----- Original Message ----- From: "Adam Lang" <aalang@xxxxxxxxxxxxxxxxxxxx> To: <fluca1978@xxxxxxxxxxx> Sent: Wednesday, May 19, 2004 8:46 AM Subject: Re: iptables, squid and all related stuff > You didn't tell it what to do with that acl. > > http_access allow web_service > > Make sure you put it in front of any deny rules that would block it. Life > will be easier if you just add it to the safe_port list and put a comment at > the end so you knwow hat it is for. > > ----- Original Message ----- > From: "Luca Ferrari" <fluca1978@xxxxxxxxxxx> > To: <linux-admin@xxxxxxxxxxxxxxx> > Sent: Wednesday, May 19, 2004 5:23 AM > Subject: iptables, squid and all related stuff > > > > Hi, > > I've got a problem with my firewall/proxy machine. I'm using iptables to > > firewalling packets and squid as proxy server for http on the port 8080. > Each > > client in my subnet has the proxy set. > > Now one client needs to access a special web service, available at port X > on > > server Y thru a set of asp pages. I've enabled the connection thru the > > firewall for Y:X, but the client is still unable to connect to the > service. > > There are no error from my side, no packet logged, but a TCP_MISS in squid > > logs. I have tried to enable and acl as the following: > > acl web_service port X > > > > .... > > http_access web_service > > > > but it's still not working. Any idea? > > > > Thanks, > > Luca > > > > -- > > Luca Ferrari, > > fluca1978@xxxxxxxxxxx > > - > > : send the line "unsubscribe linux-admin" in > > the body of a message to majordomo@xxxxxxxxxxxxxxx > > More majordomo info at http://vger.kernel.org/majordomo-info.html > - : send the line "unsubscribe linux-admin" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
