Squid proxy - Help needed

Discussion and support for all Linux distributions and Unix flavours (FreeBSD, OpenBSD, etc).
Forum rules
Post Reply
Gromit
Registered User
Posts: 526
Joined: 14 Mar 2006, 02:00
Location: P.E

Squid proxy - Help needed

Post by Gromit »

I have a squid proxy running. I need to allow access to this site http://196.25.20.98:8082/eRes/admin, but it just seems to deny me access although it allows access to other sites in the "allow" list.

I think due to the proxy running on port 8080 it will not allow access to port 8082 as needed in the url above. I am not sure if this is the problem?

Any help? Please
Image
Port Elizabeth Wireless User Group
www.pewifi.co.za
Top
shiv
Registered User
Posts: 497
Joined: 26 Mar 2007, 02:00
Contact:
Contact shiv

Re: Squid proxy - Help needed

Post by shiv »

Gromit wrote:I have a squid proxy running. I need to allow access to this site http://196.25.20.98:8082/eRes/admin, but it just seems to deny me access although it allows access to other sites in the "allow" list.

I think due to the proxy running on port 8080 it will not allow access to port 8082 as needed in the url above. I am not sure if this is the problem?

Any help? Please
My university blocked facebook. But I always found many ways around it...
Try www.hidemysource.com
Top
Nuke
Registered User
Posts: 3515
Joined: 28 Feb 2004, 02:00
Processor: Xeon E5620
Motherboard: Asus P6T6 Workstation
Graphics card: MSI GTX770
Memory: 24GB Hynix
Location: ::1

Post by Nuke »

My guess is its blocked on your Iptables firewall, and not on your squid. On what system are you running squid? IPcop?
Image
Top
Friggs
Registered User
Posts: 1321
Joined: 02 Jun 2004, 02:00
Location: PTA

Post by Friggs »

Also, have you added port 8082 to the "safe ports" list in squid? You can stick it right after the ssl ports or any other safe ports listed. Webmin uses port 10000 by default and if it wasn't added to the safe list in squid then you couldn't access it.
Top
Anthro
Moderator Emeritus
Posts: 5547
Joined: 21 Dec 2002, 02:00
Processor: i7 3770k
Motherboard: ASUS P8P67-Pro
Graphics card: 2xNvidia GTX670
Memory: 16 GB Gskill Sniper
Location: In SQL Space inserting 'null' on purpose
Contact:
Contact Anthro

Post by Anthro »

Dude -
#1 Did you see the comma after the address ?
#2. I have access to that ... it is asking me for a login..
#3. Rather not post a live IP address like that online :wink:
>>Rather say I need to allow access to a IP 196.*.*./
Temporary Absence
Top
Nuke
Registered User
Posts: 3515
Joined: 28 Feb 2004, 02:00
Processor: Xeon E5620
Motherboard: Asus P6T6 Workstation
Graphics card: MSI GTX770
Memory: 24GB Hynix
Location: ::1

Post by Nuke »

I tested it with my Squid proxy. As you can see it strips out the port number.
1200814230.867 0 192.168.50.1 TCP_NEGATIVE_HIT/404 1940 GET http://196.25.20.98/eRes/admin - NONE/- text/html


As I said, just allow it in you firewall to go though, don't send it via the proxy. Or move the port on which the webserver runs to port 80.
In you iptables there will be a rule that sends all dst-port 80 to port 8080 on 127.0.0.1, just add a rule above it that allows dst-port 8082 to 196.25.20.98 and it should work.(Not sure though, I never used IPtables on linux, only on mikrotik)
Image
Top
Post Reply

Return to “Linux/Unix”