[squid-users] transparent squid not working

Hi community, im tyin to configure a squid transparent proxy, i obtain internet thanks to a parent proxy. I have 3 Ip declare on my iptables config file 172.16.1.245 is the administration ip, 172.16.1.246 is my parent proxy ip and 192.168.137.0/24 is the lan segment where my client are. This is

Re: [squid-users] Transparent squid configuration problem.

ed..." Now all is working at test environment. I think thread is closed, thanks for help! It was cool! From: squid-users On Behalf Of L.P.H. van Belle Sent: Thursday, August 23, 2018 5:22 PM To: squid-users@lists.squid-cache.org Subject: Re: [squid-users] Transparent squid configuration pro

Re: [squid-users] Transparent Squid Proxy - ERR_EMPTY_RESPONSE

On Monday 27 August 2018 at 16:04:16, zo_av wrote: > I'm trying to redirect all of my subnet traffic to a transparent squid > proxy using iptables on the router gateway (the squid proxy is located in > the LAN). So long as you use policy routing for this, and not address translation, it's possib

[squid-users] Transparent Squid Proxy - ERR_EMPTY_RESPONSE

I'm trying to redirect all of my subnet traffic to a transparent squid proxy using iptables on the router gateway (the squid proxy is located in the LAN). I can browse sites that are https but can't access http sites, the error that appears in the browser "ERR_EMPTY_RESPONSE" also I got this er

Re: [squid-users] Transparent squid configuration problem.

On 24/08/18 9:05 AM, Rodrigo Cunha wrote: > Tks, you have how-to for configure transparent proxy in squid current > version or in old versions to https?I want test in my envirimont lab. > That would be the SSL-Bump features I mentioned to you the other day. The latest info is at

Re: [squid-users] Transparent squid configuration problem.

s! > > > > Is there some workaround? May be I can to put that’s kind of sites > > without filtering? > > > > __ __ > > > > *From:*squid-users > <mailto:squid-users-boun...@lists.squid-cache.org>> *On Behalf Of > >

Re: [squid-users] Transparent squid configuration problem.

> > *From:*squid-users <mailto:squid-users-boun...@lists.squid-cache.org>> *On Behalf Of > *L.P.H. van Belle > *Sent:* Thursday, August 23, 2018 4:38 PM > *To:* squid-users@lists.squid-cache.org > <mailto:squid-users@lists.squid-cac

Re: [squid-users] Transparent squid configuration problem.

t’s kind of sites without > filtering? > > > > *From:* squid-users *On > Behalf Of *L.P.H. van Belle > *Sent:* Thursday, August 23, 2018 4:38 PM > *To:* squid-users@lists.squid-cache.org > *Subject:* Re: [squid-users] Transparent squid configuration problem. > > > > i

Re: [squid-users] Transparent squid configuration problem.

.  Change "bank" in habr.com   ;-)      Greetz,   Louis   Van: ??? ? ? [mailto:a.zuba...@generium.ru] Verzonden: donderdag 23 augustus 2018 15:42 Aan: L.P.H. van Belle; squid-users@lists.squid-cache.org Onderwerp: RE: [squid-users] Transparent squid configurati

Re: [squid-users] Transparent squid configuration problem.

Thank you, Louis! Is there some workaround? May be I can to put that's kind of sites without filtering? From: squid-users On Behalf Of L.P.H. van Belle Sent: Thursday, August 23, 2018 4:38 PM To: squid-users@lists.squid-cache.org Subject: Re: [squid-users] Transparent squid configur

Re: [squid-users] Transparent squid configuration problem.

with a CAA/DANE dns record.   Greetz,   Louis       Van: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] Namens ??? ? ? Verzonden: donderdag 23 augustus 2018 15:22 Aan: squid-users@lists.squid-cache.org Onderwerp: [squid-users] Transparent squid configura

[squid-users] Transparent squid configuration problem.

Hi! I have some problems with configuration of squid. What I need: http/https transparent proxy server based on Debian Stretch with some blacklisted and whitelisted domains I've used many tutorials and squid.wiki through installation process and it almost work! But I have the last problem. Whe

Re: [squid-users] Transparent Squid

On 29/11/17 02:03, Matus UHLAR - fantomas wrote: On 27.11.17 11:24, LINGYUN ZHAO wrote: I need Squid as a real 'transparent' proxy on Fedora without changing 5 tuples. Is it possible? tuples? The technical name for an entry in the system NAT table is a 3-tuple or 4-tuple. Though what a "

Re: [squid-users] Transparent Squid

On 27.11.17 11:24, LINGYUN ZHAO wrote: I need Squid as a real 'transparent' proxy on Fedora without changing 5 tuples. Is it possible? tuples? The setup is simple as Client -- Fedora Server is fedora NAT device and also running squid? The Squid version is 3.5.20.The key co

[squid-users] Transparent Squid

Dear Squid team, I need Squid as a real 'transparent' proxy on Fedora without changing 5 tuples. Is it possible? The setup is simple as Client -- Fedora Server The Squid version is 3.5.20.The key configuration on Squid as below: http_port 0.0.0.0:3128 transparent acl lo

Re: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra

Diladele B.V. From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On Behalf Of Hardik Dangar Sent: Thursday, February 9, 2017 3:44 PM To: Eliezer Croitoru ; Squid Users Subject: Re: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra hey eliezer, thanks for quick

Re: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra

gt; > *From:* hardikdan...@gmail.com [mailto:hardikdan...@gmail.com] *On Behalf > Of *Hardik Dangar > *Sent:* Wednesday, February 8, 2017 10:17 PM > *To:* Eliezer Croitoru > *Cc:* Squid Users > *Subject:* Re: [squid-users] Transparent Squid issue with Appstore in > MacOS Sierra &g

Re: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra

: elie...@ngtech.co.il > > > From: squid-users [mailto:squid-users-boun...@lists.squid-cache.org] On > Behalf Of Hardik Dangar > Sent: Tuesday, February 7, 2017 9:06 PM > To: Squid Users > Subject: [squid-users] Transparent Squid issue with Appstore in MacOS > Sierra > > Hello,

Re: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra

Hardik Dangar Sent: Tuesday, February 7, 2017 9:06 PM To: Squid Users Subject: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra Hello, Here is some information about my squid version, Squid Cache: Version 3.5.23 Service Name: squid configure options: '--prefix

Re: [squid-users] Transparent Squid issue with Appstore in MacOS Sierra

here is my squid.conf http://pastebin.com/raw/9BTcpVkL Here is what log looks like when i grep packates from Apple Devices when app store is opened. 1486551793.635742 192.168.1.12 TAG_NONE/200 0 CONNECT 17.110.234.27:443 - ORIGINAL_DST/17.110.234.27 - 1486551796.343 30610 192.168.1.12 TAG_NO

[squid-users] Transparent Squid issue with Appstore in MacOS Sierra

Hello, Here is some information about my squid version, Squid Cache: Version 3.5.23 Service Name: squid configure options: '--prefix=/usr' '--localstatedir=/var/squid' '--libexecdir=/lib/squid' '--srcdir=.' '--datadir=/share/squid' '--sysconfdir=/etc/squid' '--with-default-user=proxy' '--with-l

Re: [squid-users] Transparent Squid Proxy Server

I'm using 3.5 with transparent server first bumping in ~100 deployments so far, it works just fine, excluding with SNI and everything. On 12/07/2015 10:58 am, "Yuri Voinov" wrote: > Man, > > 3.5.x don't work with server-first. It must be for backward compatibility > - but don't be. > > Also, AFA

Re: [squid-users] Transparent Squid Proxy Server

Man, 3.5.x don't work with server-first. It must be for backward compatibility - but don't be. Also, AFAIK, 3.5.x series don't work with transparent NAT interception in bump mode. Fake certs are generated, but with IP against hostnames (in all my test installations). So, if you strictly ne

Re: [squid-users] Transparent Squid Proxy Server

Hi Below is my squid file , I have configured squid 3.5.3 with ssl, but I cant filter https traffic and also in access log I cant see https in access logs. # # Recommended minimum configuration: # # Example rule allowing access from your local networks. # Adapt to list your (internal) IP networ

Re: [squid-users] Transparent Squid Proxy Server

Hi Thanks for reply. I am trying to cache youtube using this wiki http://wiki.squid-cache.org/ConfigExamples/DynamicContent/YouTube but I cant cache youtube. I want to cache facebook and youtube. SSl certificate installation that I have to do . Please suggest some links. On Thu, Jun 4, 2015 at 6

Re: [squid-users] Transparent Squid Proxy Server

On 5/06/2015 12:55 a.m., Reet Vyas wrote: > Thank you everyone for helping me to setup squid , Now its working but in > access.logs I only see tcp_miss if m using same website. I mean squid is > not caching You will get MISS a fair bit more with intercepted traffic than with normal proxied traffi

Re: [squid-users] Transparent Squid Proxy Server

Thank you everyone for helping me to setup squid , Now its working but in access.logs I only see tcp_miss if m using same website. I mean squid is not caching Logs 43 192.168.0.198 TCP_MISS/200 384461 GET http://www.horlicksquad.com/images/tc-pic.png - HIER_DIRECT/52.74.133.61 image/png 14334220

Re: [squid-users] Transparent Squid Proxy Server

On 4/06/2015 6:43 p.m., Reet Vyas wrote: > Hi, > > I changed the iptables still no luck :( but I am using squid 3.3 only can I > didn't understand why you have configured 3129 ,3130 and 3128 port? Because due to historic (browser war politics) reasons there are three different protocol message sy

Re: [squid-users] Transparent Squid Proxy Server

Hi I got it half working My chat is working I can search google, but I cant browse websites , My configuration now acl mynet src 116.72.152.37 192.168.0.0/16# RFC1918 possible internal network acl SSL_ports port 443 acl Safe_ports port 80# http acl Safe_ports port 21# ftp acl

Re: [squid-users] Transparent Squid Proxy Server

Hi, I changed the iptables still no luck :( but I am using squid 3.3 only can I didn't understand why you have configured 3129 ,3130 and 3128 port? On Wed, Jun 3, 2015 at 1:04 PM, Klavs Klavsen wrote: > Your client needs to use your squid server as default gateway. > > And then you need the ipt

Re: [squid-users] Transparent Squid Proxy Server

Your client needs to use your squid server as default gateway. And then you need the iptables rules I wrote about to direct traffic into squid for certain ports. Reet Vyas wrote on 06/03/2015 08:50 AM: Hi Thanks for reply. As of now we don't have router I have directly connected my machine t

Re: [squid-users] Transparent Squid Proxy Server

Hi Thanks for reply. As of now we don't have router I have directly connected my machine to internet and other to LAN and I have configured client machine ubuntu to test squid which is in switch where other users are connected using gateway of router 192.168.0.1. I read your valuable suggestions,

Re: [squid-users] Transparent Squid Proxy Server

Amos Jeffries wrote on 06/02/2015 04:34 PM: On 3/06/2015 1:20 a.m., Klavs Klavsen wrote: I have this in my squid server for it to work: The key words there are ... *in my Squid server* indeed :) NOTE to Klavs: loading the "multiport" kernel module seems overkill for a single-port match

Re: [squid-users] Transparent Squid Proxy Server

On 3/06/2015 1:20 a.m., Klavs Klavsen wrote: > I have this in my squid server for it to work: The key words there are ... *in my Squid server* Reet did it on the router. Which was the first mistake. The router needs routing rules (not NAT) to deliver the clients packets to Squid machine where th

Re: [squid-users] Transparent Squid Proxy Server

I have this in my squid server for it to work: *mangle :PREROUTING ACCEPT [190:618576] :INPUT ACCEPT [190:618576] :FORWARD ACCEPT [0:0] :OUTPUT ACCEPT [163:41506] :POSTROUTING ACCEPT [166:42334] -A PREROUTING -d $myip/32 -p tcp -m multiport --dports 3129 -m comment --comment "002 drop squid direc

[squid-users] Transparent Squid Proxy Server

I am trying to configure transparent squid proxy on ubuntu 14.04 Server and squid 3.3 version I am using My Lan and Wan settings eth0 Link encap:Ethernet HWaddr 00:1e:67:cf:59:74 inet addr:116.72.*.* Bcast:116.72.155.255 Mask:255.255.252.0 inet6 addr: fe80::21e:67ff:fe