just have no idea where, help? I need to get this file back to start the HTTP Sever.
View 4 Replies
View Related
Aug 18, 2010
I have a LAMP server set up (under Ubuntu 10.04 64-bit), and have a PHP application running on the Apache2 server. I copied the "default" website setup, and created a new one with the root at "/home/kota/WebRoot/".
When running my PHP application though, I come across a major issue: The script doesn't seem to be able to modify any files that are currently on the system, or create new ones.
However, this limitation is restricted to when running through Apache2. In other words, if i run it by typing "php5 myapplication.php" from the terminal, it works without a flaw. This leads me to believe that there is a permissions issue, disallowing Apache2 to create and modify files anywhere on my system.
Although it shouldn't make much of a difference, here is the basic information that I feel I should provide:
Code:
View 2 Replies
View Related
