<div dir="ltr"><br>Please, take a look :<div><br></div><div><p class="inbox-inbox-MsoPlainText">[root@prd-rbs-squid01-poa squid]# cat
/etc/squid/squid.conf | egrep -v "^#|^$"</p>
<p class="inbox-inbox-MsoPlainText">acl localnet src <a href="http://10.0.0.0/8">10.0.0.0/8</a> # RFC1918 possible internal network</p>
<p class="inbox-inbox-MsoPlainText">acl localnet src <a href="http://172.16.0.0/12">172.16.0.0/12</a> # RFC1918 possible internal network acl
localnet src <a href="http://192.168.0.0/16">192.168.0.0/16</a> # RFC1918 possible internal network</p>
<p class="inbox-inbox-MsoPlainText">acl localnet src fc00::/7 # RFC 4193 local private network range</p>
<p class="inbox-inbox-MsoPlainText">acl localnet src fe80::/10 # RFC 4291 link-local (directly plugged)
machines</p>
<p class="inbox-inbox-MsoPlainText">acl SSL_ports port 443</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 80 # http</p>
<p class="inbox-inbox-MsoPlainText">…</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 21 # ftp</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 443 # https</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 70 # gopher</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 210 # wais</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 1025-65535 # unregistered ports</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 280 # http-mgmt</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 488 # gss-http</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 591 # filemaker</p>
<p class="inbox-inbox-MsoPlainText">acl Safe_ports port 777 # multiling http</p>
<p class="inbox-inbox-MsoPlainText">acl CONNECT method CONNECT</p>
<p class="inbox-inbox-MsoPlainText">http_access deny !Safe_ports</p>
<p class="inbox-inbox-MsoPlainText">http_access deny CONNECT !SSL_ports</p>
<p class="inbox-inbox-MsoPlainText">http_access allow localhost manager</p>
<p class="inbox-inbox-MsoPlainText">http_access deny manager</p>
<p class="inbox-inbox-MsoPlainText">http_access allow localnet</p>
<p class="inbox-inbox-MsoPlainText">http_access allow localhost</p>
<p class="inbox-inbox-MsoPlainText"><b>http_port 3128</b></p>
<p class="inbox-inbox-MsoPlainText"><b>http_port 3129 intercept</b></p>
<p class="inbox-inbox-MsoPlainText">cache_dir ufs /var/spool/squid 100 16 256 coredump_dir
/var/spool/squid</p>
<p class="inbox-inbox-MsoPlainText">refresh_pattern ^ftp: 1440 20%
10080</p>
<p class="inbox-inbox-MsoPlainText">refresh_pattern ^gopher: 1440
0% 1440</p>
<p class="inbox-inbox-MsoPlainText">refresh_pattern -i (/cgi-bin/|\?) 0 0%
0</p>
<p class="inbox-inbox-MsoPlainText">refresh_pattern . 0 20%
4320</p>
<p class="inbox-inbox-MsoPlainText">[root@prd-rbs-squid01-poa squid]#</p><div><div class="gmail_quote"><div dir="ltr">Em qua, 24 de mai de 2017 às 18:13, Amos Jeffries <<a href="mailto:squid3@treenet.co.nz">squid3@treenet.co.nz</a>> escreveu:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On 25/05/17 08:12, Rogerio Coelho wrote:<br>
> On my new Squid Server running 3.5.20 on Centos 7 a try to use in many different ways.<br>
><br>
> When i use wget or firefox using http_proxy conf web access go ok. But when i try to access web using iptables redirect from Linux Server i got bad request / Invalid URL.<br>
<br>
You omitted the squid.conf dump on this post so I cannot be sure but<br>
that is the behaviour which happens when use a forward/explicit proxy<br>
port (eg 3128) to receive intercepted port-80 traffic.<br>
<br>
You need separate http_port lines for receiving these two quite<br>
different types of HTTP traffic.<br>
<br>
<br>
Amos<br>
<br>
_______________________________________________<br>
squid-users mailing list<br>
<a href="mailto:squid-users@lists.squid-cache.org" target="_blank">squid-users@lists.squid-cache.org</a><br>
<a href="http://lists.squid-cache.org/listinfo/squid-users" rel="noreferrer" target="_blank">http://lists.squid-cache.org/listinfo/squid-users</a><br>
</blockquote></div></div></div></div>