LinuxQuestions.org
Register a domain and help support LQ
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-14-2008, 01:48 PM   #1
gilliatnet
LQ Newbie
 
Registered: Mar 2008
Posts: 3

Rep: Reputation: 0
Modifying Squid to provide unrestricted use for one IP in LAN


Hello,
My LAN server ip is 192.168.0.250:8080
My employees System ip is 192.168.0.101:8080
I want to provide "no restriction" to the above ip i.e; 192.168.0.101:8080
How to configure squid for the above purpose???
Operating system is Red Hat Linux.

Thanks in advance!!
 
Old 03-14-2008, 05:58 PM   #2
J_Szucs
Senior Member
 
Registered: Nov 2001
Location: Budapest, Hungary
Distribution: SuSE 6.4-11.3, Dsl linux, FreeBSD 4.3-6.2, Mandrake 8.2, Redhat, UHU, Debian Etch
Posts: 1,126

Rep: Reputation: 58
"I want to provide "no restriction" to the above ip i.e; 192.168.0.101:8080"

I am a bit confused here. Is that a source ip : port or a destination ip : port?

Last edited by J_Szucs; 03-14-2008 at 06:00 PM.
 
Old 03-16-2008, 11:25 AM   #3
gilliatnet
LQ Newbie
 
Registered: Mar 2008
Posts: 3

Original Poster
Rep: Reputation: 0
hello

The ip 192.168.0.101:8080 is one of the nodes in my LAN.
and 192.168.0.250 is the server.

I have squid firewall installed in 192.168.0.250 (server).

Squid is made to accept all the http requests from 8080 from all the nodes in the LAN and routed to 3128.

So, ultimately all the nodes in the LAN have firewall imposed by squid for browsing the internet.

I want to make the ip 192.168.0.101 (one of the nodes) to be free from all the firewall restrictions imposed by squid... can you get me sir???

Last edited by gilliatnet; 03-16-2008 at 11:30 AM.
 
Old 03-16-2008, 03:09 PM   #4
J_Szucs
Senior Member
 
Registered: Nov 2001
Location: Budapest, Hungary
Distribution: SuSE 6.4-11.3, Dsl linux, FreeBSD 4.3-6.2, Mandrake 8.2, Redhat, UHU, Debian Etch
Posts: 1,126

Rep: Reputation: 58
I think you should locate and edit this line in squid conf:
acl our_networks src ip1 ip2 ip3

But how do you make sure that the source of the requests can be 8080, only? What are on the nodes making connections?
A browser would use any port available. I suspect that even a proxy would use any port available when making requests, not only its dedidated proxy port.

So, unless you can really make sure that the requests can only come from port 8080, you should not specify any source port, just the source ips.
 
Old 03-23-2008, 02:17 AM   #5
gilliatnet
LQ Newbie
 
Registered: Mar 2008
Posts: 3

Original Poster
Rep: Reputation: 0
Sir,
The squid is made to listen http requests from 8080. So our browser is configured with 8080 port. The ultimate aim is i need a command to edit squid, for not imposing firewall restriction on 192.168.0.101
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
HTTPS Proxy to provide secure access to LAN pages? jantman Linux - Security 2 10-22-2007 10:21 PM
How do I make chown unrestricted? bondcaliwood Linux - Newbie 5 09-20-2006 07:26 AM
How do i add a second hard drive to use for unrestricted file sharing? gizmo911uk Linux - Networking 8 09-12-2005 04:13 AM
Modifying /etc/hosts globally (All LAN users) for loopbacking. How? ambayah Linux - General 4 08-28-2004 12:08 PM
Give local computer unrestricted access Boffy Linux - Security 2 08-15-2004 06:23 PM


All times are GMT -5. The time now is 06:02 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration