Im currently running cent0S 5. I recently just installed Squid Version 2.6.STABLE6 for a client to enable him to use as proxy. However it seems that sites like whatismyip.com and ipchicken.com are resolving back to my clients IP address and not the servers.
There is only one IP on my server and I think the problem may deal with X-Headers? (correct me if I am wrong)
Is there any way to use the server IP address for when my customer is using the proxy server.
My squid.conf looks like the following:
Code:
http_port 8080
forwarded_for off
icp_port 0
cache_mem 64 MB
cache_dir ufs /var/spool/squid 100 16 128
maximum_object_size 4096 KB
cache_store_log none
cache_access_log /var/log/squid/access.log
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
visible_hostname proxyserver
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src xxx.xx.xxx.xxx
acl SSL_ports port 443 563 10000
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl Safe_ports port 901
acl purge method PURGE
acl CONNECT method CONNECT
acl LocalNet src xxx.xx.xxx.xx
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow LocalNet
http_access deny all
icp_access allow all
log_fqdn on
##### This side is to make the proxy tranparency
#httpd_accel_with_proxy on
#httpd_accel_uses_host_header on
#httpd_accel_host virtual
#httpd_accel_port 80
######------------------------------
error_directory /usr/share/squid/errors/English
#httpd_accel_uses_host_header off
#anonymize_headers deny From Referer Server
forwarded_for on
http_port ServerIP:8080 transparent
# no forwarded quite useless for an anonymizer
forwarded_for off
# no client stat
client_db off
# Paranoid anonymize
header_access Allow allow all
header_access Authorization allow all
header_access Cache-Control allow all
header_access Content-Encoding allow all
header_access Content-Length allow all
header_access Content-Type allow all
header_access Date allow all
header_access Expires allow all
header_access Host allow all
header_access If-Modified-Since allow all
header_access Last-Modified allow all
header_access Location allow all
header_access Pragma allow all
header_access Accept allow all
header_access Charset allow all
header_access Accept-Encoding allow all
header_access Accept-Language allow all
header_access Content-Language allow all
header_access Mime-Version allow all
header_access Retry-After allow all
header_access Title allow all
header_access Connection allow all
header_access Proxy-Connection allow all
header_access All deny all
header_access Cookie allow all
header_access Set-Cookie allow all
header_replace User-Agent Anonymous Proxy at example.com
[/CODE]