Re: [squid-users] always_direct dont work

From: Siew Wing Loon <wlsiew@dont-contact.us>
Date: Mon, 11 Aug 2003 17:04:07 -0700 (PDT)

Hi Jordi,

Try to use this iptables rules: -

$IPTABLES -t nat -A PREROUTING -i $DEV -p tcp ! -s
$NAGIOS --dport 80 -j REDIRECT --to-port 3128

Regards,
Siew

--- Jordi Vidal <jordivi@wtransnet.net> wrote:
> Hi,
>
> I'm trying to setup a rule to avoid Nagios from
> fetching web pages
> from the cache of my squid transparent proxy,
> forcing to check directly
> with remote server, but squids seems to ignore
> completely the rule.
>
> My question is: is the rule "always_direct" usable
> in a
> transparent proxy configuration?
>
> My squid version is 2.4.STABLE7. Relevant parts of
> squid.conf
> follows:
>
> httpd_accel_host virtual
> httpd_accel_port 80
> httpd_accel_with_proxy on
> httpd_accel_uses_host_header on
> cachemgr_passwd cebolla all
> acl local-servers dstdomain .wtn
> acl nagios browser check_http
> always_direct allow nagios
> always_direct allow local-servers
>
> Note: rule "always_direct allow local-servers" also
> dont work.
> Note: I tried also other acl definition for nagios
> as
> "acl nagios src 192.168.x.x/255.255.255.255" with no
> luck
>
> From access.log ...
> 192.168.x.x - - [11/Aug/2003:18:37:54 +0200] "GET
> http://web.to.be.checked/ HTTP/1.0" 200 1697
> TCP_HIT:NONE
> [...]
>
> From nagios check_http plugin...
> Page is 1697 characters
> STATUS: HTTP/1.0 200 OK
> **** HEADER ****
> Date: Mon, 11 Aug 2003 15:45:42 GMT
> Server: Oracle HTTP Server ....
> [...]
> Age: 3205
> X-Cache: HIT from <my-squid-(transparent)proxy>
> Connection: close
> **** CONTENT ****
>
>
> Jordi
>

__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
Received on Mon Aug 11 2003 - 18:04:12 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:18:50 MST