LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise
User Name
Password
Linux - Enterprise This forum is for all items relating to using Linux in the Enterprise.

Notices


Reply
  Search this Thread
Old 06-07-2005, 02:08 AM   #1
Khetho
LQ Newbie
 
Registered: Apr 2005
Posts: 2

Rep: Reputation: 0
Question not able to connect to secure sites with Squid 3.0 (Fedora)


Hi all,

We recently moved up from using redhat 6.2 to using Fedora. However since then we have been experiencing problems connectiong to secure sites for example yahoo mail. What happens with yahoo mail is it will give you the log-in screen for you enter your username and password. If the username and /or password are incorrect you will get the incorrect password or username prompt. If however they are correct you will the browser continuew processing until you recieve the error "Connection Reset by peer" looking at the url you can see that authentication suceeded but no data has come through. Moreover we are unable to get onto https sites. We are using squid 3.0 proxy server running behind an iptables/netfilter firewall. I have included below part of the squid configuration file.

Squid.conf

#acl dangerous_ports port 7 9 19 22 23 25 53 109 110 119

#Sites that are open to use all the time
acl open_sites dstdomain "/etc/squid/open_sites"

#Items banned to donload
acl banned_downloads urlpath_regex -i "/etc/squid/banned_downloads"
acl SSL_CONNECT method CONNECT
acl SSL_Ports port 443 563

#Recommended minimum configuration:
# Only allow cachemgr access from localhost
always_direct allow SSL_ports
always_direct allow SSL_CONNECT
http_access allow manager localhost
http_access allow allowed_clients

http_access deny banned_downloads
http_access allow open_sites

#Deny acces for clients not allowd access in the morming, evening and night
http_access deny !allowed_clients morning
http_access deny !allowed_clients afternoon
http_access deny !allowed_clients night
#All
http_access allow localnet
http_access deny manager
#http_access deny dangerous_ports
http_access allow localhost
http_access deny all


The squid logs also give a sslReadServer error.
I have disabled the firewall before but the same problem remains.
How can I connect to secure sites like yahoo mail.
Thank you for your help in advance.

REGARDS,
Khetho
 
Old 06-24-2005, 05:24 AM   #2
win32sux
LQ Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 380Reputation: 380Reputation: 380Reputation: 380
hello, Khetho... were you able to resolve this?? let us know if you still need help...

did you try downgrading to the latest stable version of squid??

 
Old 06-27-2005, 05:52 AM   #3
Khetho
LQ Newbie
 
Registered: Apr 2005
Posts: 2

Original Poster
Rep: Reputation: 0
still not able to log onto secure sites

Hi,

I am still not able to loag onto secure sites but I have put it on the back burner. I suspect
that upgrading to the latest stable version would help and will tryit as soon as is
possible.

Regards,

Khetho
 
Old 11-08-2005, 09:53 PM   #4
zamri
Member
 
Registered: May 2004
Location: Malaysia
Distribution: Mandrake,Slackware,RedHat
Posts: 157

Rep: Reputation: 30
you have to set in your web browser the secure (https) proxy ip address and port. or if u don't want to set it in each browser, u have to NAT'ed it.

Code:
iptables -t nat -I POSTROUTING -s ur.network/24 -p tcp --dport 443 -j SNAT --to-source ur.firewall.ip
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Squid - Bypass login for some sites lhqcxg1 Linux - Software 1 09-20-2007 06:45 PM
cannot connect to secure wireless network with Fedora 3 raindogs Linux - Wireless Networking 5 09-15-2005 10:30 AM
DNS Config error preventing access to secure sites? KurtAKARebuild Linux - Networking 5 03-29-2005 10:12 PM
Moz & FF cannot access secure sites behind firewall rickenbacherus Linux - Networking 2 11-05-2004 11:54 AM
I am having problems connecting to secure sites (https) jflores1974 Linux - Networking 1 02-06-2004 03:22 PM

LinuxQuestions.org > Forums > Enterprise Linux Forums > Linux - Enterprise

All times are GMT -5. The time now is 04:52 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration