Please DON'T redefine "all". It is meant to mean "everyone everywhere".
For your own networks, define another acl.
Other than this I could not see any obvious sources to troubles.
Regards
Henrik Nordstrom
Squid Hacker
Rafael Bayona wrote:
>
> Hi, I'm trying to setup a proxy server, I'm using redHat 7.1 , I believe
> Squid version is 2.3-Stable4-10.
>
> The machine it is the gateway, DNS, mailserver and router for the company.
> It has two network cards, eth0 is conected to the internet, eth1 to the LAN.
> I can see the machine from the LAN, and in the clients internet
> configuration (Windows NT network) to use my server as proxy (195.69.0.245
> port 3128). But, when I tried to connect, this is the error message I get:
>
> ERROR
> The requested URL could not be retrieved
> ----------------------------------------------------------------------------
> ----
> While trying to retrieve the URL: http://my.yahoo.com/
> The following error was encountered:
> Access Denied.
> Access control configuration prevents your request from being allowed at
> this time. Please contact your service provider if you feel this is
> incorrect.
> Your cache administrator is root.
> ----------------------------------------------------------------------------
> ----
> Generated Thu, 22 Nov 2001 07:09:30 GMT by ns1.setecsa.com
> (Squid/2.3.STABLE4)
>
> I made this changes in the squid.conf file:
>
> ident_lookup on
> acl all src 195.69.0.0/24
> acl identifiquense src 195.69.0.0/255.255.255.0
> acl nivel1 ident eperilla
> acl nivel2 ident auribe
> acl nivel3 ident rbayona acarrill uhernand
> acl manager proto cache_object
> acl localhost src 127.0.0.1/255.255.255.255
> acl SSL_ports port 443 563
> acl Safe_ports port 80 21 443 563 70 210 1025-65535
> acl Safe_ports port 280 # http-mgmt
> acl Safe_ports port 488 # gss-http
> acl Safe_ports port 591 # filemaker
> acl Safe_ports port 777 # multiling http
> acl CONNECT method CONNECT
> ident_lookup_access allow identifiquense
> ident_lookup_access deny all
> http_access allow manager localhost
> http_access deny manager
> http_access deny !Safe_ports
> http_access deny CONNECT !SSL_ports
> http_access allow localhost nivel1 nivel2 nivel3
> http_access allow all
>
> I restart squid service every time I change the squid.conf file.
>
> But the error message remains. I know I might be making a fool mistake, but
> I would love if somebody can help me?
>
> I want squid to prompt for username and password.... How do I do that?
>
> Thanks a lot,
>
> Rafael
Received on Thu Nov 22 2001 - 12:39:47 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:04:26 MST