HI all,
Can anyone help with the above subject please?
I have Squid and DansGuardian installed. DG is listening on 8080 which
connects to Squid on 3128. The SSL connection is directed to 3128 as per DG
website FAQ. I am expecting Squid to tunnel directly thru the proxy with a
CONNECT statement. When I connect to any https url, Squid denies the
connection as access denied. My squid.conf file is as default except for the
listening port (8080 default -> 3128 ). I have played arounf with the
settings:
#Defaults:
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
The access.log shows the following:
192.168.0.1 TCP_DENIED/403 1023 CONNECT ibankon.barclays.co.uk:443 - NONE/- -
I have tried to include the 403 in the SSL_ports line and restart, but no
diff seen. I dont understand what I need to do.
Any help would be appreciated.
Dave.
Basic config:
192.168.0.1 Mandrake 8.0 Celeron 466 256MB
192.168.0.10 Mandrake 8.0 P120 160MB exports all home ares via NFS exports.
Connected by NIC twisted pair.
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
