Good Morning again, my squid proxy server is acting strange:
When i go to a page it works with no problem, but when i access example
yahoo, and do a search it doesnt do anything its giving me:
Error
FW-1 at ob1: Access denied.
This error is when you dont authenticate on the last firewall before to
go outside. But any other page it works, only when you SUBMIT
information, like Yahoo, hotmail, Google, etc.. Anyone experience any
issues?
thanks for your help
Heres what access.log:
172.20.165.48 - mataj [24/Apr/2003:07:47:57 -0500] "GET
http://us.rd.yahoo.com/auctions/frontpage/ctree/50692/*http://list.auctions.shopping.yahoo.com/50692-cat
egory.html? HTTP/1.0" 200 296 TCP_MISS:DIRECT
Heres what Store.log:
1051188584.078 RELEASE -1 FFFFFFFF 4EAFACB9C436951CD53ED267677824B6
200-1 -1 1051188583 text/html 79/79 GET
http://search.ebay.com/search/search.dll?
My Squid.conf:
http_port 3128
cache_peer 172.20.111.20 parent 8080 3128 login=PASS default
no-query
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_mem 128 MB
cache_dir ufs /cache 8100 16 256
cache_access_log /cache/logs/access.log
cache_log /cache/logs/cache.log
cache_store_log /cache/logs/store.log
emulate_httpd_log on
dns_nameservers 172.20.110.111 172.20.110.112
auth_param basic program /usr/local/squid/bin/ncsa_auth
/usr/local/squid/etc/passwd
auth_param basic children 5
auth_param basic realm VH Internet Server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl passwd proxy_auth REQUIRED
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
http_access allow passwd
http_reply_access allow all
icp_access allow all
visible_hostname
Received on Thu Apr 24 2003 - 07:00:14 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:15:24 MST