Re: Squid transparente - no funciona

To: Debian Spanish <debian-user-spanish@lists.debian.org>
Subject: Re: Squid transparente - no funciona
From: "Guillermo Salas M." <gsalas@manta.telconet.net>
Date: Fri, 14 Jul 2006 13:44:04 -0500
Message-id: <[🔎] 1152902644.22179.15.camel@localhost.localdomain>
In-reply-to: <[🔎] 00ea01c6a772$04e7faa0$b000a8c0@sistemas03>
References: <[🔎] 00ea01c6a772$04e7faa0$b000a8c0@sistemas03>

On Fri, 2006-07-14 at 15:19 -0300, Sebastian wrote:
> Buenas
> Me estoy volviendo loco con squid. Se que no es complicado y que hay mucha 
> data pero no lo logro hacer andar como quiero.
> Mi idea es que la red pueda salir sin restricciones.
> Para navegar en paginas http me funciona ok, pero para ftp, http, MESSENGER,
> pop desde cliente de correo,etc,  NO funciona.
> 

Eso es normal. Squid es un proxy para http, no para ftp, e-mail, etc.


> les paso mi squid.conf:
> 
> http_port 192.168.0.238:8080
> hierarchy_stoplist cgi-bin ?
> acl QUERY urlpath_regex cgi-bin \?
> no_cache deny QUERY
> cache_mem 16 MB
> cache_swap_low 100
> cache_swap_high 200
> cache_dir ufs /var/spool/squid 100 16 256
> cache_access_log /var/log/squid/access.log
> cache_log /var/log/squid/cache.log
> cache_store_log /var/log/squid/store.log
> 
> acl all src 0.0.0.0/0.0.0.0
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl redlocal_1 src 192.168.0.0/255.255.255.0
> 
> acl SSL_ports port 443 563
> acl Safe_ports port 80
> acl Safe_ports port 90
> acl Safe_ports port 20 21
> acl Safe_ports port 443 563
> acl Safe_ports port 70
> acl Safe_ports port 210
> acl Safe_ports port 1025-65535
> acl Safe_ports port 280
> acl Safe_ports port 488
> acl Safe_ports port 591
> acl Safe_ports port 777
> acl Safe_ports port 1863
> acl Safe_ports port 2020
> acl purge method PURGE
> acl CONNECT method CONNECT
> 
> http_access allow manager localhost
> http_access deny manager
> http_access allow purge localhost
> http_access deny purge
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> 
> http_access allow localhost
> http_access allow redlocal_1
> 
> http_access deny all
> icp_access allow all
> 
> httpd_accel_host virtual
> httpd_accel_port 80
> httpd_accel_with_proxy on
> httpd_accel_uses_host_header on
> httpd_accel_single_host off
> 
> ie_refresh on
> cache_mgr <mi mail>
> 
> 

Necesitas redireccionar el tráfico desde el puerto 80 al puerto 8080,
eso lo puedes lograr con iptables:

iptables -t nat   -A PREROUTING -s 192.168.0.0/24 -p tcp  --dport 80 -j
REDIRECT --to-port 8080


> 
> gracias por su tiempo... 
> 
> 

De nada.

>

Reply to:

References:
- Squid transparente - no funciona
  - From: "Sebastian" <listadebian@datafull.com>

Prev by Date: Re: Squid transparente - no funciona
Next by Date: Re: Squid transparente - no funciona
Previous by thread: Re: Squid transparente - no funciona
Next by thread: Re: Squid transparente - no funciona
Index(es):
- Date
- Thread