Hi list,
I have been struggling with this problem for five days now, consulted the FAQ's, the example and lots of Google, but I seem to be missing something and was hoping somebody would be able to point me in the right direction.
I am trying to use Squid as reverse proxy in our DMZ for several servers on the inside. What I have build so far is this:
Internet------firewall-----Squid-----firewall-----internal servers
The problem I am facing is the following error message I get when accessing from the outside world.
The requested URL could not be retrieved
________________________________________
While trying to retrieve the URL: /
The following error was encountered:
* Invalid URL
Some aspect of the requested URL is incorrect. Possible problems:
* Missing or incorrect access protocol (should be `http://'' or similar)
* Missing hostname
* Illegal double-escape in the URL-Path
* Illegal character in hostname; underscores are not allowed
I have connectivity from outside to Squid (hence the above message), the Squid box can talk to both the inside servers and the outside world, DNS is working correctly (both inside and outside), and the inside servers can reach the Squid box. Now the strange thing is that when accessing Squid from the inside, I also get this message.
Please find my config below.
======================================================================================================================
ssl_unclean_shutdown on
# Squid luistert op...
#
http_port 80 accel defaultsite=www.meandermc.nl vhost
# interne BackendServers definieeren
# cache_peer op SSL
# Server 3 webserver
cache_peer 10.32.31.114 parent 80 0 no-query originserver login=PASS name=vhost3
acl vhost3_domains dstdomain kiwiextern.meandermc.nl
cache_peer_access vhost3 allow vhost3_domains
http_access allow vhost3_domains
#Access Control List
# Server ACL's
acl webserver dst 10.32.31.114
#Connection ACL
acl manager proto cache_object
acl local src 10.0.0.0/255.0.0.0
# Port ACL
acl Safe_ports port 80 443 1494 2598 # http
acl SSL_ports port 443 1494 2598 # https
acl purge method PURGE
acl CONNECT method CONNECT
# http access
http_access allow CONNECT SSL_ports
http_access allow CONNECT Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow manager localhost
http_access allow webserver
miss_access allow all
miss_access allow webserver
http_access allow url_allow
http_access allow SSL_ports
http_access deny !Safe_ports
http_access deny !SSL_ports
http_access deny all
miss_access deny all
http_access deny manager
never_direct allow all
#geen Cacheing
no_cache deny all
visible_hostname portal.meandermc.nl
deny_info TCP_RESET all
#timeout en error handling
retry_on_error on
read_timeout 15 minutes
half_closed_clients off
memory_pools on
positive_dns_ttl 24 hours
negative_dns_ttl 30 seconds
request_timeout 60 seconds
connect_timeout 4 hours
pconn_timeout 4 hours
ie_refresh on
emulate_httpd_log off
log_ip_on_direct on
==============================================================================================================
Any help is deeply appreciated!
Best regards,
Rene
Received on Tue Sep 23 2008 - 16:43:08 MDT
This archive was generated by hypermail 2.2.0 : Wed Sep 24 2008 - 12:00:03 MDT