LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
LinkBack Search this Thread
Old 08-28-2006, 05:41 AM   #1
hacidayi
LQ Newbie
 
Registered: Mar 2006
Posts: 2

Rep: Reputation: 0
controlling ports other than 80 with squid


Hello,
i am a newbee and i am having trouble with squid.
Can i control ports other then 80 via squid. What i mean is: can i describe in squid.conf file which user can use which ports? My configuration is below:

I have configured iptables and squid using this howto document: (... there was an url but the system did not let me send a url as i am new here )

I modified the lines in squid.conf as it said in the howto document as following .
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
i have described an acl list as fallows
acl diger src "/etc/hdayi/diger"
and let them access:
http_access allow diger
and in iptables:
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
With this configuration only http port (80) works(no other ports works 21, 443 etc.). But i want to control other ports too.

I believe that i can make o port description like:
acl my_ports port 80 1863 ...
and doing this:
http_access allow diger my_ports
and in iptables i must redirect the necessary ports to 3128 (to squid).
I am doing this but i

Thx.
hacidayi
 
Old 09-08-2006, 12:37 PM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
hi there... i see it's been over a week and you haven't gotten a reply yet, so this is more of a friendly bump than anything else... i just wanted to remind you that not all types of connections can be transparently proxied... some things you will HAVE to do in a normal non-transparent manner...

but yeah, you should in fact have an ACL for port numbers...

for example, the one on my parent's PC (accessed via localhost) looks like:
Code:
acl Safe_ports port 80 8080 21
http_access deny !Safe_ports
firefox has been told not to proxy port 443 on their box, and port 8080 is there just because several of the websites they use are listening on that port for whatever reason...

Last edited by win32sux; 09-08-2006 at 12:40 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Open some specific ports in SQUID ihtus Linux - Networking 1 07-17-2006 08:18 PM
pop3 and smtp ports on squid smoky_flame Linux - Networking 1 03-03-2006 07:18 AM
how to open and block the ports in squid.... shahg_shahg Linux - Security 1 04-28-2005 06:01 PM
controlling access through squid( blocking all sites except for one) jomy Linux - Networking 1 12-15-2004 06:27 AM
ports for MNF Squid scammeh^ Linux - Networking 1 12-08-2003 10:51 AM


All times are GMT -5. The time now is 08:14 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration