> Hi,
>
> We have a firewall, with systems on both sides. If I tell squid that my
> internal domain is xyz.com, how do I get to my systems outside the
> firewall
> e.g. www.xyz.com? squid attempts to do direct connects, and fails.
>
You have to define a inside_firewall rule with "!" in front of your outside servers:
If internal domain is xxx.com and server www.xxx.com is behind the firewall:
inside_firewall !www.xxx.com xxx.com
So squid should go directly to yyy.xxx.com and go to parent firewall.xxx.com for www.xxx.com.
This doesn't work for things squid wants to do always directly (look into source code icp.c,
function icpHierarchical) and ssl requests.
To get these to work, you have to patch squid a bit. If you are interested, i can send you patches
for squid-1.1.16.
Hope this helps ...
Greetings from Austria.
<Andreas.Lamprecht@siemens.at>
Received on Tue Sep 09 1997 - 23:05:11 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:36:57 MST