nixCraft
Linux / UNIX Tech Support Forum
Problems With SQUID Proxy
This is a discussion on Problems With SQUID Proxy within the Linux software forums, part of the Linux Getting Started category; whoops sorry left that out. my iptables rules are as follows. Chain PREROUTING (policy ACCEPT) target prot opt source destination ...
|
|||||||
| Linux software General questions and discussion about Redhat/Fedora Core/Cent OS, Debian and Ubuntu Linux related to softwares should go here. |
 |
|
|
LinkBack | Thread Tools | Display Modes |
21-06-2006, 12:03 AM
|
|||
|
|||
whoops sorry left that out.
my iptables rules are as follows. Chain PREROUTING (policy ACCEPT) target prot opt source destination DNAT tcp -- anywhere anywhere tcp dpt:www to:10.10.1.123:3128 REDIRECT tcp -- anywhere anywhere tcp dpt:www redir ports 3128 Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE all -- 10.0.0.0/8 anywhere Chain OUTPUT (policy ACCEPT) target prot opt source destination and i created a little script "in-case-shit-happens" for all the ports i need it to work on iptables -t nat --flush PROXY_PORTS="80 443 3128 8080" INDEV="eth1" PROXY="10.10.1.123:3128" for port in $PROXY_PORTS; do iptables -t nat -A PREROUTING -i $INDEV -p tcp --dport $port -j DNAT --to $PROXY done iptables -t nat -A POSTROUTING -s 10.0.0.0/8 -j MASQUERADE 
|
| Sponsored Links | ||
|
|
|
03-01-2007, 03:12 PM
|
|||
|
|||
|
Please help me, I use FC 6 and default squid installed is version 2.6 stable4, and on that version they doesn't support this config
httpd_accel_host virtual httpd_accel_port 80 httpd_accel_with_proxy on httpd_accel_uses_host_header on They use new method like this http_port 3128 transparent and I was set that value on my server, after that I run with #squid -z and the system create swap etc etc after that I run #/etc/init.d/squid start Starting squid: [FAILED] and got this error message and when I look up on /var/log/messages get this Jan 3 17:48:21 server kernel: audit(1167821301.375:9): avc: denied { read } for pid=2292 comm="squid" name="squid.pid" dev=dm-0 ino=4424371 scontext=root:system_r:squid_t:s0 tcontext=root  bject_r:var_run_t:s0 tclass=fileWhat wrong? what should I do? Please help me, thanks Jauhari
|
|
03-01-2007, 04:59 PM
|
||||
|
||||
|
Disable squid SELinux protection for squid daemon under the SELinux Service Protection list. Use command:
Code:
system-config-securitylevel http://nixcraft.com/problem-with-squid-vt441.html
__________________
Vivek Gite Linux Evangelist  Be proud RHEL user, and let the world know about your enterprise choices! Join RedHat user group. Always use CODE tags for posting system output and commands! Do you run a Linux? Let's face it, you need help
|
|
04-01-2007, 01:39 PM
|
|||
|
|||
|
there no system-config-securitylevel command on FC6 but there are system-config-securitylevel-tui command
If I disable Firewall my Transparent proxy doesn't work  What should I do? please help, and my original squid from FC6 still doesn't work stil get this problemQuote:
|
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) |
|
| Thread Tools | |
| Display Modes | |
Linear Mode
|
|
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| How to Squid 2.6 transparent proxy? | alex.inoa | Networking, Firewalls and Security | 5 | 30-10-2007 03:41 AM |
| Restrict number of simultaneous proxy connections in SQUID proxy | pkvmreddy | Getting started tutorials | 1 | 15-06-2007 03:52 PM |
| How to allow MSN messenger through squid proxy | bubloob_13 | Linux software | 4 | 08-04-2007 09:37 AM |
| Squid Proxy | bubloob_13 | Linux software | 4 | 03-12-2006 11:26 PM |
| problems starting squid for a rank newbie | scarletlancer | Linux software | 1 | 02-11-2006 04:20 PM |
All times are GMT +5.5. The time now is 07:55 AM.
