Re: [squid-users] Squid and Firewall on Gateway

From: Ow Mun Heng <[email protected]>
Date: Thu, 16 Dec 2004 16:08:17 +0800

On Thu, 2004-12-16 at 15:37, Shafyx wrote:
> Hello
>
>
> I have installed on my a debian machine that acts as a
> gateway to my lan. The job of the gateway to to
> provide a caching server for my lan as well as a
> firewall. Here is my architecture:
>
> eth1 eth0
> ADSL <---> [Gateway] <---> LAN
>
> eth1 = 192.168.192.70, eth0 = 192.168.1.1,
> LAN = 192.168.1.0/24
>
> On the Gateway, i have squid 2.5.STABLE7 and it
> authenticates all the users connecting to the
> internet. Thus, it is not a transparent proxy. I am
> also using iptables to build the firewall. Proxy
> listen on port 3128.
>
> here what access.log says:
> 1103182301.857 1 192.168.1.23 TCP_DENIED/407 1761
> GET http://www.yahoo.com/ - NONE/- text/html

Determine if you've placed the correct acls in Squid.conf.

something like
acl Int_net src 192.168.1.0/255.255.255.0
http_access allow Int_net

--
Ow Mun Heng
Gentoo/Linux on D600 1.4Ghz 
98% Microsoft(tm) Free!!
Neuromancer 16:06:27 up 6:33, 7 users, 0.15, 0.37, 0.44 
Received on Thu Dec 16 2004 - 01:08:59 MST

This archive was generated by hypermail pre-2.1.9 : Sat Jan 01 2005 - 12:00:02 MST