I'm using squid to provide filtered access (squidGuard) in a K-12
environment. For historical reasons (CERN) we have squid running on
port 80. I wish we had not done this, but it's painful to change all
the clients. Anyhow, our "real" web server runs on port 81 of the same
machine. squid-1.NOVM.20 works like a champ, but I have been unable to
figure out how to move to a more modern version. I always get an "Access
Denied" error when a client tries to access the accelerated web server
on port 80. Duane and Henrik gave me some suggestions earlier, but
apparently did not use small enough words for my bear brain. Perhaps
somebody is already doing this and could ship me a cookbook. My
working squid.conf is below. TIA!
-- Jay Rouman (jsr@dexter.mi.org jsr@ais.org NIC Handle: JSR) System Administrator, Education Central/Edzone (jsr@edcen.ehhs.cmich.edu) ====================================================================== # Version: squid-1.NOVM.20 # http_port 80 # hierarchy_stoplist cgi-bin ? cache_stoplist cgi-bin ? cache_swap 500 cache_dir /usr2/squid/cache cache_access_log /usr/local/squid/logs/access.log cache_log /usr/local/squid/logs/cache.log cache_store_log none # pid_filename /var/run/squid.pid debug_options ALL,1 redirect_program /usr/local/bin/squidGuard redirect_children 4 # acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl all src 0.0.0.0/0.0.0.0 # acl SSL_ports port 443 563 acl Dangerous_ports port 7 9 19 acl CONNECT method CONNECT # http_access deny manager !localhost http_access deny CONNECT !SSL_ports http_access deny Dangerous_ports # http_access allow all icp_access allow all miss_access allow all # cache_mgr webmaster@elpbox.mtpleasant.k12.mi.us # cache_effective_user info info httpd_accel localhost 81 httpd_accel_with_proxy on # dns_testnames internic.net usc.edu cs.colorado.edu mit.edu yale.edu minimum_direct_hops 4 cachemgr_passwd disable allReceived on Wed Oct 20 1999 - 08:28:38 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:49:00 MST