Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place! |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
|
12-02-2009, 11:15 PM
|
#1
|
LQ Newbie
Registered: May 2009
Posts: 13
Rep:
|
Problem with SQUID configuration
Hi,
i am new to Linux and i am trying to configure SQUID proxy on Fedora10
but i am not able to browse internet from client, though i checked through wget its working on Fedora10 machine. Below is the squid.conf file contents, please suggest where i am wrong...
#acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
#acl to_localhost src 127.0.0.0/8
acl dcsnet src 192.168.2.0/255.255.255.0
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 70 210 1025-65535 280 488 591 777
acl CONNECT method CONNECT
http_access allow SSL_ports
http_access allow Safe_ports
http_access allow dcsnet
#http_access allow manager localhost
http_access allow localhost
#http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access deny CONNECT
Regards,
Pankaj
|
|
|
12-03-2009, 09:49 AM
|
#2
|
LQ Guru
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 27,145
|
Quote:
Originally Posted by lovingaditya28
Hi,
i am new to Linux and i am trying to configure SQUID proxy on Fedora10
but i am not able to browse internet from client, though i checked through wget its working on Fedora10 machine. Below is the squid.conf file contents, please suggest where i am wrong...
Regards,
Pankaj
|
Based on what you posted, there's no way to tell. You say first "I am not able to browse internet", then say "through wget its working"...????
You don't say what error(s) you're getting, or what client(s) you're trying from, to what sites. You say your proxy is on FC10...what about your clients? What kind of network setup do you have? Are the clients set up correctly?
Also, in your other thread on here, there are some good posts about how to set up and test Squid...have you gone through and checked them?
|
|
|
12-04-2009, 03:27 AM
|
#3
|
LQ Newbie
Registered: May 2009
Posts: 13
Original Poster
Rep:
|
Thanks for reply. Client machines in my network are with Windows XP and Windows 7.
Now i am able to access internet from client machines. i disabled iptables on SQUID proxy server. please guide me how to allow squid in iptables. Also guide me how to restrict users to open messangers and porn sites. I wants following through SQUID proxy...
1.....users with full internet access
2.....users with restricted internet access (Gmail, yahoo, messangers, porn sites etc blocked)
3.....users with restricted access but messengers allowed
3.....users with no internet access
Please guide me.
thanks,
Pankaj
|
|
|
12-04-2009, 11:02 AM
|
#4
|
LQ Guru
Registered: Jul 2003
Location: Birmingham, Alabama
Distribution: SuSE, RedHat, Slack,CentOS
Posts: 27,145
|
Quote:
Originally Posted by lovingaditya28
Thanks for reply. Client machines in my network are with Windows XP and Windows 7.
Now i am able to access internet from client machines. i disabled iptables on SQUID proxy server. please guide me how to allow squid in iptables. Also guide me how to restrict users to open messangers and porn sites. I wants following through SQUID proxy...
1.....users with full internet access
2.....users with restricted internet access (Gmail, yahoo, messangers, porn sites etc blocked)
3.....users with restricted access but messengers allowed
3.....users with no internet access
Please guide me.
thanks,
Pankaj
|
Still haven't answered whether or not you followed the links in your other thread here. So I will "guide you" to Google. If you key in "linux squid iptables", you get things like this:
http://www.cyberciti.biz/tips/linux-...uid-howto.html
http://www.cyberciti.biz/tips/linux-...t-request.html
And what you want to do with the users, counteracts a 'transparent' proxy. Squid is going to have to know WHO the user is, so it can grant them certain rights. So either they have to log in to Squid, or need to have their authentication passed to Squid some other way...but you don't touch on that. Again, I will "guide you" to Google:
http://www.brennan.id.au/11-Squid_Web_Proxy.html
|
|
|
All times are GMT -5. The time now is 04:21 PM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|