Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
I am new to linux, Yestaday Installed Mandriva 2007 Spring
on Office Backup proxy Sever. I want to move from ISA to Linux Based Solutions. before setting up linux at office I thought why not find do it at home.
So Far for last 36 Hours I am unable to do so.
Here is my Senario.
Mandriva Firewall is down meaning ping or any network based request approches Mandiva server easily.
My Madriva Server has 2 Lan Cards. One connected to Internet via Cablenet having ip address 10.10.10.97/24 and DG: 10.10.10.10
My secound lan card has ip 192.168.0.1/24 Directly connected to My Laptop having ip 192.168.0.2/24
Issue is I cant make Squid run. I tried copying several sample squid.conf lines from other conf files but it didnt work.
Even Mandriva GUI based Internet Sharing toll dont let me share the internet.
can you please make a sample squid.conf sample for me so i can read it and learn to implement at my office.
one more thing Squid was preinstalled in mandriva but i again downloded the new version and typed tar zxvf squid....gz then ./configure then make then make install. and tried squid -z but that too gave errors.
well the default squid configuration file will work out of the box. we can't tell you what you want in it, unless you can provide us more information about what is not currently working. do you have any errors? check your squid log files...
I tried a lot like service network restart after changing ips of lan card and service squid restart then using mandriva gui for net sharing. at the end i got fustrated and shutdown the pc. now after 1 hour i came back restarted the pc and guess what squid works my laptop can access the web.
I dont have a clue how.
here is my total squid.conf file please tell me where it is stated the direct net interface is 10.10.10.97/24 with GW:10.10.10.10 and client pc is 192.168.0.1. I know i changed first 2 lines.
h_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl Mandriva src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow manager Mandriva
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny to_localhost
acl workgroup src 192.168.0.0/255.255.255.0
http_access allow workgroup
http_access allow Mandriva
http_reply_access allow all
icp_access allow all
deny_info ERR_CUSTOM_ACCESS_DENIED all
Now thats my total squid file. can you tell me what this manager is ? and how to make this squid transparent?
In your firewall box's iptables' rules, all you have to do is do a port forwarding or redirection of all outgoing http or www traffic to 127.0.0.1 at port 3128 then as well open outgoing http traffic through your external/public interface.
This guarantees that your clients would not be able to bypass your squid proxy server.
I'm sorry, I don't have sound experience writing iptables since I'm an OpenBSD/PF user when it comes to firewall and proxy.
Hope that someone reading this would lend you a hand.
Sure! Though I'm recommending OpenBSD when it comes to firewall than FreeBSD and this is the one that I'm always using.
I like OBSD's PF (Packet Filter) ease of use and syntax and most of all, today's PF (the one with ver. 4.1) has been greatly improved and added with great speed. FreeBSD's port of PF was I thought taken from OBSD ver 3.7.
Besides OBSD security track record is undoubted and this OS is the right one for firewall, ultra secure BIND DNS and other security-sensitive applications. In fact, undeadly.org has announced with great joy that the BIND server shipped with OBSD has not been affected with the latest BIND cache poisoning issue.
This is really a confession, last year I used TSL 2.2 (Trustix Secure Linux). I know its lite and secure also, but really gave me headache about the rpm itself. So I was searching for the best OS. I kept download ISO files, and burnt 'em to CD and tried it for couple weeks. But, none of them pleased me. One day, I asked in this forum about DG (dansguardian). And this person answered my doubts about BSD, he is Mr. Gani. He thought me everything about OpenBSD. And until now I neva search another OS around. And all my servers I change it one by one, now I'm using OpenBSD 4.1 for all servers. And here is my website powered by OpenBSD. http://www.melwin.web.id