LinuxQuestions.org
View the Most Wanted LQ Wiki articles.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 02-26-2007, 04:08 PM   #1
zivota
Member
 
Registered: May 2005
Distribution: CENTOS
Posts: 91

Rep: Reputation: 15
Squid as Reverse Proxy and LAN proxy?


Hi,

I have squid-2.5.STABLE6-3.4E.12 on centos4.4 and want to use it as my LAN proxy and Reverse Proxy as well.

What I want to achive is to allow unrestricted trafic from my LAN outside, and in the same time allow traffic from OUTSIDE to http://mywebsite.com which runs on dmz server.

If i use "acl dstdomain" to allow trafic from out to my webserver, will that restrict access from LAN outside?

I am not sure how inbound-outbound restrictions works. I cannot find anything in squid.conf that explains in-out relations.

Thanks!
 
Old 02-26-2007, 04:24 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,406

Rep: Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965Reputation: 1965
well as far as squdi is concerned there is no difference between the two types of access... a client wants to go to a server... fair enough. if your worried about one affecting the other, then remember that it's all done to the top down list of acl's defined by squid. There's no reason to think any of it should cause a problem here.
 
Old 02-26-2007, 05:00 PM   #3
zivota
Member
 
Registered: May 2005
Distribution: CENTOS
Posts: 91

Original Poster
Rep: Reputation: 15
Is this simplified exaple what I am looking for?

---
acl our_networks src 192.168.1.0/24 192.168.2.0/24
acl myweb dstdomain www.myweb.com
http_access allow our_networks
http_access allow myweb
http_access deny all

Last edited by zivota; 02-26-2007 at 05:57 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
squid reverse-proxy dual port combination glenne Linux - Networking 1 02-04-2008 08:23 AM
Squid reverse proxy with SSL jonfa Linux - Networking 1 02-05-2007 07:07 PM
Reverse Proxy in squid winxandlinx Linux - Networking 3 12-04-2006 05:30 AM
Squid Reverse Proxy Cache Question Gentoo20 Linux - Networking 0 02-04-2005 01:19 PM


All times are GMT -5. The time now is 11:40 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration