I've been working on this for five days and it just doesn't work.
I have followed the User Guide for Squid to configure both Proxy &
Accelerator mode to the best of my ability.
I am trying to get a firewall to run squid and proxy a web server
behind the firewall.
But there just aren't any examples exactly like this - the only
exception is that everything I am using is on port 80.
And I am still getting the error Access Denied for both local and
external clients.
Here's my network:
Internet connection: 123.123.123.123
firewall/gateway address: 192.168.0.1
web server 192.168.0.200 listening to port 80
workstation 192.168.0.100 browsers set to 192.168.0.1:8080 (NOT
using Transparent Proxy)
I have tried to use the Example 9-4 "Accelerating a Slow Server"
with the following properties set:
http_port 80
http_port 8080
httpd_accel_host 192.168.0.200
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
# Default ACL ruleset
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl CONNECT method CONNECT
#My ACL Ruleset
acl mynet src 192.168.0.0/24
acl myweb dst 192.168.0.200
acl myport port 80
#Default configuration
http_access allow manager localhost
http_access deny manager
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
#My ACL Rules
http_access allow mynet
http_access allow myweb myport
http_access deny all
And the rest is either the squid default or already posted on this
email.
My DNS entries show that my www CNAME is == (my internet IP
address 123.123.123.123)
And I get Access Denied every time.
Please, what am I missing?
-- To unsubscribe, see http://www.squid-cache.org/mailing-lists.htmlReceived on Mon Nov 27 2000 - 15:12:16 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:56:36 MST