[squid-users] squid intercept config

Yuri Voinov yvoinov at gmail.com
Thu Mar 5 18:12:38 UTC 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Looks good too.

Damn.

Will think.

Need to run some external checks.

06.03.15 0:10, Monah Baki пишет:
> root at ISN-PHC-CACHE:/home/support # pfctl -s nat No ALTQ support in
> kernel ALTQ related functions disabled rdr pass inet proto tcp from
> 10.0.0.0/8 to any port = http -> 10.0.0.24 port 3129
> 
> On Thu, Mar 5, 2015 at 1:08 PM, Yuri Voinov <yvoinov at gmail.com>
> wrote:
> 
> Can you run pfctl -s nat state on proxy box?
> 
> 06.03.15 0:05, Monah Baki пишет:
>>>> Ok let me ask the client tomorrow to run telnet 10.0.0.24 80
>>>> from a workstation
>>>> 
>>>> Thanks for he help Yuri
>>>> 
>>>> On Thu, Mar 5, 2015 at 1:02 PM, Yuri Voinov
>>>> <yvoinov at gmail.com> wrote:
>>>> 
>>>>> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
>>>>> 
>>>>> Sorry, I'm wrong. Netstat on host can't show redirected 
>>>>> listeners.
>>>>> 
>>>>> Need to check it externally.
>>>>> 
>>>>> 05.03.15 23:59, Monah Baki пишет:
>>>>>> On 10.0.0.24
>>>>>> 
>>>>>> root at ISN-PHC-CACHE:/home/support # netstat -an Active
>>>>>> Internet connections (including servers) Proto Recv-Q
>>>>>> Send-Q Local Address Foreign Address        (state) tcp4
>>>>>> 0     52 10.0.0.24.22 96.255.8.226.50911 ESTABLISHED tcp4
>>>>>> 0      0 *.3129 *.*                    LISTEN tcp4
>>>>>> 0      0 *.3128 *.*                    LISTEN tcp4
>>>>>> 0      0 *.81 *.*                    LISTEN tcp6       0
>>>>>> 0 *.81 *.* LISTEN tcp4       0      0 *.22 *.*
>>>>>> LISTEN tcp6       0      0 *.22 *.*
>>>>>> LISTEN tcp6 0      0 ::1.562 ::1.40066 ESTABLISHED tcp6
>>>>>> 0      0 ::1.40066 ::1.562 ESTABLISHED tcp6       0
>>>>>> 0 *.561 *.* LISTEN tcp6       0      0 *.562
>>>>>> *.* LISTEN tcp4       0      0 *.199                  *.*
>>>>>> LISTEN tcp4       0      0 *.10000                *.*
>>>>>> LISTEN udp4 0      0 *.3401                 *.* udp4
>>>>>> 0 0 *.34985 *.* udp4       0      0 *.* *.* udp4       0
>>>>>> 0 *.161 *.* udp4       0 0 *.162                  *.*
>>>>>> udp4       0 0 *.10000 *.* udp4       0      0
>>>>>> 127.0.0.1.123          *.* udp6       0 0 fe80::1%lo0.123
>>>>>> *.* udp6       0      0 ::1.123 *.* udp4       0      0
>>>>>> 10.0.0.24.123          *.* udp6 0 0 *.123
>>>>>> *.* udp4       0      0 *.123 *.* udp4       0      0
>>>>>> *.514                  *.* udp6       0 0 *.514
>>>>>> *.*
>>>>>> 
>>>>>> 
>>>>>> 
>>>>>> On Thu, Mar 5, 2015 at 12:12 PM, Yuri Voinov 
>>>>>> <yvoinov at gmail.com> wrote:
>>>>>> 
>>>>>> - From your PC run telnet 10.0.0.24 80. You've seen if
>>>>>> TCP socket opens.
>>>>> 
>>>>> 
>>>> 
>> 
> 
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAEBAgAGBQJU+JyWAAoJENNXIZxhPexGUc4IAJmS4DMs6Kf2D8Klm2GsKiDD
pHJsAk7XKPJ2oL97lQwPZs8vfDPB5AFJRSHS9BMxT5Y5q2tMbkuC8vh8w1uxG1rD
QercldJCcw4Rwxlq4nJUxEp8Hj82tPrCoMIiedSwCPBzka3OBEZfGHXMJAsGsvO0
FnmPJ5PXyen9OycBbe/bWVmt3aypi3ZA5/T+5yTS2dU49jDY2Wg47RJEsWmd3DsV
DU9js4Wz5woqzZerSkGizXSG9IZMBE8svR5X3l3nejy8NPwVc1ku2I7dAPcfCe9C
Fcuww85x2PpYfMNEnzgzzSdXx2oxfeeUMtO++zK3CaNCQxm1veTrwbrlu5sY8z4=
=diIu
-----END PGP SIGNATURE-----

More information about the squid-users mailing list