RE: [squid-users] FTP Thru PROXY CONFIGURATION HELP!!

Squid is HTTP proxy and not FTP proxy; you need to check your firewall rules
for this. Check what modules are loaded in your iptables.Try loading
ip_nat_ftp module in iptables-config.

Thank you.

Regards,
+++++++++++++++++++++++++++
Technical Support
Excelize Software Pvt Ltd
www.excelize.com
+++++++++++++++++++++++++++

attached mail follows:

Hey there,

I am using a client called: FlashFXP and in the proxy settings I choose:
"HTTP PROXY (Connection Tunnel)"

So yes client supports HTTP Proxy, it's only the squid that is blocking it
as it shows on these logs.
It is actually blocking all ports besides 80 and 8080 in order to block all
P2P / Torrents programs from accessing the net.

I only need to re-enable FTP using any port! But still blocking other
programs from accessing these ports.

Thanks.

----- Original Message -----
From: Adrian Chadd
[mailto:adrian@creative.net.au]
To: Charbel Maroun
[mailto:amadeus@fastnetonline.com]
Cc: squid-users@squid-cache.org
Sent:
Thu, 28 Feb 2008 02:35:55 +0200
Subject: Re: [squid-users] FTP Thru PROXY
CONFIGURATION HELP!!

> Is your ftp client sending requests to squid as HTTP?
>
> Squid is a _HTTP_ proxy at the moment. It can gateway _TO_ FTP, but it
> doesn't speak FTP
> to the client.
>
>
>
> Adrian
>
> On Wed, Feb 27, 2008, Charbel Maroun wrote:
> > Hello,
> >
> > I've setup squid to solely allow HTTP requests to access the proxy.
> >
> > I need to know how to allow any FTP request to any IP/port to access the
> proxy using TSL or SSL as well, but I dont want any P2P / Torrent or >
1024
> port application other than Browsing and FTP to access the proxy.
> >
> > How to setup squid to do so ?
> >
> >
> > FTP CLIENT PROXY CONNECTION QUOTE:
> >
> > [18:06:25] [R] Connection failed (Connection lost)
> > [18:06:30] [L] Connecting to FTP WEBSITE Proxy -> IP=proxy.XXXXXXXXX.com
> PORT=8080 (attempt # 1)
> > [18:06:30] [L] HTTP/1.0 403 Forbidden
> > [18:06:30] [L] Server: squid
> > [18:06:30] [L] Date: Tue, 26 Feb 2008 16:09:18 GMT
> > [18:06:30] [L] Content-Type: text/html
> > [18:06:30] [L] Content-Length: 1067
> > [18:06:30] [L] Expires: Tue, 26 Feb 2008 16:09:18 GMT
> > [18:06:30] [L] X-Squid-Error: ERR_ACCESS_DENIED 0
> > [18:06:30] [L] X-Cache: MISS from xxxxxxx.squid
> > [18:06:30] [L] X-Cache-Lookup: NONE from xxxxxxx.squid:8080
> > [18:06:30] [L] Via: 1.0 xxxxxxx.squid:8080 (squid)
> > [18:06:30] [L] Proxy-Connection: close
> > [18:06:30] [L] <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01
> Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
> > [18:06:30] [L] <HTML><HEAD><META HTTP-EQUIV="Content-Type"
> CONTENT="text/html; charset=iso-8859-1">
> > [18:06:30] [L] <TITLE>ERROR: The requested URL could not be
> retrieved</TITLE>
> > [18:06:30] [L] <STYLE
>
type="text/css"><!--BODY{background-color:#ffffff;font-family:verdana,sans-s
erif}PRE{font-family:sans-serif}--></STYLE>
> > [18:06:30] [L] </HEAD><BODY>
> > [18:06:30] [L] <H1>ERROR</H1>
> > [18:06:30] [L] <H2>The requested URL could not be retrieved</H2>
> > [18:06:30] [L] <HR noshade size="1px">
> > [18:06:30] [L] <P>
> > [18:06:30] [L] While trying to retrieve the URL:
> > [18:06:30] [L] ftp.website.com:28465
> > [18:06:30] [L] <P>
> > [18:06:30] [L] The following error was encountered:
> > [18:06:30] [L] <UL>
> > [18:06:30] [L] <LI>
> > [18:06:30] [L] <STRONG>
> > [18:06:30] [L] Access Denied.
> > [18:06:30] [L] </STRONG>
> > [18:06:30] [L] <P>
> > [18:06:30] [L] Access control configuration prevents your request from
> > [18:06:30] [L] being allowed at this time. Please contact your service
> provider if
> > [18:06:30] [L] you feel this is incorrect.
> > [18:06:30] [L] </UL>
> > [18:06:30] [L] <P>Your cache administrator is <A
> HREF="mailto:admin@xxxxxxx.com">admin@xxxxxxx.com</A>.
> > [18:06:30] [L] <BR clear="all">
> > [18:06:30] [L] <HR noshade size="1px">
> > [18:06:30] [L] <ADDRESS>
> > [18:06:30] [L] Generated Tue, 26 Feb 2008 16:09:18 GMT by xxxxxxx.squid
> (squid)
> > [18:06:30] [L] </ADDRESS>
> > [18:06:30] [L] </BODY></HTML>
> > [18:06:30] [L] Connection failed (Connection lost)
> >
> >
> >
> > Thanks.
>
> --
> - Xenion - http://www.xenion.com.au/ - VPS Hosting - Commercial Squid
> Support -
> - $25/pm entry-level VPSes w/ capped bandwidth charges available in WA -
>
Received on Wed Feb 27 2008 - 23:22:10 MST