LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 05-15-2007, 12:48 AM   #1
sunethj
Member
 
Registered: Nov 2006
Posts: 97

Rep: Reputation: 16
access 8080 web server port through squid running on 8080


We have a squid proxy running on port 8080 and we want to allow access to a web server running on port 8080 through the squid box.

Adding port 8080 to the Safe_ports list does not resolve the problem.

Please help. Thanks in advance.
 
Old 05-16-2007, 03:21 PM   #2
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
safe_ports is the right way to do it (among others of course..) what does your config actually look like now?
 
Old 05-16-2007, 08:28 PM   #3
sunethj
Member
 
Registered: Nov 2006
Posts: 97

Original Poster
Rep: Reputation: 16
now the configuration options are (only posting relevant stuff);

http_port 8080

acl all src 0.0.0.0/0.0.0.0
acl test src 192.168.27.115-192.168.27.120/255.255.255.255
acl DBN src 192.168.0.0/255.255.224.0
acl DBN src 172.23.0.0/255.255.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl SSL_ports port 8443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 8080 # misc
acl CONNECT method CONNECT
 
Old 05-17-2007, 01:46 AM   #4
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
hmm, ok looks fine. what's the corresponding access.log entries look like?
 
Old 05-17-2007, 01:56 AM   #5
sunethj
Member
 
Registered: Nov 2006
Posts: 97

Original Poster
Rep: Reputation: 16
this is the access.log entry;

Quote:
1179404674.102 8502 172.23.129.119 TCP_MISS/000 0 GET http://192.168.71.61:8080/ - DIRECT/192.168.71.61 -
 
Old 05-17-2007, 03:18 AM   #6
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
well that's a valid cache miss... looks fine to me.
 
Old 05-17-2007, 04:21 AM   #7
sunethj
Member
 
Registered: Nov 2006
Posts: 97

Original Poster
Rep: Reputation: 16
yes. but the problem is this is the only log entry i see whenever a user try to access that site. However when we access the site bypassing proxy we can see the contents of that site.

Quote:
DIRECT/192.168.71.61 -
does this mean that the proxy dops 8080 from the outgoing request?

Last edited by sunethj; 05-17-2007 at 04:23 AM.
 
Old 05-17-2007, 04:43 AM   #8
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
no, it's says that the proxy server is going direct to that machine to fulfil the requst.
 
Old 05-17-2007, 08:27 PM   #9
sunethj
Member
 
Registered: Nov 2006
Posts: 97

Original Poster
Rep: Reputation: 16
thanks for your reply. However since that method does not work can you please tell me an alternative way.
 
Old 05-18-2007, 12:51 AM   #10
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
sorry? i guess you really don't understand what your own question actually is? squid is working correctly. totally fine...
 
Old 05-18-2007, 02:18 AM   #11
sunethj
Member
 
Registered: Nov 2006
Posts: 97

Original Poster
Rep: Reputation: 16
well the thing is if squid works well (regarding port 8080) why can't i see the web page when using squid and why can i see when i bypass proxy. in both case i only type http://192.168.71.61:8080/ in the browser. I tried with IE and Firefox as well.

Thanks.
 
Old 05-18-2007, 02:38 AM   #12
acid_kewpie
Moderator
 
Registered: Jun 2001
Location: UK
Distribution: Gentoo, RHEL, Fedora, Centos
Posts: 43,417

Rep: Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981Reputation: 1981
well try viewing that page from the server machine itself, that's effectively what squid appears to be doing already...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
debian iptables squid - redirect port 80 to port 8080 on another machine nickleus Linux - Networking 1 08-17-2006 12:59 AM
Port 80-->8080?? flamesrock Linux - Software 4 08-01-2004 01:40 AM
problem in IM with the 8080 port dred Linux - Networking 0 06-06-2004 03:21 AM
Port 8080 access kinchj Linux - Security 6 01-06-2004 10:38 AM
Squid cascaded from wingate on port 8080 80s Linux - Newbie 6 12-30-2002 06:57 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 11:14 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration