Hi ,
I had configured squid as a internet sharing proxy.
The problem is that the users behind squid proxy are not able to access my
pop3 mail server .
Following is my squid proxy configuration file
###############################################################
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80
acl Safe_ports port 81
acl Safe_ports port 21
acl Safe_ports port 22
acl Safe_ports port 23
acl Safe_ports port 25
acl Safe_ports port 109
acl Safe_ports port 110
acl Safe_ports port 995
acl Safe_ports port 5632
acl Safe_ports port 5631
acl Safe_ports port 443 563
acl Safe_ports port 70
acl Safe_ports port 210
acl Safe_ports port 1025-65535
acl Safe_ports port 280
acl Safe_ports port 488
acl Safe_ports port 591
acl Safe_ports port 777
acl Safe_ports port 3389
acl CONNECT method CONNECT
acl ourlan src 192.168.1.0/24
acl adminlan src 192.168.1.11
acl adminlan2 src 192.168.1.14
acl maillan dstdomain .e-messenger.net .rediff.com .yahoo.com .hotmail.com
.meebo.com .kproxy.com
#.hotmail.com .mail.google.com
acl badlan dstdomain .*porn*.com .*sex*.com .*desi*.com .*movies*.com
.colourful.com.au .sify.com .telegraphindia.com .telugupeople.com
.idlebrain.com .andhravilas.com .*real.com .teluguone.com
.freegamesonline.com .miniclip.com .*games*.com .*.bigfishgames.com
.freearcade.com .gamesville.com .*.msn.com .riddler.com
.play-free-games.com
# TAG: http_access
# Allowing or Denying access based on defined access lists
#
# Access to the HTTP port:
# http_access allow|deny [!]aclname ...
#
# NOTE on default values:
#
# If there are no "access" lines present, the default is to deny
# the request.
#
# If none of the "access" lines cause a match, the default is the
# opposite of the last line in the list. If the last line was
# deny, the default is allow. Conversely, if the last line
# is allow, the default will be deny. For these reasons, it is a
# good idea to have an "deny all" or "allow all" entry at the end
# of your access lists to avoid potential confusion.
#
#Default:
#http_access deny all
#
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
#
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
# Example rule allowing access from your local networks. Adapt
# to list your (internal) IP networks from where browsing should
# be allowed
#acl our_networks src 192.168.1.0/24 192.168.2.0/24
#http_access allow our_networks
# And finally deny all other access to this proxy
http_access allow localhost
http_access deny badlan
http_access allow adminlan
http_access allow adminlan2
http_access deny maillan
http_access allow ourlan
########################################################################
Please help me
Thanks in advance
Received on Fri Jun 02 2006 - 00:19:46 MDT
This archive was generated by hypermail pre-2.1.9 : Sat Jul 01 2006 - 12:00:01 MDT