Re: [squid-users] miss access of squid proxy

From: MASOOD AHMAD <masoodnt10@dont-contact.us>
Date: Fri, 17 Jan 2003 23:37:49 -0800 (PST)

Dear Ahmed,

there are some cable company they are redirecing there
port 80 traffic to pakistani ISPs. you can block it
from router or using ipchains or iptables. but if you
talk about that you have defined an ACL in squid that
no one will be permitted thne your IPs. I agree but
there packet spoof to your ips and then when squid
listion it again there IPs.
block these IPs port 80,25 and 61 traffic from you
border router or from your caches.

Best Regards,
Masood Ahmad Shah

--- Mahmood Ahmed <braveheart@ultra.net.pk> wrote:
> HI all!
>
> i am running squid-2.4STABLE7-4 on RED HAT 8.0, and
> using iptables to
> intercept the http traffic. Since last 2 days i have
> noticed that my cache
> is being miss accessd by 5-6 different hosts and all
> of them are using my
> cache to retrieve port 25 (SMTP port) traffic from
> various servers. here
> is what i get on my access.log
>
> 1042838519.602 941 66.111.54.10 TCP_MISS/200 522
> CONNECT 64.12.137.121:25
> -DIRECT/ 64.12.137.121 -
> 1042838520.602 941 207.44.200.18 TCP_MISS/000 0
> CONNECT 193.215.68.18:25
> -NONE/ --
>
> on cache.log
>
> 2003/01/18 02:45:24| sslReadServer: FD 279: read
> failure: (104) connection
> reset by peer
>
> my acl config in squid allows only my network
> traffic and miss_access
> allows only the acl for my network. i have not
> configured my cache for a
> parent sibbling relationship. I even tried to block
> such ip addresses by
> iptables but all invane.
>
> as the network's out going traffic is touching its
> peek due to this
> problem me and my clients are facing very poor
> performance. this thing is
> driving me crazy as i cant find any remedy.
>
> can any one out there help me on this, any help
> would be appriciated.
>
> Mahmood Ahmed
> Network Engineer
> ultra.net.pk
>
>

__________________________________________________
Do you Yahoo!?
Yahoo! Mail Plus - Powerful. Affordable. Sign up now.
http://mailplus.yahoo.com
Received on Sat Jan 18 2003 - 00:37:51 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:43 MST