[squid-users] Squid None Aborted problem
secoonder
secoonder at mynet.com
Sun Feb 21 11:56:03 UTC 2016
Antony Thank you.
My Firewall eth0: 192.168.1.180
eth1:192.168.2.180
ip_forwarding enable and more /proc/sys/net/ipv4/ip_forward =1
iptables -t nat -A POSTROUTING -s 192.168.5.0/255.255.255.0 -o eth0 -j
MASQUERADE
This is no problem above it.The cilents could connect internet.
And then i install squid 3.2.11.i added
iptables -t nat -A PREROUTING -i eth1-p tcp --dport 80 -j REDIRECT
--to-ports 3128 and save it.
i redirect succesfully 80 port.i see it at tailf /var/log/squid3/access.log
But clients can not internet .
My squid3 -k parse...
2016/02/21 14:20:56| Startup: Initializing Authentication Schemes ...
2016/02/21 14:20:56| Startup: Initialized Authentication Scheme 'basic'
2016/02/21 14:20:56| Startup: Initialized Authentication Scheme 'digest'
2016/02/21 14:20:56| Startup: Initialized Authentication Scheme 'negotiate'
2016/02/21 14:20:56| Startup: Initialized Authentication Scheme 'ntlm'
2016/02/21 14:20:56| Startup: Initialized Authentication.
2016/02/21 14:20:56| Processing Configuration File: /etc/squid3/squid.conf
(depth 0)
2016/02/21 14:20:56| Processing: acl SSL_ports port 443
2016/02/21 14:20:56| Processing: acl Safe_ports port 80 # http
2016/02/21 14:20:56| Processing: acl Safe_ports port 21 # ftp
2016/02/21 14:20:56| Processing: acl Safe_ports port 443 # https
2016/02/21 14:20:56| Processing: acl Safe_ports port 70 # gopher
2016/02/21 14:20:56| Processing: acl Safe_ports port 210 # wais
2016/02/21 14:20:56| Processing: acl Safe_ports port 1025-65535 #
unregistered ports
2016/02/21 14:20:56| Processing: acl Safe_ports port 280 # http-mgmt
2016/02/21 14:20:56| Processing: acl Safe_ports port 488 # gss-http
2016/02/21 14:20:56| Processing: acl Safe_ports port 591 # filemaker
2016/02/21 14:20:56| Processing: acl Safe_ports port 777 # multiling http
2016/02/21 14:20:56| Processing: acl CONNECT method CONNECT
2016/02/21 14:20:56| Processing: http_access allow localhost manager
2016/02/21 14:20:56| Processing: http_access deny manager
2016/02/21 14:20:56| Processing: http_access deny !Safe_ports
2016/02/21 14:20:56| Processing: http_access deny CONNECT !SSL_ports
2016/02/21 14:20:56| Processing: acl sec src 192.168.5.0/24
2016/02/21 14:20:56| Processing: http_access allow sec
2016/02/21 14:20:56| Processing: http_access allow localhost
2016/02/21 14:20:56| Processing: http_access deny all
2016/02/21 14:20:56| Processing: http_port 3128 intercept ssl-bump
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
key=/etc/mydlp/ssl/private.pem cert=/etc/mydlp/ssl/public.pem
2016/02/21 14:20:56| Starting Authentication on port 0.0.0.0:3128
2016/02/21 14:20:56| Disabling Authentication on port 0.0.0.0:3128
(interception enabled)
2016/02/21 14:20:56| Processing: http_port 3129 intercept ssl-bump
generate-host-certificates=on dynamic_cert_mem_cache_size=4MB
key=/etc/mydlp/ssl/private.pem cert=/etc/mydlp/ssl/public.pem
2016/02/21 14:20:56| Starting Authentication on port 0.0.0.0:3129
2016/02/21 14:20:56| Disabling Authentication on port 0.0.0.0:3129
(interception enabled)
2016/02/21 14:20:56| Processing: always_direct allow all
2016/02/21 14:20:56| Processing: ssl_bump allow all
2016/02/21 14:20:56| Processing: sslproxy_cert_error allow all
2016/02/21 14:20:56| Processing: sslproxy_flags DONT_VERIFY_PEER
2016/02/21 14:20:56| Processing: sslcrtd_program /usr/lib/squid3/ssl_crtd -s
/var/lib/ssl_db -M 4MB
2016/02/21 14:20:56| Processing: sslcrtd_children 5
2016/02/21 14:20:56| Processing: cache_dir ufs /var/spool/squid3 10000 16
256
2016/02/21 14:20:56| Processing: coredump_dir /var/spool/squid3
2016/02/21 14:20:56| Processing: refresh_pattern ^ftp: 1440 20% 10080
2016/02/21 14:20:56| Processing: refresh_pattern ^gopher: 1440 0% 1440
2016/02/21 14:20:56| Processing: refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
2016/02/21 14:20:56| Processing: refresh_pattern . 0 20% 4320
2016/02/21 14:20:56| Processing: dns_v4_first on
2016/02/21 14:20:56| Initializing https proxy context
2016/02/21 14:20:56| Initializing http_port 0.0.0.0:3128 SSL context
2016/02/21 14:20:56| Using certificate in /etc/mydlp/ssl/public.pem
2016/02/21 14:20:56| Using private key in /etc/mydlp/ssl/private.pem
2016/02/21 14:20:56| Initializing http_port 0.0.0.0:3129 SSL context
2016/02/21 14:20:56| Using certificate in /etc/mydlp/ssl/public.pem
2016/02/21 14:20:56| Using private key in /etc/mydlp/ssl/private.pem
--
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-None-Aborted-problem-tp4675901p4676089.html
Sent from the Squid - Users mailing list archive at Nabble.com.
More information about the squid-users
mailing list