Ok. That solved the problem. I can run squid with the -z option and all goes well. I still am having trouble, however, redirecting to my second nic. I have the following in my squid.conf: Visible_hostname proxy name http_port 192.168.1.3:80 accel vport #192.168.1.3 is nic1 http_port 192.168.3.1:80 accel vport #192.168.3.1 is nic2 Anything I should be adding? Regards, Jon Faranda Applied Research Associates 430 W. 5th St. Panama City, FL 32401 850-914-3188 x143 850-914-3189 Fax -----Original Message----- From: Juan C. Crespo R. [mailto:jcrespo@xxxxxxxxxxxx] Sent: Monday, March 26, 2007 1:41 PM To: Jonathan Faranda Cc: squid-users@xxxxxxxxxxxxxxx Subject: Re: Reverse proxy with 2 Nics Easy Change the owner user and owner group, to the set user and group on cache_effective_user (proxy) cache_effective_group (proxy) If you use proxy on the lines above, the output of your ls -l must look like this drwxr-x--- 18 proxy proxy 512 Mar 16 18:27 cache drwxr-xr-x 2 proxy proxy 512 Mar 16 14:56 logs Regards :) Jonathan Faranda escribió: > Output of ls -l /usr/loca/squid/var: > > Drwxr-xr-x 2 root root 4096 Mar 26 10:17 cache > Drwxr-xr-x 2 root root 4096 Mar 26 10:17 logs > -rw-r--r-- 2 root root 4096 Mar 26 10:17 squid.out > > Regards, > > Jon Faranda > Applied Research Associates > 430 W. 5th St. > Panama City, FL 32401 > 850-914-3188 x143 > 850-914-3189 Fax > ________________________________________ > From: Juan C. Crespo R. [mailto:jcrespo@xxxxxxxxxxxx] > Sent: Monday, March 26, 2007 1:26 PM > To: Jonathan Faranda > Cc: squid-users@xxxxxxxxxxxxxxx > Subject: Re: Reverse proxy with 2 Nics > > please show me the output of ls -l on your /usr/local/squid/var > > > > > > 9523655 > > > Jonathan Faranda escribió: > Found it, but what should I change it too? I tried nobody and squid, but I still get the same error: > > FATAL: failed to make swap directory /usr.local/squid/var/cache/00: (13) Permission denied. > > Regards, > > Jon Faranda > ________________________________________ > From: Juan C. Crespo R. [mailto:jcrespo@xxxxxxxxxxxx] > Sent: Monday, March 26, 2007 11:39 AM > To: Jonathan Faranda > Cc: squid-users@xxxxxxxxxxxxxxx > Subject: Re: Reverse proxy with 2 Nics > > Jonathan > > Try to find the setting of > > cache_effective_user > cache_effective_group > > Regards =) > > Jonathan Faranda escribió: > Hi, > > I upgraded to Squid 2.6.STABLE12 and made the adjustments you mentioned. > I tried and start squid with /usr/local/squid/sbin/squid -z and I get > the following error: > > FATAL: Failed to make swap directory /usr/local/squid/var/cache: (13) > Permission denied > > I am executing this as root so I don't understand the problem. > > Regards, > > Jon Faranda > > -----Original Message----- > From: Amos Jeffries [mailto:squid3@xxxxxxxxxxxxx] > Sent: Monday, March 26, 2007 8:47 AM > To: Jonathan Faranda > Cc: squid-users@xxxxxxxxxxxxxxx > Subject: Re: Reverse proxy with 2 Nics > > Jonathan Faranda wrote: > > Hi All, > > I am attempting to setup a reverse proxy using two nics on a Centos > > 4.4 box. Nic 1 (eth0 - 192.168.1.3) is where I want my outside world to > see and Nic 2 (eth1 - 192.168.3.1) is the network where my webserver > resides. > > I have modified my squid.conf as follows: > > > visible_hostname name_of_reverse_proxy > > http_port name_of_reverse_proxy:80 > > tcp_outgoing_address 192.168.3.1 #Nic 2 interface > > httpd_accel_host 192.168.3.2 #the webserver address > > httpd_accel_port 80 > > httpd_accel_single_host on > > httpd_accel_with_proxy off > > httpd_accel_uses_host_header on > > > > > > I have no firewall running since I flushed the rules with > /sbin/iptables -F > > > > I am assuming it's a routing problem, but I do not understand how to > do this. Any ideas? Thanks. > > > > Regards, > > > > Jon Faranda > > > It looks like you are trying to use squid2.5 > I highly recommend upgrading to squid2.6 or 3.0 > > Then the configuration becomes simply: > > visible_hostname name_of_reverse_proxy > http_port 192.168.1.3:80 accel > http_port 192.168.3.1:80 accel > > and a secure acl setup takes care of the rest, as per whatever you wish. > > checkout this page: > http://www.visolve.com/squid/squid30/network.php#http_port > I believe most of the parameters in this section apply to squid2.6 and > 3.0 both. > > > Amos > > > > > > > > > > > >
