[squid-users] HTTPS time out
Amos Jeffries
squid3 at treenet.co.nz
Tue Mar 1 01:29:40 UTC 2016
On 1/03/2016 1:02 a.m., legacybear wrote:
> Hello
>
> I'm trying to set up a caching proxy server which can be used to cache rpms
> and python packages using pip.
> I have been able to cache rpms from the fedora repository using HTTP however
> I have not been able download from other repos which use HTTPS or pip.
>
> I also got this error however I am not sure how to fix it.
>
> 2016/02/26 13:49:04 kid1| ERROR: NF getsockopt(ORIGINAL_DST) failed on
> local=192.168.122.222:8081 remote=192.168.122.222:42626 FD 12 flags=33: (92)
> Protocol not available
> 2016/02/26 13:49:04 kid1| ERROR: NAT/TPROXY lookup failed to locate original
> IPs on local=192.168.122.222:8081 remote=192.168.122.222:42626 FD 12
> flags=33
>
> Is there anything I have missed?
>
Like it says the NAT table in your local machine kernel contains no
details about the connection which you have apparently intercepted with
that machines NAT system.
The NAT rules must be done on the same machine as Squid. External
machines must *route* the traffic to the Squid machine. No "port
forwarding" or NAT on packets prior to the Squid machine.
Amos
More information about the squid-users
mailing list