Re: [squid-users] Transparent Proxy logging

Thanks Joe.

After reading your e-mail, I decided to start from "scratch". I run RedHat
7.1 with all the updates applied. I have a two-computer LAN in the house and
use ppp to connect to the Internet. I altered squid.conf per the Squid
mini-How-to:

    httpd_accel_host virtual
    httpd_accel_port 80
    httpd_accel_with_proxy on
    httpd_accel_uses_host_header on

I then used RedHat's setup to redo the ipchains from scratch. I use the high
security option, trust my eth0 and allow smtp. I then insert the following
rule:

ipchains -I input -p tcp -d 0/0 80 -j REDIRECT 3128

So, my ipchains status looks like the following (I welcome comments on this
because stuff I've read says it is better to have policy's of DENY but for
some reason RedHat uses ACCEPT):

Chain input (policy ACCEPT):
target prot opt source destination ports
REDIRECT tcp ------ 0.0.0.0/0 0.0.0.0/0 * -> 80
=> 3128
ACCEPT tcp -y---- 0.0.0.0/0 0.0.0.0/0 * -> 25
ACCEPT all ------ 0.0.0.0/0 0.0.0.0/0 n/a
ACCEPT all ------ 0.0.0.0/0 0.0.0.0/0 n/a
ACCEPT udp ------ 207.69.188.185 0.0.0.0/0 53 -> *
ACCEPT udp ------ 207.69.188.186 0.0.0.0/0 53 -> *
REJECT tcp -y---- 0.0.0.0/0 0.0.0.0/0 * -> *
REJECT udp ------ 0.0.0.0/0 0.0.0.0/0 * -> *
Chain forward (policy ACCEPT):
Chain output (policy ACCEPT):

I then did a restart on Squid. Results are the same. I use Konqueror which
is configured to use the proxy and entries are logged into access.log. I use
Netscape which remains set for direct connection and no entries are logged.

Thanks. I hope I provided enough info. I'm using RedHat's rpm of Squid
which is 2.3STABLE4

Tim

On Monday 10 September 2001 22:45, Joe Cooper wrote:
> It is not working. If you get entries with the browser configured to
> use the proxy, but none without, then something is wrong with your
> configuration and you are no longer using the cache.
>
> What are you ipchains rules? And did you configure Squid to operate
> transparently? (If you hadn't configured Squid for transparency, but
> had the ipchains rules configured correctly, you would receive a no URL
> error from Squid, so I must assume your problem is in the ipchains rules.)
>
> Tim Rohrer wrote:
> > Seeing as there is a lot of traffic on this list and I've seen other
> > posts get answered quickly, I can only assume that my post was so
> > confusing that noone could answer it :-)
> >
> > I have read the docs and configured my system for transparent proxy. I
> > used ipchains to redirect 80 to 3128. What I've noticed is that unless I
> > configure the browser to use the proxy server, I don't getting any
> > entries in the access.log. How do I know it is working and how do I log
> > the accesses?
> >
> > Thanks.
>
> --
> Joe Cooper <joe@swelltech.com>
> Affordable Web Caching Proxy Appliances
> http://www.swelltech.com
Received on Tue Sep 11 2001 - 03:43:19 MDT