Re: [squid-users] Squid 3 multi-homed on OpenSuSe 11.1 setup problem

From: Phil_Smith <smithp2_at_gmail.com>
Date: Fri, 4 Sep 2009 01:27:00 -0700 (PDT)

Firewall!!!! Say it again, Firewall!!!! Doh!
I must remember to check default settings after installation. Yes, that was
the problem.
Thanks Henrik.........

Henrik Nordstrom-5 wrote:
>
> tor 2009-09-03 klockan 06:57 -0700 skrev Phil_Smith:
>> Hi, I have installed SQUID 3 on an OpenSuSe 11.1 server fitted with 2
>> NICs.
>> NIC1 is connected to a Broadband router. NIC 2 is connected to an
>> internal
>> LAN.
>
> Ok. Not a too uncommon setup.
>
>> I followed the instructions in the squid.conf file to set the http_port
>> to
>> the internal NIC address (in this case 10.1.2.25:3128). When I try to
>> access the internet from a pc on the LAN with the proxy set to 10.1.2.25,
>> port 3128 nothing happens. Connection times out.
>
> Then you probably have a local firewall on the SuSe box which blocks LAN
> access to port 3128.
>
>> I have run SQUID in debug mode and tried connecting from the Squid server
>> wvia squidconsole, and connection works (connecting from 127.0.0.0).
>
> The loopback interface is generally not firewalled as it's only internal
> to the server..
>
>> I installed wireshark on the Squid server and ran a capture on the LAN
>> NIC
>> while trying to connect. All I saw was SYN packets from the originating
>> PC.
>> No ACKs were sent from the Squid server.
>
> Typical firewall symptoms. The SYNs reaces the NIC but is dropped by the
> local firewall before seen by the TCP/IP stack.
>
> Regards
> Henrik
>
>
>

-- 
View this message in context: http://www.nabble.com/Squid-3-multi-homed-on-OpenSuSe-11.1-setup-problem-tp25276639p25290197.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Received on Fri Sep 04 2009 - 08:27:09 MDT

This archive was generated by hypermail 2.2.0 : Fri Sep 04 2009 - 12:00:02 MDT