Hello,
I deployed a Fedora 13 x86_64 environment as a proxy server using Squid
3.0.STABLE25
I'm interested on starting Squid with multiple instances.
I successfully started two squid instances with 2 different config-files
respectively listening on port 3128 and port 3129.
Squid is not configured as a transparent proxy.
I also successfully executed the shell script mentioned here
<http://wiki.squid-cache.org/MultipleInstances>, the only thing that was
changed is the destination port from 80 to 3130.
This port (3130) will be used to configure clients proxy port
configurations.
The problem is that I'm unable to open any web-page.
It seem that no packets are passing through the chains, requests never
reach squid.
Actually my /etc/sysconfig/iptables looks like this:
/# Generated by iptables-save v1.4.7 on Wed Nov 10 11:48:23 2010
*mangle
:PREROUTING ACCEPT [13:1014]
:INPUT ACCEPT [135:10622]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [76:10400]
:POSTROUTING ACCEPT [76:10400]
:DIVERT - [0:0]
:extrachain - [0:0]
-A PREROUTING -p tcp -m socket -j DIVERT
-A PREROUTING -p tcp -m tcp --dport 3130 -m conntrack --ctstate NEW -j
extrachain
-A PREROUTING -i eth0 -p tcp -m tcp --dport 3130 -m connmark --mark 0x0
-j TPROXY --on-port 3128 --on-ip 0.0.0.0 --tproxy-mark 0x1/0x1
-A PREROUTING -i eth0 -p tcp -m tcp --dport 3130 -m connmark --mark 0x1
-j TPROXY --on-port 3129 --on-ip 0.0.0.0 --tproxy-mark 0x1/0x1
-A DIVERT -j MARK --set-xmark 0x1/0xffffffff
-A DIVERT -j ACCEPT
-A extrachain -m statistic --mode nth --every 2 -j CONNMARK --set-xmark
0x0/0xffffffff
-A extrachain -m statistic --mode nth --every 2 --packet 1 -j CONNMARK
--set-xmark 0x1/0xffffffff
COMMIT
# Completed on Wed Nov 10 11:48:23 2010
# Generated by iptables-save v1.4.7 on Wed Nov 10 11:48:23 2010
*filter
:INPUT ACCEPT [8435:541409]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [5439:343824]
-A INPUT -j LOG --log-level 7
COMMIT
# Completed on Wed Nov 10 11:48:23 2010
/
Any help will be appreciated!
Regards
Artemis
--
Artemis Braja | System Administrator
T +355 4 4400123 | F +355 4 225 11 33
M +355 67 40 40 202 |www.primo.al <http://www.primo.al>
Rr. Donika Kastrioti #4| Tirana, Albania