You need to allow communication on the loopback interface (lo). Squid
uses TCP/IP over the loopback interface to talk to it's slave processes
like dnsserver.
Regards
Henrik Nordström
Squid Developer
Raphael Berghmans wrote:
>
> Hi,
>
> I've configured a proxy server with squid 2.2 stable5.
> On this server there is also some iptables rules.
> One of them rules Drop every packet that arrive on the INPUT tables, except
> for the port 3128 and the prevously established or related connections. But
> when the rules are loaded squid doesn't work properly because squid is unable
> to launch dnsserver.
>
> But when, I unload the iptables rules, squid works properly.
>
> The reason, of this problem is that when squid try to launch dnsserver he
> makes a connexion on the loopback address from the loopback address !
>
> What's the resaon of this connexion (the nameserver is not local !) ?
>
> Thank you,
>
> --
> Raphaël
>
> This mail has been checked by exiscan.
> To be safe, please scan the mail attachements with your local virus scanner !
Received on Mon Mar 25 2002 - 20:20:47 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:05 MST