Check if you do port-filtering via iptables... you have to allow port
3128 for your clients!
cheers
Daphne@xxxxxxx wrote:
Hi,
This is my first time to setup Squid-2.5.STABLE9-7 on Linux (Fedora Core
3).
I start Squid and get the message as below.
...
Loaded Icons.
Accepting HTTP connections at 0.0.0.0 port 3128. FD 11
...
Ready to serve requests.
...
I've tested Squid by using squidclient at this proxy server (localhost) and
can access the website. I find a record in access.log
e.g.
1121252787.712 216 127.0.0.1 TCP_MISS/200 2734 GET http://www.info.gov.hk
- DIRECT/202.128.227.99 text/html
But, when I try to access website via Internet Expolorer in Win 2000, I
can't access internet and no information is recorded in access.log.
Please advise this.
Thanks,
Daphne
/** squid.conf (for testing) is as below ***/
cache_dir ufs /var/spool/squid/ 100 16 256
cache_effective_user squid
cache_effective_group squid
visible_hostname hqlog01
coredump_dir /usr/local/squid/var/cache
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl Safe_ports port 403
acl Safe_ports port 5588
acl Safe_ports port 304
acl Safe_ports port 1025-65535 # unregistered ports
#acl Safe_ports port 3128 # squid
acl CONNECT method CONNECT
acl localhost src 127.0.0.1/255.255.255.255
http_access allow localhost
acl daphne src 191.161.1.28/255.255.255.255
http_access allow daphne
icp_access allow daphne
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
icp_access allow all
http_access deny all
*********