Does the squid box have the relevant routing entries for lan2 in it's
routing tables? do a netstat -rn and check that lan2 is being routed via the
firewall. If they are, can you get any other services to work to the proxy?
Can you, for example, get a telnet session open from a client to the proxy?
Or a ping? (check that it's open on your firewall, though).
Simon
-----Original Message-----
From: Larsson, Carl <carl.larsson@se.unisys.com>
To: Squid (E-mail) <squid-users@squid-cache.org>
Date: 09 July 2001 13:24
Subject: [squid-users] squid proxy in a firewall Environment
Hi!
I have installed a squid proxy server in my network and can't seem to get it
to work. The server is installed on between to LAN's and the user is on a
third. I have opened the http port in my firewall to the proxy server but
nothing seems to happened on the squid server.
I have also added an acl in the squid.conf file for the user LAN.
I works to access Internet from the squid server locally and to use it form
the same LAN as it is installed. But the purpose if this server is to have
it behind a firewall to increase the security of the user LAN.
This is a small map of the environment.
Internet -> Lan1 ->Squid server -> Lan2 ->Firewall -> User LAN
I have ensured in the Firewalls log that the signals goes threw to the squid
server.
Does anyone have any ideas or hints to give me?
_______________________________
Carl Larsson
UNISYS AB
Sandbergsvägen 3
441 80 Alingsås
Sweden
Tel: (+46) 322 - 606646
Fax: (+46) 322 - 606604
Epost: carl.larsson@se.unisys.com
____________________________________
------------------------------------------------------------
This communication is confidential and is intended
only for the person to whom it is addressed.
If you are not that person you are not permitted to
make use of the information and you are requested
to destroy the copy in your possession immediately.
------------------------------------------------------------
Received on Mon Jul 09 2001 - 06:38:25 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:01:03 MST