[squid-users] Squid bypassing my firewall rules

From: Brian Schonecker <brian.schonecker@dont-contact.us>
Date: Thu, 14 Feb 2002 09:07:35 -0500


I have my Internet gateway, firewall and squid cache all on the same

I'm trying to block all access to SPINNER.COM and have been successful
UNLESS the users type in the proxy in the spinner (real player) player.
Then squid bypasses my ipchains firewall rules and allows access. I've
confirmed this for WWW and the Real Player.

If I disable proxy settings in my broswer and Real Player, then the firewall
prevents access to SPINNER.COM successfully.

My squid proxy is listening on a single physical NIC interface but I have
two IP addresses: eth0 and eth0:0 I have a
single external interface eth1:

Here's a sample of my ipchains rules that work

# Deny all traffic for SPINNER.COM - a music site
$IPCHAINS -A input -s $REMOTENET -d -j DENY -l
$IPCHAINS -A input -s $REMOTENET -d spinner.com -j DENY -l
$IPCHAINS -A input -s -d -j DENY -l

Received on Thu Feb 14 2002 - 07:07:38 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:06:22 MST