Access denied after following 'Transparent caching with FreeBSD' (FAQ 17)

From: Barry van Dijk <>
Date: Fri, 29 Oct 1999 18:02:29 +0200


At first it seemed like everything worked ok. Log file was growing
as I expected. Everybody could browse anywhere through the proxy,
so far so good.

But then I saw in my logfile that requests from outside where denied.

941209329.854 76 TCP_DENIED/403 986 GET
> - NONE/- -

IP address is from outside. domain is one of my virtual hosts (Apache)

How can someone be stopped by my Proxy server?

This is what I used on my Cisco 2610 router:

access-list 110 deny tcp host any eq www
access-list 110 permit tcp any any eq www
route-map proxy-redirect permit 10
 match ip address 110
 set ip next-hop
int eth0/0
 ip policy route-map proxy-redirect

FreeBSD 3.0 with IPFIREWALL(_FORWARD) in kernel, with
the following rules:

ipfw add 49 allow tcp from to any
ipfw add 50 fwd,3128 tcp from any to any 80

Any ideas?

So from the inside everything works just fine, but people from the
outside can't connect to my webserver anymore...


Received on Fri Oct 29 1999 - 10:12:13 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:49:07 MST