Latest LQ Deal: Linux Power User Bundle
Go Back > Forums > Linux Forums > Linux - Networking
User Name
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.


  Search this Thread
Old 08-28-2006, 06:41 AM   #1
LQ Newbie
Registered: Mar 2006
Posts: 2

Rep: Reputation: 0
controlling ports other than 80 with squid

i am a newbee and i am having trouble with squid.
Can i control ports other then 80 via squid. What i mean is: can i describe in squid.conf file which user can use which ports? My configuration is below:

I have configured iptables and squid using this howto document: (... there was an url but the system did not let me send a url as i am new here )

I modified the lines in squid.conf as it said in the howto document as following .
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
i have described an acl list as fallows
acl diger src "/etc/hdayi/diger"
and let them access:
http_access allow diger
and in iptables:
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
With this configuration only http port (80) works(no other ports works 21, 443 etc.). But i want to control other ports too.

I believe that i can make o port description like:
acl my_ports port 80 1863 ...
and doing this:
http_access allow diger my_ports
and in iptables i must redirect the necessary ports to 3128 (to squid).
I am doing this but i

Old 09-08-2006, 01:37 PM   #2
LQ Guru
Registered: Jul 2003
Location: Los Angeles
Distribution: Ubuntu
Posts: 9,870

Rep: Reputation: 377Reputation: 377Reputation: 377Reputation: 377
hi there... i see it's been over a week and you haven't gotten a reply yet, so this is more of a friendly bump than anything else... i just wanted to remind you that not all types of connections can be transparently proxied... some things you will HAVE to do in a normal non-transparent manner...

but yeah, you should in fact have an ACL for port numbers...

for example, the one on my parent's PC (accessed via localhost) looks like:
acl Safe_ports port 80 8080 21
http_access deny !Safe_ports
firefox has been told not to proxy port 443 on their box, and port 8080 is there just because several of the websites they use are listening on that port for whatever reason...

Last edited by win32sux; 09-08-2006 at 01:40 PM.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Open some specific ports in SQUID ihtus Linux - Networking 1 07-17-2006 09:18 PM
pop3 and smtp ports on squid smoky_flame Linux - Networking 1 03-03-2006 08:18 AM
how to open and block the ports in squid.... shahg_shahg Linux - Security 1 04-28-2005 07:01 PM
controlling access through squid( blocking all sites except for one) jomy Linux - Networking 1 12-15-2004 07:27 AM
ports for MNF Squid scammeh^ Linux - Networking 1 12-08-2003 11:51 AM > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 06:22 PM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration