LinuxQuestions.org
Help answer threads with 0 replies.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Server
User Name
Password
Linux - Server This forum is for the discussion of Linux Software used in a server related context.

Notices


Reply
  Search this Thread
Old 04-05-2007, 10:18 AM   #1
sakthi.s
Member
 
Registered: Nov 2006
Posts: 42

Rep: Reputation: 15
Not able to browse one particular URL through squid


Dear All

I have squid proxy in my office and enabled ACl for two different groups. Group A doesn't have
any restriction to browse any URLS, but group B is allowed to browse only specified sites

my starnge problem i am not able to browse https://memadmin.mithi.com:8443/index.html site where
i am coming under group A, tried the same url in group b pc's also . I am getting following errors



ERROR
The requested URL could not be retrieved

--------------------------------------------------------------------------------
While trying to retrieve the URL: memadmin.mithi.com:8443

The following error was encountered:

Access Denied.
Access control configuration prevents your request from being allowed at this time. Please contact your service provider if you feel this is incorrect.

Your cache administrator is root.
--------------------------------------------------------------------------------
Generated Thu, 05 Apr 2007 14:01:06 GMT by ismartblr2 (squid/2.5.STABLE1)


* Should i enable 8443 port as SSL port in squid.conf?
* I am not getting any log details
* Enclosed my ACL

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 110 # POP3
acl Safe_ports port 25 # SMTP
acl Safe_ports port 8443 # https
acl CONNECT method CONNECT

http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports



acl lan1_blr src 192.168.1.0/255.255.255.0
acl lan2_blr src 192.168.100.0/255.255.255.0
acl msn_hosts src "/etc/squid/msn_hosts"
acl allowed_machines src "/etc/squid/allowed_machines"
acl support_staff src "/etc/squid/support_staff"
acl callcenter src "/etc/squid/callcenter"

acl rejected_urls url_regex "/etc/squid/rejected_urls"
acl allowed_urls dstdomain "/etc/squid/allowed_urls"
acl msn dstdomain "/etc/squid/msn"

http_access allow msn_hosts msn
http_access deny rejected_urls
http_access deny !allowed_machines
http_access deny !lan1_blr !lan2_blr
http_access allow callcenter allowed_urls allowed_machines
http_access allow support_staff !callcenter
http_access deny all


Don't know where i am making mistake, which one is preventing to browse that url.

Kindly help me....
 
Old 04-08-2007, 04:17 AM   #2
carl0ski
Member
 
Registered: Sep 2004
Location: Melbourne, Victoria Australia
Distribution: Support those that support you :)
Posts: 872
Blog Entries: 12

Rep: Reputation: 30
on the squid server look at the access.log to see what the real address that is being blocked.

at a command line run

tail -f /var/log/squid/access.log

and try msn from a permitted host.


and install webmin to make configuration of squid easier
 
Old 04-08-2007, 04:35 AM   #3
vidurmittal
LQ Newbie
 
Registered: Jun 2006
Posts: 13

Rep: Reputation: 0
Dear Sakthi S.



Cud u telll me that hve u described the proxy setting in ie if yes then it will now work .... if not then tell me i will tell u the solution the well it seems that u hve defined proxy directives in internet explorer/mozilla firefox disbale that and check the site...
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
i want to block a URL from squid Atifkhan Linux - Enterprise 3 02-23-2010 02:47 PM
Need help with Squid and capturing url traffic? atl02wrx Linux - Software 5 06-25-2005 06:36 PM
Squid URL list linuxeagle Linux - Networking 2 05-12-2004 03:25 PM
url filtering using Squid RajaRC Red Hat 1 11-07-2003 08:21 AM
Wildcard URL filters for Squid ? newbieA Linux - Security 1 09-28-2003 08:50 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Server

All times are GMT -5. The time now is 03:21 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration