[squid-users] Squid traffic paths
Scott Bates
scott.bates at gmail.com
Tue Aug 27 18:07:04 UTC 2024
My lab is setup as such:
Hypervisor host
Squid VM
Test VM 1 (windows)
Test VM 2 (windows)
Test VM 3 (windows)
I have my proxies setup in the squid config. On the test vms I have the
windows proxy settings pointing to the squid IP and port. If I check the
public IP on that vm it shows up as the proxy IP. And in the proxy logs I
see traffic going out.
The issue I'm having is that some external services are seeing the hosts
public IP for the test vms and not the proxy ip.
Squid config:
*# First proxyhttp_port 3127acl port3127_acl myport 3127cache_peer PROXYIP
parent 9229 0 proxy-only no-query no-digest
login=USERNAME:PASSWORDcache_peer_access PROXYIP allow
port3127_aclcache_peer_access PROXYIP deny allnever_direct allow
port3127_aclnever_direct allow allhttp_access allow port3127_acl# Deny
caching on all proxies (optional)cache deny all# Default access
controlhttp_access deny alldns_nameservers 127.0.0.1forwarded_for
offrequest_header_access X-Forwarded-For deny all*
I'm not exactly sure how squid handles all dns traffic. I feel like this
might be a dns issue. I tried using google dns and the squid server ip as
dns on the test vms but same issue.
I started to mess around with dnsmasq installed on squid but I'm not sure
if I'm going down the right path or not.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20240827/9566497f/attachment.htm>
More information about the squid-users
mailing list