<div dir="ltr">Here is the output of the "squid -k parse" command, AFTER making the changes suggested by Eliezer<br><br>2014/12/22 18:34:40| Startup: Initializing Authentication Schemes ...<br>2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'basic'<br>2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'digest'<br>2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'negotiate'<br>2014/12/22 18:34:40| Startup: Initialized Authentication Scheme 'ntlm'<br>2014/12/22 18:34:40| Startup: Initialized Authentication.<br>2014/12/22 18:34:40| Processing Configuration File: /etc/squid/squid.conf (depth 0)<br>2014/12/22 18:34:40| Processing: visible_hostname BrowserAccess<br>2014/12/22 18:34:40| Processing: acl SSL_ports port 443<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 80 # http<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 21 # ftp<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 443 # https<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 70 # gopher<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 210 # wais<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 1025-65535 # unregistered ports<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 280 # http-mgmt<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 488 # gss-http<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 591 # filemaker<br>2014/12/22 18:34:40| Processing: acl Safe_ports port 777 # multiling http<br>2014/12/22 18:34:40| Processing: acl CONNECT method CONNECT<br>2014/12/22 18:34:40| Processing: http_access deny !Safe_ports<br>2014/12/22 18:34:40| Processing: http_access deny CONNECT !SSL_ports<br>2014/12/22 18:34:40| Processing: http_access allow localhost manager<br>2014/12/22 18:34:40| Processing: http_access deny manager<br>2014/12/22 18:34:40| Processing: http_access allow localhost<br>2014/12/22 18:34:40| Processing: http_access allow all<br>2014/12/22 18:34:40| Processing: http_access deny all<br>2014/12/22 18:34:40| Processing: http_port 3128<br>2014/12/22 18:34:40| Processing: coredump_dir /var/spool/squid<br>2014/12/22 18:34:40| Processing: refresh_pattern ^ftp: 1440 20% 10080<br>2014/12/22 18:34:40| Processing: refresh_pattern ^gopher: 1440 0% 1440<br>2014/12/22 18:34:40| Processing: refresh_pattern -i (/cgi-bin/|\?) 0 0% 0<br>2014/12/22 18:34:40| Processing: refresh_pattern . 0 20% 4320<br>2014/12/22 18:34:40| Initializing https proxy context<br><br></div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Dec 22, 2014 at 6:25 PM, Derek Cole <span dir="ltr"><<a href="mailto:derek.cole@gmail.com" target="_blank">derek.cole@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div dir="ltr"><div><div><div><div>Thanks for taking a look.<br><br></div>I did try what you suggested, change the "http_port 3128" line back to default, and also I tried to launch squid with the default squid.conf from the RPM install. Both cases still result in a failed launch.<br><br><a href="http://sharadchhetri.com/2014/03/15/install-configure-transparent-squid-proxy-server-rhelcentos-6-x/" target="_blank">sharadchhetri.com/2014/03/15/install-configure-transparent-squid-proxy-server-rhelcentos-6-x/</a><br><br></div>This link is the link I was using when I initially set this up, and got it working on the first machine. I am essentially using iptables to route traffic to squid, and then squid is routing to the internet.<br><br></div>Is there anything else I can check, with respect to selinux, etc that would determine if it's actually running or something?<br><br></div>Thanks<br></div><div class="gmail_extra"><br><div class="gmail_quote"><span class="">On Mon, Dec 22, 2014 at 6:18 PM, Eliezer Croitoru <span dir="ltr"><<a href="mailto:eliezer@ngtech.co.il" target="_blank">eliezer@ngtech.co.il</a>></span> wrote:<br></span><div><div class="h5"><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span>-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<br>
</span>OK Amos gave you a suggestion which will cover everything but from<br>
reading the squid.conf I would first try to understand:<br>
What do you want squid to do for you?<br>
<br>
You need to remove the "all" acl line and change the http_port from<br>
what it is to the defaults "http_port 3128".<br>
Did you tried to remove squid.conf and run it using the default<br>
squid.conf?<br>
<br>
Eliezer<br>
<span><br>
<br>
On 12/23/2014 12:57 AM, Derek Cole wrote:<br>
> visible_hostname BrowserAccess #acl localnet src <a href="http://10.1.1.0/24" target="_blank">10.1.1.0/24</a> #<br>
> RFC1918 possible internal network #acl localnet src <a href="http://10.22.0.0/23" target="_blank">10.22.0.0/23</a><br>
> acl all src <a href="http://0.0.0.0/255.255.255.255" target="_blank">0.0.0.0/255.255.255.255</a> acl SSL_ports port 443 acl<br>
> Safe_ports port 80 # http acl Safe_ports port 21 # ftp<br>
> acl Safe_ports port 443 # https acl Safe_ports port 70 #<br>
> gopher acl Safe_ports port 210 # wais acl Safe_ports port<br>
> 1025-65535 # unregistered ports acl Safe_ports port 280 #<br>
> http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports<br>
> port 591 # filemaker acl Safe_ports port 777 # multiling<br>
> http acl CONNECT method CONNECT http_access deny !Safe_ports<br>
> http_access deny CONNECT !SSL_ports http_access allow localhost<br>
> manager http_access deny manager #http_access allow localnet<br>
> http_access allow localhost http_access allow all http_access deny<br>
> all http_port 3128 accel vhost allow-direct coredump_dir<br>
> /var/spool/squid refresh_pattern ^ftp: 1440 20% 10080<br>
> refresh_pattern ^gopher: 1440 0% 1440 refresh_pattern -i<br>
> (/cgi-bin/|\?) 0 0% 0 refresh_pattern . 0 20% 4320<br>
<br>
</span><span>-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v1<br>
<br>
</span>iQEcBAEBAgAGBQJUmKbFAAoJENxnfXtQ8ZQUd6AH/jkZV2m6wpiaSyRrhAnQ1OmK<br>
Yc7EJt9BiyrPKi5AhiCTG1LfySYVWM1J1krdH4xoXVQB543Xnz0TLA5ul7YZrkSt<br>
s+EGMO9GJbPnzA1gjwurBz1sRDOnmd30Yc6f8sT51hJ++csVWld5PTbfCbluun95<br>
UZwUgPl+CfUKDhot/JuobRiPd90UayuEprYcIpH4I5dbPCZlSRliXNZKzVAqE9Ht<br>
9iIeOPuvPXKw1nWawmKxj4sytX79iNxeJ8PrXxPyCYxf8zeFHSMetA3pe2rcYQgK<br>
y2V3aNRCdVY+VSolTkUcE+GmItbM3B//XV4CRb3CNRNsdl2cHFOglvPc8mWmodI=<br>
=DX3j<br>
-----END PGP SIGNATURE-----<br>
</blockquote></div></div></div><br></div>
</blockquote></div><br></div>