[squid-users] Re: Squid and Firewall on Gateway

From: Adam Aube <[email protected]>
Date: Thu, 16 Dec 2004 10:59:09 -0500

Shafyx wrote:

> I have installed on my a debian machine that acts as a
> gateway to my lan. The job of the gateway to to
> provide a caching server for my lan as well as a
> firewall.

> On the Gateway, i have squid 2.5.STABLE7 and it
> authenticates all the users connecting to the
> internet. Thus, it is not a transparent proxy. I am
> also using iptables to build the firewall. Proxy
> listen on port 3128.

> When i browse without activating proxy on my browser,
> I can surf on the internet but when i activate the
> proxy, it gives:

> The requested URL could not be retrieved
>
> While trying to retrieve the URL:
> http://www.yahoo.com/
>
> The following error was encountered:
>
> Unable to determine IP address from host name for
> www.yahoo.com
>
> The dnsserver returned:
>
> Timeout

Your firewall is misconfigured and isn't letting DNS queries out. You need
to allow UDP port 53 on your OUTPUT chain.

Adam
Received on Thu Dec 16 2004 - 09:24:59 MST

This archive was generated by hypermail pre-2.1.9 : Sat Jan 01 2005 - 12:00:02 MST