LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 01-03-2009, 02:07 AM   #1
jpmaxyusuf
Member
 
Registered: Jul 2008
Posts: 47

Rep: Reputation: 15
proxy server not working when firewall running


Respected Sir,

Sir, i configured suid 2.6 proxy server(RHEL 5.0) in our concern its working properly, but past week i configured iptables(Firewall) in RHEL 5.0 iptables working but proxy internet restriction not working squid allows all websites to access which we deny the access in squid.

I need the full step by step configuration for iptables to work both squid and iptables.

Thanks and Regards

S. A. Yusuf Sithik.
 
Old 01-03-2009, 02:42 AM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,414

Rep: Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966Reputation: 1966
well what have you implemented? we aren't psychic. you should just need to allow port 80 and 443 outbound from the proxy server and nowhere else.
 
Old 01-09-2009, 04:03 PM   #3
win32sux
Guru
 
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 371Reputation: 371Reputation: 371Reputation: 371
Yeah, if you've got access logging enabled in Squid and you aren't seeing anything in the log when this happens then chances are that your clients are simply getting SNATed (instead of proxied) out to the Internet. But as pointed out by acid_kewpie, you've given us nothing to work with here. What do the logs look like? Is Squid in transparent mode? What do the firewall rules look like? Posting the output of these commands would help a lot:
Code:
cat /etc/squid/squid.conf | grep -v ^# | grep -v ^$
Code:
iptables -nvL
Code:
iptables -nvL -t nat
Code:
netstat -an --inet | grep LISTEN
Plus the relevant access log snippets (if there are any).

Last edited by win32sux; 01-09-2009 at 04:33 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Linux Firewall Server (Proxy) - DNS issue ddzc Linux - Networking 4 05-14-2007 03:54 PM
Server as firewall and proxy. fiomba Linux - Security 2 11-16-2005 06:24 AM
Iptables Firewall & Proxy Server chrisfirestar Linux - Security 22 12-22-2003 09:30 AM
Simple proxy/firewall server scammeh^ Linux - Networking 3 10-15-2003 01:11 PM
Setup firewall proxy server on RH7.1 Tannv Linux - Networking 2 02-22-2002 04:19 AM


All times are GMT -5. The time now is 11:59 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration