On Sun, 22 Oct 2000, Henrik Nordstrom wrote:
> Right. Was a bit quick there.
>
> No explanation. Blocking UDP port 3128 has not given any problems for
> me, but then I am not using Cisco for the packet filtering..
>
> Are you sure the filter is on UDP and not TCP as well?
Our Cisco engineer told me so. First he closed all ports and opened only
incoming 3130/udp, 3128/tcp, 4827/tcp and no restrictions for outgoing ports.
After that I stoped to receive any ICP requests but not HTTP. So I had to
ask him to open all udps and tcps above 1024 for outgoing and incoming,
then all started to work again.
> >
> > > Because you or your peers make use of ICP.
> >
> > But ICP uses UDP 3130 !
> >
> > > > Interesting thing happens: blocking UDP 3128 on Cisco router makes squid
> > > > not to respond to its peers. Why is that?
---------------------------------------------
Max V. Bouglacoff
Co-Administrator & Programmer of ISP `Farlep'
vesemir@iname.com
-- To unsubscribe, see http://www.squid-cache.org/mailing-lists.htmlReceived on Sun Oct 22 2000 - 08:18:43 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:55:50 MST