Re: [squid-users] TCP_DENIED/403 for internal servers

From: Eliezer Croitoru <eliezer_at_ngtech.co.il>
Date: Tue, 04 Jun 2013 23:21:57 +0300

Sorry Satish Thareja,

This post is outdated since squid is not in 2.5\6 but on 3.3.
If you will share more from squid.conf lines we can try to help you.
if you can share the access.log we can try to understand.
please share IP etc..
if you are getting 403 it means that the server is rejecting you and not
squid.

use http_access allow all
if in this case it's not working either you are trying to access some
strange port or strange method.

Regards,
Eliezer

On 6/4/2013 7:20 PM, Satish Thareja wrote:
> Amos,
>
> The config is to allow http access for all but this case.
> I came across this link :
> http://www.linuxquestions.org/questions/linux-networking-3/so-many-tcp_denied-in-squid-access-log-469574/
>
> but I do not have anything blocked in my configuration.
>
> Is it possible that, if the 'host' does not allow access to all
> machines ( and new request from squid machine ), then we will get
> TCP_DENIED/403 status code ??
>
> Thanks,
> Satish
>
> On Tue, Jun 4, 2013 at 5:22 PM, Amos Jeffries <squid3_at_treenet.co.nz> wrote:
>> On 4/06/2013 11:17 p.m., Satish Thareja wrote:
>>>
>>> Hi,
>>>
>>> I have configured my squid box without restricting 'http_access' on
>>> any resource.
>>> But when I try to access a resource 'host.domain.com' using the
>>> hostname (i.e. host ) directly, I am getting TCP_DENIED/403 response
>>> code.
>>>
>>> I able to resolve 'host' from the squid machine directly, but http
>>> requests to the 'host' still fail.
>>>
>>> What could possibly wrong with my configuration?
>>
>>
>> Perhapse if you showed the configuration somebody might have a clue....
>>
>> Amos
>>
Received on Tue Jun 04 2013 - 20:23:13 MDT

This archive was generated by hypermail 2.2.0 : Wed Jun 05 2013 - 12:00:11 MDT