LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 10-22-2005, 07:33 PM   #1
Jubalint
Member
 
Registered: Mar 2004
Distribution: Debian
Posts: 35

Rep: Reputation: 15
Squid Timeout


Running a CentOS 4.1 server. I've set squid on the server no problem. And I'm using SSH Tunneling To connect to it. I set squid's conf to accept only connections from localhost no problem. Then I go in firefox and connect, and it gives me the ACCESS DENIED Error from squid. So I know all the connection stuff is working. I go in and have the http_acces lines like this -

http_access allow localhost
http_access deny all

But now when I try to go to a page it just gets stuck on loading and doesn't load the page or timeout. I'm not getting the access denied message anymore though. So I'm wondering what configuration problem might I be having?

You can have a lookse at my configuration file here (http://pastebin.com/402486). Thanx for the help .
 
Old 10-24-2005, 06:40 AM   #2
cardy
Member
 
Registered: Jan 2005
Location: Shropshire, England, UK
Distribution: RedHat, Fedora, CentOS..........
Posts: 121

Rep: Reputation: 19
This will depend upon what you have localhost defined as in the acl for localhost

if your localhost acl is defined as
Code:
acl localhost src 127.0.0.1/255.255.255.255
which is is normally by default then it will ONLY allow connections from the loopback adapter and I would guess that squid is seeing the connection as coming from what ever IP address is assigned to the network card you are SSHing into.

Try adding the following acl and http_access entries you will have to use the ip address of your server in this example i have assumed your server is on the IP 10.0.0.1 but change it to the real address, I believe it should work.

This entry goes along with the other ACLs it does not matter what order they are in.
Code:
acl my_network_card src 10.0.0.1/255.255.255.255
Then add this line to the http_access lines, it must go before the deny line ! I have added the other lines for clarity here.
Code:
http_access allow localhost
http_access allow my_network_card
http_access deny all
This basically says allow connections from localhost. If that fails allow connections that Originate from my network card if that fails deny access.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
SQUID for blocking yahoo and msn [inc squid.conf] chrisfirestar Linux - Security 10 03-03-2008 08:33 AM
squid message customization, hiding squid versioin rajnishmishra Linux - Networking 0 11-27-2004 03:55 AM
squid conf: squid failed when I type insert redirect_program /usr/bin/squidguard Niceman2005 Linux - Software 1 11-24-2004 02:29 PM
I can't "service squid start" , and chkconfig squid on not working Niceman2005 Linux - Software 0 11-10-2004 08:18 PM
Squid load testing software / Squid optimisation? gundelgauk Linux - Networking 2 08-31-2004 07:36 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 05:19 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration