[squid-users] Squid + accessing https on a different port

From: Anuj Singh <anujhere@dont-contact.us>
Date: Thu, 16 Mar 2006 11:23:11 +0530

Greetings to everyone!
This is my first mail to the users list!
I am a n00b with squid. I am using squid-2.5.STABLE1-2 on , Redhat 9
with shorewall-3.05 firewall.
Till now everything is working fine.
On the local network as well as on my firewall machine I am facing a
problem in accesing a particular https site which works fine when I
don't use any proxy in my browser. I can access other https enabled
sites e.g. gmail , yahoo and others.
This particular site pop-ups a user name / password login page (same
as squid asks for user name and password) and then it redirects me to
the https web page on port 2038.

I see this error page:
The requested URL could not be retrieved
While trying to retrieve the URL: mail.relaxofootwear.com:2083
The following error was encountered:
    * Access Denied.
      Access control configuration prevents your request from being
allowed at this time. Please contact your service provider if you feel
this is incorrect.

The output of my logs tail -f /var/log/squid/access.log
1142443948.965 98 192.192.192.166 TCP_DENIED/403 1373 CONNECT
mail.relaxofootwear.com:2083 - NONE/- text/html
1142443955.991 21 192.192.192.166 TCP_DENIED/403 1373 CONNECT
mail.relaxofootwear.com:2083 - NONE/- text/html
1142443957.409 435 192.192.192.166 TCP_DENIED/403 1373 CONNECT
mail.relaxofootwear.com:2083 - NONE/- text/html

I edited my /etc/squid/squid.conf
acl lan src 192.192.192.0/255.255.255.0
acl password proxy_auth REQUIRED
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563 2038
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 2038 # https, snews, relaxo
acl Safe_ports port 70 # gopher

Restarted my squid /etc/iniit.d/squid restart but still the same problem!

The link to the particular site is:
http://mail.relaxofootwear.com/admin

Thanks and regards
Anuj
Received on Wed Mar 15 2006 - 22:53:14 MST

This archive was generated by hypermail pre-2.1.9 : Sat Apr 01 2006 - 12:00:04 MST