yes this is solved i put X FORWARDER in both ( DG and SQUID ) iptables to DG's port thx for your help all close On Tue, Nov 25, 2008 at 5:27 AM, Chuck Kollars <ckollars9@xxxxxxxxx> wrote: > --- In dansguardian@xxxxxxxxxxxxxxx, "â–`â–'â–" É¹É zÇ upÉ É¥Êž > É zɹıɯ â–"â–'â–`" <mirza.k@...> wrote: >> >> hi all >> sorry for my cross posting but this is urgent :( >> i have problem here >> >> eth0 192.168.222.100 =>> Go to LAN and act as Client's GW and DNS ( >> Installed DG and Squid ) >> eth1 10.0.0.2 =>> Go to LoadBalancing + DMZ server ( IP PUBLIC >> forwarded ( got DMZ to this machine ) >> >> squid.conf : >> http_port 2210 transparent >> >> dansguardian.conf : >> filterport = 2211 >> proxyip = 127.0.0.1 >> proxyport = 2210 >> >> rc.local >> /sbin/iptables --table nat --append POSTROUTING --out-interface eth1 >> -j MASQUERADE >> /sbin/iptables --append FORWARD --in-interface eth1 -j ACCEPT >> /sbin/iptables -t nat -A PREROUTING -i eth0 -p tcp -s >> 192.168.0.0/255.255.0.0 --dport 80 -j DNAT --to 192.168.222.100:2211 >> /sbin/iptables -t nat -A PREROUTING -p tcp -i eth1 -d 10.0.0.2 --dport >> 2210 -j DNAT --to-destination 192.168.222.100 >> >> >> output : >> ERROR >> The requested URL could not be retrieved >> > -------------------------------------------------------------------------------- >> While trying to retrieve the URL: http://google.com/ >> The following error was encountered: >> Access Denied. >> ==== >> >> >> what wrong ? >> > Who knows? The error message "The requested URL could not be > retrieved" is a very generic one that could mean almost anything. (In > fact, roughly translated it probably means nothing more than "doesn't > work". I seriously doubt this can get resolved in your original > timeframe.) > > "Access Denied" suggests some sort of permissions problem. What user > is the Squid process running as? Does that user have write permission > to the Squid cache files? How about the Squid log files? How about the > Squid configuration files? > > What distribution are you using? Is Squid actually running? Is > DansGuardian actually running? Did DansGuardian issue any error > messages when it was started? Are there any messages in any of the > logs (Squid, DansGuardian, or system)? > > What does the rest of your Squid configuration look like? (In > particular do you have anything like "acl src 10.0.0.0/24" or "acl src > 192.168.200.0/24" and "http_access allow localnet"? > > Can you isolate the problem to either interface 192.168.222.100 or > 10.0.0.2 and discard the other one as irrelevant to this problem? (It > looks to me like 10.0.0.2 isn't involved in this problem, but I'm not > sure I've understood your description correctly. > > Perhaps the tips at > http://contentfilter.futuragts.com/wiki/doku.php?id=general_troubleshooting_strategies > will be helpful. > > thanks! -Chuck Kollars > > -- -=-=-=-= http://amyhost.com Hot News !!! : Dikarenakan Banyaknya permintaan Domain registration sehingga Stok Saldo kini terupdate menggunakan Kurs saat ini yaitu Rp. 85.000 untuk non-reseller | Rp. 82.000 untuk Reseller ------------ Pengin punya Layanan SMS PREMIUM ? Contact me ASAP. dapatkan Share revenue MAXIMAL tanpa syarat traffic...
