Boniforti Flavio wrote:
>
> Hey!
>
> I would like to use ipchains or iptables on my 2.4.2 kernel on which squid
> is running quite well.
>
> I'm using the squid version included in RedHat 7.1.
> I'm also thinkin' about upgrading my kernel to 2.4.10
If you are using Linux-2.4 then you should use iptables, not ipchains.
> Are there any known issues I have to consider before activating firewalling
> in regard to squid's working environment???
Not really, except making sure the firewall allows what Squid needs.
Squid needs to
a) Accept connections from your users on its http_port(s).
b) Make outgoing TCP connections
c) Accept incoming TCP connections for FTP data transfers
d) Make UDP queries for DNS data to/from your name servers.
e) Maybe make ICP queries to your peers if you have peers and are
using ICP.
Regards
Henrik Nordström
Squid Hacker
Received on Tue Oct 09 2001 - 03:22:55 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:02:38 MST