[squid-users] Setting up proxy with private to public

Antony Stone Antony.Stone at squid.open.source.it
Mon Apr 13 21:37:05 UTC 2020 

On Monday 13 April 2020 at 21:19:04, Chris Bidwell - NOAA Federal wrote:

> Hi all,
> 
> Very new to squid and am looking to setup several internal subnets to
> access external network (internet) through squid on a separate interface.

What are you trying to achieve by using Squid?  What is your objective, 
compared to giving clients direct access to the Internet?

> Server has two IP's.  One private internal and one public.  Can someone
> point me in the right direction to get this setup?  Running RHEL7.

Firstly, install Squid and look at its configuration file.  It is *very* well 
commented / documented, and there is *very* little you need to change in order 
to get it working on your network.

For more details, see:

https://wiki.squid-cache.org/SquidFaq/BinaryPackages

https://wiki.squid-cache.org/SquidFaq/ConfiguringSquid
https://wiki.squid-cache.org/SquidFaq
https://wiki.squid-cache.org/ConfigExamples

https://www.packtpub.com/squid-proxy-server-31-beginners-guide/book
http://www.oreilly.com/catalog/squid/

(All the above available from http://www.squid-cache.org )


> Do I need to create static routes?

Provided the machine you want install Squid on can reach (a) arbitrary web 
servers on the Internet, and (b) the client machines on your internal 
networks, then no.

If not, then yes, you will need to add suitable routes so that the Squid 
server can find both origin servers and clients.

> Do I need firewalld rules in place?

A firewall is always a good idea, however Squid imposes no special requirement 
of its own here.

A very good starting point for firewalls is "allow the traffic you know you want, 
block the traffic you know you do not want, and log and block the traffic you're 
not sure about - then look at the logs and adjust the rules as necessary to 
keep the log entries minimal".


Finally, if you run into problems, come back here and tell us:

 - what you want to achieve
 - what you did to try to achieve it
 - how you tested whether it worked
 - what you found which told you it didn't work

Basically, give us enough information to understand what you're trying to do, 
what you've done to get there, and what went wrong (such that we could 
reproduce the problem for ourselves if need be), and people here will happily 
help out.


Regards,


Antony.

-- 
Pavlov is in the pub enjoying a pint.
The barman rings for last orders, and Pavlov jumps up exclaiming "Damn!  I 
forgot to feed the dog!"

                                                   Please reply to the list;
                                                         please *don't* CC me.

More information about the squid-users mailing list