LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices

Reply
 
Search this Thread
Old 04-27-2006, 09:09 PM   #1
gabsik
Member
 
Registered: Dec 2005
Location: This planet
Distribution: Debian,Xubuntu
Posts: 546

Rep: Reputation: 30
Red face transparent squid


To use squid as a transparent proxy accellerator reverse and etc. the httpd_accel_port has to be 80 , if i redirect traffic with the iptables it can be any port i want expecially with squid on the gateway ant the www server on an internal machine,if i redirect from 80 to 3128 it has to be httpd_accel_port 3128 ... .... .....

Last edited by gabsik; 04-27-2006 at 09:16 PM.
 
Old 04-28-2006, 01:18 AM   #2
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Quote:
Originally Posted by gabsik
To use squid as a transparent proxy accellerator reverse and etc. the httpd_accel_port has to be 80 , if i redirect traffic with the iptables it can be any port i want expecially with squid on the gateway ant the www server on an internal machine,if i redirect from 80 to 3128 it has to be httpd_accel_port 3128 ...
ummm, what exactly is your question??
 
Old 04-28-2006, 02:39 AM   #3
gabsik
Member
 
Registered: Dec 2005
Location: This planet
Distribution: Debian,Xubuntu
Posts: 546

Original Poster
Rep: Reputation: 30
For sure i'haven'got clear the function of a reverse proxy,i have the guide from the squid-cache.org but there is still some obscurity.So,when i use squid as reverse,transparent for clients connecting to my webserver from the internet untrusted httpd_accel_port has to be 80,acting like this as a firewall proxy(i have a web server but it is just on 443,actually),i'm using an ACL also for ftp.
It's not going to be a firewall and i don't want it to be for my trusted clients in my lan to connect to my webserver and for my trusted browsers i want it to do caching and speeding up things while they browse the internet,is this an httpd_accell?
At the end i want squid to be a protection plus the iptables for the servers in DMZ against clients connecting from internet.(http.https,ftp,smtp,pop3-ssl,ircd),anyclient(also considering i have https and pop3-ssl,and ssl dosn't handle to be proxied,right?).For my trusted clients it should help for privacy(tor) and for caching.
It's complicated also for the iptables,for the trusted clients,because of tor, i don't know where to redirect what ???And for untrusted internet that port 80 when i have only https:443!Chaos!!!!!!!!!!!!!!!!!!

Last edited by gabsik; 04-28-2006 at 02:57 AM.
 
Old 08-10-2008, 07:01 PM   #4
missamoune
LQ Newbie
 
Registered: Aug 2008
Posts: 3

Rep: Reputation: 0
Unhappy transparent squid

Quote:
Originally Posted by gabsik View Post
For sure i'haven'got clear the function of a reverse proxy,i have the guide from the squid-cache.org but there is still some obscurity.So,when i use squid as reverse,transparent for clients connecting to my webserver from the internet untrusted httpd_accel_port has to be 80,acting like this as a firewall proxy(i have a web server but it is just on 443,actually),i'm using an ACL also for ftp.
It's not going to be a firewall and i don't want it to be for my trusted clients in my lan to connect to my webserver and for my trusted browsers i want it to do caching and speeding up things while they browse the internet,is this an httpd_accell?
At the end i want squid to be a protection plus the iptables for the servers in DMZ against clients connecting from internet.(http.https,ftp,smtp,pop3-ssl,ircd),anyclient(also considering i have https and pop3-ssl,and ssl dosn't handle to be proxied,right?).For my trusted clients it should help for privacy(tor) and for caching.
It's complicated also for the iptables,for the trusted clients,because of tor, i don't know where to redirect what ???And for untrusted internet that port 80 when i have only https:443!Chaos!!!!!!!!!!!!!!!!!!
please tell me exactly what should make in squid.conf?and what should iptable return?i use squid 2.5 with ubuntu 6.06
i really need help!
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Squid Transparent win32sux Linux - Networking 2 08-05-2005 11:57 AM
Squid Transparent Proxy 1jamie Linux - Security 7 09-26-2003 06:09 AM
Squid with Transparent Proxy MarleyGPN Linux - Networking 1 08-28-2003 02:51 PM
squid transparent proxy...... hitesh_linux Linux - Networking 1 06-13-2003 03:24 AM
transparent squid problem Steave Linux - Networking 7 05-05-2003 12:51 AM


All times are GMT -5. The time now is 05:26 PM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration