LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 04-25-2003, 06:29 AM   #1
neerajmalve
LQ Newbie
 
Registered: Apr 2003
Location: India
Posts: 4

Rep: Reputation: 0
Unhappy Ping website from proxy client


Hello There,
I have installed Proxy server behind gateway/firewall, Proxy server is able to ing websites/ips. But proxy clients are not able to ping any website behind the proxy server, How do I unable pining Internet websites...

Currently all PC are able to access Internet thru Linux SQUID Proxy, but can not received external emails because the POP and SMTP is blocked, how to allow users to use POP and SMTP address with their Email client software?


Please reply

regards
neeraj malve
nasik.
 
Old 04-25-2003, 07:03 AM   #2
jharris
Senior Member
 
Registered: May 2001
Location: Bristol, UK
Distribution: Slackware, Fedora, RHES
Posts: 2,243

Rep: Reputation: 47
You will need to have a router to forward the packets out onto the web and receive the responses. If you only have a single public IP address which is currently being used by your proxy thenn you'll need to make your proxy into the IP Masquerading/NAT'ing router. Have a look at http://www.tldp.org/HOWTO/IP-Masquer...WTO/index.html you'll probably want to combine this with some restrictions on out going connections too, if only to stop people from bypassing the proxy and going directly to the website. http://www.tldp.org/HOWTO/Firewall-HOWTO.html might be useful for this, have a general read of http://www.tldp.org

HTH

Jamie...
 
Old 04-25-2003, 11:57 PM   #3
neerajmalve
LQ Newbie
 
Registered: Apr 2003
Location: India
Posts: 4

Original Poster
Rep: Reputation: 0
Post Ping website from proxy client

My setup is as follows:

I have One GATEWAY Server (RHL7.3) with 1 Globle IP (eth0-61.1.65.xx) and 1 Local IP (eth1-192.168.0.1), eth1 is connected to my PROXY server (RHL7.3) (eth0-192.168.0.2) and eth0 of PROXY server (192.168.1.1) is serving the Internet for client PCs(more than 100PCs) from various networks (192.168.0-20.x).
The client PCs want to access their emails from Email Client Software (Outlook express etc) for this they should get access of pop.isp.net/smtp.isp.net. I assume if the client PCs able to ping IPs of those pop/smtp they will get access to it.
GATEWAY server has firewall rules to deny access from Internet. my PROXY server is able to ping all websites/ips of internet.

Above information is to brief the configuration of Installation, Please guide me.

waiting for reply.

Thanks!
Neeraj Malve

Last edited by neerajmalve; 04-25-2003 at 11:59 PM.
 
Old 04-27-2003, 04:33 AM   #4
born4linux
Senior Member
 
Registered: Sep 2002
Location: Philippines
Distribution: Slackware, RHEL&variants, AIX, SuSE
Posts: 1,127

Rep: Reputation: 49
as stated above, u can setup IP masquerading and then allow forwarding of packets and pop/smtp access.

if u are using squid, well it doesn't know pop or smtp (though it can hndle http, ftp and telnet).

why not implement a fetchmail setup in ur proxy server for ur network clients?
 
Old 04-28-2003, 06:02 AM   #5
neerajmalve
LQ Newbie
 
Registered: Apr 2003
Location: India
Posts: 4

Original Poster
Rep: Reputation: 0
masq/fetchmail

Hello there,
What kind of IP masq. I will need to do? from which IP 2 which IP?

Using Fetchmail is also a good idea, currently i am serving email with that only... but the problem is I have to write plain text password in .fetchmailrc and user can not change their password without informing me the new password? is there any way to update the password of email account in fetchmail configuration? or using a encrypted pass in fetchmail?

Thanks a lot

neeraj.
 
Old 04-28-2003, 06:22 AM   #6
jharris
Senior Member
 
Registered: May 2001
Location: Bristol, UK
Distribution: Slackware, Fedora, RHES
Posts: 2,243

Rep: Reputation: 47
It looks to me like your gateway must already be peforming IP Masq as otherwise your proxy server wouldn't be able to ping any IPs. It looks to be like your have internet <-> gateway <-> proxy <-> LANs. If this is the case then you either need to make your proxy server the default gateway for the LAN (remember not to forward port 80 requests!), or your need to move reconfigure your network so you have a direct route to the gateway from all your PCs.

cheers

Jamie...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
dhcp client can't ping gateway but can ping other local hosts dirty_forks Linux - Networking 7 10-08-2004 10:54 AM
Ping website to get on it? warnesey333 Linux - Networking 4 10-02-2004 05:59 PM
Red Hat - Browser does not fetch website but ping works learningkid Red Hat 3 09-12-2004 11:34 PM
squid proxy problem - website uploading? maggoty Linux - Software 0 03-14-2004 06:35 PM
I can ping google.com successfully,but ping client(in my intranet) failed.Why? whepin Linux - Newbie 4 12-30-2001 04:54 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 03:43 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration