[squid-users] RV: squid

javier perez javier.perez at accelya.com
Thu Jun 15 10:52:44 UTC 2017 

Good morning squid users,

 

I'm facing a weird situation in my Company. let me explain:

 

I installed squid(3.5.20) on CentOS 7 minimal to perform as an ftp-proxy. 

My configuration file looks like this:

 

/etc/squid/squid.conf

##########################################################################
####

 

acl SSL_ports port 443 21

ftp_port 21

ftp_passive off

 

##########################################################################
####

 

acl Safe_ports port 80          # http

acl Safe_ports port 443         # https

acl Safe_ports port 70          # gopher

acl Safe_ports port 21

acl Safe_ports port 210         # wais

acl Safe_ports port 1025-65535  # unregistered ports

acl Safe_ports port 280         # http-mgmt

acl Safe_ports port 488         # gss-http

acl Safe_ports port 591         # filemaker

acl Safe_ports port 777         # multiling http

acl CONNECT method CONNECT

 

##########################################################################
####

 

acl FTP proto FTP

always_direct allow FTP

 

##########################################################################
####

 

http_access allow CONNECT SSL_ports

http_access allow CONNECT Safe_ports

http_access allow SSL_ports

http_access allow Safe_ports

http_access allow all

http_access allow FTP

 

##########################################################################
####

 

http_port 3128

 

refresh_pattern ^ftp:           1440    20%     10080

refresh_pattern ^gopher:        1440    0%      1440

refresh_pattern -i (/cgi-bin/|\?) 0     0%      0

refresh_pattern .               0       20%     4320

 

##########################################################################
####

 

The thing is that the parameter "ftp_passive off" seems not to be working.


Due to security measures we have to use non-passive mode to be able to
transfer anything.

 

The connection works fine with the remote hosts, the login works, but I
have to enter "passive" every single time to swap the mode to non-passive.


I don't know whether the "ftp_passive" is not working or I need to do
something else.

 

After doing a deep research I cannot find much information related with
this kind of problems, so I decided to get in touch with you. Please
help!!

 

Thanks in advance.

Regards

 

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20170615/3037cd98/attachment-0001.html>

More information about the squid-users mailing list