Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
SDN 101: An Introduction to Software Defined Networking
Discover the advantages of SDN.
SDN has quickly become one of the hottest trends in IT. But not all SDN solutions offer real software-defined functionality. As more enterprises consider SDN, they want to know, “What is SDN? And what are the real benefits?” If you're ready to explore the advantages of SDN, and want to know how it should be implemented within your enterprise, start by reading our introductory white paper.
Click Here to receive this Complete Guide absolutely free.
I have set up a squid proxy and opened port 8080 because that is the port I told squid to use.
I have opened tcp 53 and udp 53 for dns.
I have required authentication and created password file and users
I am using freecap as well as my web browser to test everything.
Freecap shows me what is going on in the background if you were wondering it shows the sockets connecting and verifies the login was correct in essence it verifies the connection whereas the browsers pops up a login box and it goes away after you enter credentials .
The problem is I have a connection to the proxy but no web pages are being displayed. I do not want to run it in transparent mode so I am not sure how to set up iptables to forward all web traffic back out port 8080.
I am thinking this is my problem can someone confirm and let me know what I need to do?
But it isnt working and I netstat and see the connection on the proxy server I also lynx from the box so I know squid should be able to do dns queries and I have tried rebuilding the cache with no luck here is my stripped squid .conf file
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
auth_param basic program /usr/lib/squid/ncsa_auth /etc/squid/password
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl ncsa_users proxy_auth REQUIRED
http_access allow ncsa_users
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access deny all
http_reply_access allow all
icp_access allow all
I added it in and it's corresponding http_acces still nothing, but I discovered WARNING: Cannot run '/usr/lib/squid/ncsa_auth' process in my /var/log/squid/cache.log
Without Authentication Squid works with Authentication it fails.
I need simple authentication for 2 users.
If you compiled Squid from source, then somewhere in your source tree - src/helpers/basic/NCSA *but I'm not sure - look for it* - is the source code for the authenticators you wish to use with squid... Usually, these are specified during the 'config' step, but I've built authenticators just by CD'ing to the source directory containing them and running 'make'. After that, copy the binary to the location in which squid expects it and you should be good to go.