LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   Squid as Reverse Proxy and LAN proxy? (http://www.linuxquestions.org/questions/linux-security-4/squid-as-reverse-proxy-and-lan-proxy-532674/)

zivota 02-26-2007 04:08 PM

Squid as Reverse Proxy and LAN proxy?
 
Hi,

I have squid-2.5.STABLE6-3.4E.12 on centos4.4 and want to use it as my LAN proxy and Reverse Proxy as well.

What I want to achive is to allow unrestricted trafic from my LAN outside, and in the same time allow traffic from OUTSIDE to http://mywebsite.com which runs on dmz server.

If i use "acl dstdomain" to allow trafic from out to my webserver, will that restrict access from LAN outside?

I am not sure how inbound-outbound restrictions works. I cannot find anything in squid.conf that explains in-out relations.

Thanks!

acid_kewpie 02-26-2007 04:24 PM

well as far as squdi is concerned there is no difference between the two types of access... a client wants to go to a server... fair enough. if your worried about one affecting the other, then remember that it's all done to the top down list of acl's defined by squid. There's no reason to think any of it should cause a problem here.

zivota 02-26-2007 05:00 PM

Is this simplified exaple what I am looking for?

---
acl our_networks src 192.168.1.0/24 192.168.2.0/24
acl myweb dstdomain www.myweb.com
http_access allow our_networks
http_access allow myweb
http_access deny all


All times are GMT -5. The time now is 05:18 AM.