How to enable squid proxy to accept webtraffic from two networks
Linux - ServerThis forum is for the discussion of Linux Software used in a server related context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
How to enable squid proxy to accept webtraffic from two networks
Dear All
I have two segment of network, one is 192.168.1.0 and other one is 192.168.100.0
My Airtel broadband connection is comes under 192.168.1.0 network and net connection is
shared to users by squid proxy. I have redhat 9, where i have configured transparent squid proxy
my proxy server ip is 192.168.1.6, both the network is connected to my cisco firewall.
Enabled the access list to ping my proxy server from 192.168.100.0 network. But my clients
PC's are not able to access internet from 192.168.100.0 network.
Web traffic also enabled in firewall to pass through from 192.168.100.0 , but still i am not able to
browse.
Is't required my proxy server should be connected 192.168.100.0 to receive web traffic??
Herewith enclosed my squid.conf for your reference.
I have two segment of network, one is 192.168.1.0 and other one is 192.168.100.0
My Airtel broadband connection is comes under 192.168.1.0 network and net connection is
shared to users by squid proxy. I have redhat 9, where i have configured transparent squid proxy
my proxy server ip is 192.168.1.6, both the network is connected to my cisco firewall.
Enabled the access list to ping my proxy server from 192.168.100.0 network. But my clients
PC's are not able to access internet from 192.168.100.0 network.
Web traffic also enabled in firewall to pass through from 192.168.100.0 , but still i am not able to
browse.
Is't required my proxy server should be connected 192.168.100.0 to receive web traffic??
Herewith enclosed my squid.conf for your reference.
Can you provide us with a topology of your network?
I can recomend you only one solution, having so little and uneffective information from you, is add additional network card to your proxy server(connect this interface to network 192.168.100.0) for example you will give your proxy server the following ip: 192.168.100.6. And after that you should add the following lines to your squid.conf file:
if you have one network card in your server on address 192.168.1.6 the address range 192.168.100.0 will not be able to communicate with it. unless you bridge the two networks with your cisco firewall but you will need to know Cisco IOS Commands.
What is your network infrastructure in general? and how is your server connected to the infrastructure? i might be able to be more helpful if you need it.
* I have only one network card in my proxy server
* We have bridged both the network through cisco firewall, i mean 192.168.100.0 network can ping 192.168.1.0 network. In specific from 192.168.100.0 network i can ping my proxy server 192.168.1.6.
* Adding another interface to proxy server will be right solution at this moment, but once my network grow i can't keep adding NIC cards to connect various network.
I need some alternative solution like virtual interface, ip forwarding etc.
Then use the below config to test it out (ignore the dashes, these are to show the start and finish of the file!)
--------------------------------------------------------------
http_port 3128
visible_hostname server
acl all src 0.0.0.0/0.0.0.0
http_access allow all
-------------------------------------------------------------
then from command line run squid -z
then restart squid,
this will help establish if this is an IP communication related error or if it was a squid configuration error.
then on a machine in each different subnet put the ip address and port number into your web browser, then restart the browser and see if it works
please tell us the results and any error messages so that we can help you
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.