Re: [squid-users] Problem with parent proxy and no DNS (FATAL: Could not find any nameservers.)

From: Henrik Nordstrom <[email protected]>
Date: Mon, 10 Feb 2003 10:04:21 +0100

Squid insists on having a DNS server configured, but does not actually
need to use one in such configurations.

Configure squid.conf with

# Fool Squid to think there is a DNS server
dns_nameservers 127.0.0.1

Then make sure you do not use any DNS dependent ACL types, and always
make use of never_direct allow all...

Regards
Henrik

"Jeroen Steenhuis (Dutch Plating Power BV)" wrote:
>
> Hello !
>
> I've got a problem running squid, with no DNS servers alvailable. Squid must
> send request thru a parent proxy (this is the only way to get information
> from the internet).
>
> I searched the internet, but didn't found information to get squid running,
> also not in the squid FAQ....
>
> My Squid.Conf contains :
>
> http_port 80
> hierarchy_stoplist cgi-bin ?
>
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
>
> auth_param basic children 5
> auth_param basic realm Squid proxy-caching web server
> auth_param basic credentialsttl 2 hours
>
> refresh_pattern ^ftp: 1440 20% 10080
> refresh_pattern ^gopher: 1440 0% 1440
> refresh_pattern . 0 20% 4320
>
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> #acl to_localhost dst 127.0.0.0/8
> acl SSL_ports port 443 563
> acl Safe_ports port 80 # http
> acl Safe_ports port 21 # ftp
> acl Safe_ports port 443 563 # https, snews
> acl Safe_ports port 70 # gopher
> acl Safe_ports port 210 # wais
> acl Safe_ports port 1025-65535 # unregistered ports
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> acl localnetwork src 192.0.0.0/255.255.255.0
>
> http_access allow manager localhost
> http_access deny manager
> # Deny requests to unknown ports
> http_access deny !Safe_ports
> # Deny CONNECT to other than SSL ports
> http_access deny CONNECT !SSL_ports
>
> http_access allow localnetwork
>
> http_access deny all
>
> http_reply_access allow all
>
> icp_access allow all
>
> visible_hostname 192.0.0.11
>
> prefer_direct off
>
> never_direct allow all
>
> So, it seems to me it must work, but it doesn't :
>
> C:\squid\sbin>squid -D
> WARNING: Cannot write log file: c:/squid/var/logs/cache.log
> c:/squid/var/logs/cache.log: No such file or directory
> messages will be sent to 'stderr'.
> 2003/02/10 09:27:17| WARNING: Closing open FD 2
> 2003/02/10 09:27:17| Starting Squid Cache version 2.5.STABLE1.NT-CVS
> for i686-pc
> -winnt...
> 2003/02/10 09:27:17| Running on Windows 2000
> 2003/02/10 09:27:17| Process ID 12920
> 2003/02/10 09:27:17| With 2048 file descriptors available
> 2003/02/10 09:27:17| With 512 CRT stdio descriptors available
> 2003/02/10 09:27:17| Windows sockets initialized
> 2003/02/10 09:27:17| DNS Socket created at 0.0.0.0, port 4289, FD 3
> FATAL: Could not find any nameservers.
> Please check your TCP-IP settings or /etc/resolv.conf file
> or use the 'dns_nameservers' option in squid.conf.
> Squid Cache (Version 2.5.STABLE1.NT-CVS): Terminated abnormally.
> CPU Usage: 0.060 seconds = 0.020 user + 0.040 sys
> Maximum Resident Size: 1728 KB
> Page faults with physical i/o: 432
>
> abnormal program termination
>
> What must i do? I'm out of options...
>
> Thank You !
>
> Best regards,
>
> Jeroen
Received on Mon Feb 10 2003 - 02:06:12 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:13:17 MST