+ Responder ao Tópico



  1. #1

    Padrão porta 3128 não levanta nem com viagra!!!

    Ola pessoa mais uma vez estou precisando da ajuda de vc´s.
    instalei o squid configureio squid.conf pra rodar em 3 placas de rede tudo ok, o problema eo seguinte quando vou testar a porta 3128 ela não navega.
    Alguem aki pode me ajudar?

  2. #2

    Padrão porta 3128 não levanta nem com viagra!!!

    Cara,

    Como vc esta redirecionando o trafego para a porta 3128???

    [] Dotta :twisted:

  3. #3

    Padrão porta 3128 não levanta nem com viagra!!!

    to fazendo assim
    iptables -t nat -A PREROUTING -i FACE -p tcp --dport 80 -j REDIRECT --to-port 3128

    e o squid.conf ta assim


    http_port 192.168.0.1:3128
    http_port 193.168.0.1:3128
    http_port 193.168.1.1:3128
    http_port 193.168.2.1:3128
    http_port 194.168.0.1:3128
    http_port 194.168.1.1:3128

    #hierarchy_stoplist cgi-bin ?
    #acl QUERY urlpath_regex cgi-bin ?
    #no_cache deny QUERY

    # memoria usada:
    cache_mem 128 MB

    #esvazia o cache:
    cache_swap_low 90
    cache_swap_high 93

    maximum_object_size 6144 KB
    minimum_object_size 0 KB

    maximum_object_size_in_memory 100 KB

    ipcache_size 1024
    ipcache_low 90
    ipcache_high 93

    cache_replacement_policy lru
    memory_replacement_policy lru

    # disco usado (5gb) :
    cache_dir ufs /var/cache/squid/cache 5000 16 256

    cache_access_log /var/log/squid/access.log
    cache_log /var/log/squid/cache.log
    cache_store_log /var/log/squid/store.log

    visible_hostname servidor

    auth_param basic children 5
    auth_param basic realm Squid proxy-caching web server
    auth_param basic credentialsttl 2 hours

    refresh_pattern ^ftp: 1440 20% 10080
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern . 0 20% 4320

    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl rede1 src 192.168.0.0/30
    acl rede2 src 193.168.0.0/30
    acl rede3 src 193.168.1.0/30
    acl rede4 src 193.168.2.0/30
    acl rede5 src 194.168.0.0/30
    acl rede6 src 194.168.1.0/30

    acl to_localhost dst 127.0.0.0/8
    acl SSL_ports port 443 563
    acl Safe_ports port 80 # http
    acl Safe_ports port 21 # ftp
    acl Safe_ports port 443 563 # https, snews
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl CONNECT method CONNECT

    http_access allow localhost
    http_access allow rede1
    http_access allow rede2
    http_access allow rede3
    http_access allow rede4
    http_access allow rede5
    http_access allow rede6

    http_access allow manager localhost
    http_access deny manager
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access deny all
    http_reply_access allow all

    icp_access allow all

    cache_effective_user proxy
    cache_effective_group proxy

    httpd_accel_port 80
    httpd_accel_host virtual
    httpd_accel_with_proxy on
    httpd_accel_uses_host_header on

  4. #4

    Padrão porta 3128 não levanta nem com viagra!!!

    Citação Postado originalmente por tianguapontocom
    to fazendo assim
    iptables -t nat -A PREROUTING -i FACE -p tcp --dport 80 -j REDIRECT --to-port 3128
    Caro,

    só redirecionar o trafego pra 3128 nao adianta. Vc tem que abrir a porta 3128 com regras de input pra sua rede.

    :good:

  5. #5
    pilantrox
    Visitante

    Padrão porta 3128 não levanta nem com viagra!!!

    tenta deixar na linha da porta soh a porta mesmo sem ip....

    http_port 3128

    Citação Postado originalmente por tianguapontocom
    to fazendo assim
    iptables -t nat -A PREROUTING -i FACE -p tcp --dport 80 -j REDIRECT --to-port 3128

    e o squid.conf ta assim


    http_port 192.168.0.1:3128
    http_port 193.168.0.1:3128
    http_port 193.168.1.1:3128
    http_port 193.168.2.1:3128
    http_port 194.168.0.1:3128
    http_port 194.168.1.1:3128

    #hierarchy_stoplist cgi-bin ?
    #acl QUERY urlpath_regex cgi-bin ?
    #no_cache deny QUERY

    # memoria usada:
    cache_mem 128 MB

    #esvazia o cache:
    cache_swap_low 90
    cache_swap_high 93

    maximum_object_size 6144 KB
    minimum_object_size 0 KB

    maximum_object_size_in_memory 100 KB

    ipcache_size 1024
    ipcache_low 90
    ipcache_high 93

    cache_replacement_policy lru
    memory_replacement_policy lru

    # disco usado (5gb) :
    cache_dir ufs /var/cache/squid/cache 5000 16 256

    cache_access_log /var/log/squid/access.log
    cache_log /var/log/squid/cache.log
    cache_store_log /var/log/squid/store.log

    visible_hostname servidor

    auth_param basic children 5
    auth_param basic realm Squid proxy-caching web server
    auth_param basic credentialsttl 2 hours

    refresh_pattern ^ftp: 1440 20% 10080
    refresh_pattern ^gopher: 1440 0% 1440
    refresh_pattern . 0 20% 4320

    acl all src 0.0.0.0/0.0.0.0
    acl manager proto cache_object
    acl localhost src 127.0.0.1/255.255.255.255
    acl rede1 src 192.168.0.0/30
    acl rede2 src 193.168.0.0/30
    acl rede3 src 193.168.1.0/30
    acl rede4 src 193.168.2.0/30
    acl rede5 src 194.168.0.0/30
    acl rede6 src 194.168.1.0/30

    acl to_localhost dst 127.0.0.0/8
    acl SSL_ports port 443 563
    acl Safe_ports port 80 # http
    acl Safe_ports port 21 # ftp
    acl Safe_ports port 443 563 # https, snews
    acl Safe_ports port 70 # gopher
    acl Safe_ports port 210 # wais
    acl Safe_ports port 1025-65535 # unregistered ports
    acl Safe_ports port 280 # http-mgmt
    acl Safe_ports port 488 # gss-http
    acl Safe_ports port 591 # filemaker
    acl Safe_ports port 777 # multiling http
    acl CONNECT method CONNECT

    http_access allow localhost
    http_access allow rede1
    http_access allow rede2
    http_access allow rede3
    http_access allow rede4
    http_access allow rede5
    http_access allow rede6

    http_access allow manager localhost
    http_access deny manager
    http_access deny !Safe_ports
    http_access deny CONNECT !SSL_ports
    http_access deny all
    http_reply_access allow all

    icp_access allow all

    cache_effective_user proxy
    cache_effective_group proxy

    httpd_accel_port 80
    httpd_accel_host virtual
    httpd_accel_with_proxy on
    httpd_accel_uses_host_header on