Looks like
a) You have removed the Safe_ports feature from your squid.conf.
b) You have http_access rules giving users outside your own network
access to the proxy.
Please check your squid.conf again. If in doubt post your http_access
rules.
http_access is the important directive. miss_access is only meant to be
used for enforcing sibling relations, not as a method to control access
to the proxy.
Regards
Henrik
Mahmood Ahmed wrote:
>
> HI all!
>
> i am running squid-2.4STABLE7-4 on RED HAT 8.0, and using iptables to
> intercept the http traffic. Since last 2 days i have noticed that my cache
> is being miss accessd by 5-6 different hosts and all of them are using my
> cache to retrieve port 25 (SMTP port) traffic from various servers. here
> is what i get on my access.log
>
> 1042838519.602 941 66.111.54.10 TCP_MISS/200 522 CONNECT 64.12.137.121:25
> -DIRECT/ 64.12.137.121 -
> 1042838520.602 941 207.44.200.18 TCP_MISS/000 0 CONNECT 193.215.68.18:25
> -NONE/ --
>
> on cache.log
>
> 2003/01/18 02:45:24| sslReadServer: FD 279: read failure: (104) connection
> reset by peer
>
> my acl config in squid allows only my network traffic and miss_access
> allows only the acl for my network. i have not configured my cache for a
> parent sibbling relationship. I even tried to block such ip addresses by
> iptables but all invane.
>
> as the network's out going traffic is touching its peek due to this
> problem me and my clients are facing very poor performance. this thing is
> driving me crazy as i cant find any remedy.
>
> can any one out there help me on this, any help would be appriciated.
>
> Mahmood Ahmed
> Network Engineer
> ultra.net.pk
Received on Fri Jan 17 2003 - 18:09:33 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:42 MST