[squid-users] msn messenger login issue

From: serfer <iftikhar78_at_hotmail.com>
Date: Mon, 2 Nov 2009 22:39:23 -0800 (PST)

I have configured squid-2.6 and Dansguardian 2.10.0.3 on RHEL5 for caching
and web filtering for my office internet users. i m facing problems in
loging into msn messenger, i have put acls in squid and msn ips in
dansguardian exceptionsite list but still not getting msn messenger login,
my squid acls for allowing msn messenger and dansguardian exceptionsite list
is as under.

Squid Acls (there is no acl in my squid.conf to block msn msgr)

acl msn_mime req_mime_type -i ^application/x-msn-messenger$
acl msn_gw url_regex -i gateway.dll
acl msnd dstdomain messenger.msn.com gateway.messenger.hotmail.com
http_access allow msn_mime
http_access allow msn_gw
http_access allow msnd

DG exceptionsitelist
64.4.13.0/24
152.163.241.0/24
64.12.163.0/24
207.46.110.0/24
207.46.1.0/24
65.54.0.0/16
207.46.104.20
207.46.110.0
65.55.149.121
98.136.113.173
64.4.32.7
221.120.250.106
65.242.27.35
64.4.9.254

After doing all this i m still facing login issues with msn messenger
whenever i try to login it shows error login failed, service temporarily
unavailable, i have juniper firewall behind proxy which has any any policy
for proxy server, proxy servers iptables are fine, transparent proxy
disabled due to DG,

here are my squid logs while i try to log into msn messenger

1257142473.253 2479 192.168.151.227 TCP_MISS/200 19905 CONNECT
https://login.live.com:443 192.168.151.227 DEFAULT_PARENT/127.0.0.1 -
1257142492.357 438 192.168.151.227 TCP_MISS/200 0 POST
http://gateway.messenger.hotmail.com...er.hotmail.com 192.168.151.227
DEFAULT_PARENT/127.0.0.1 -

and my iptables are as under

iptables -A INPUT --source 192.168.151.227 -p tcp --dport 22 -j ACCEPT
iptables -A INPUT --source 192.168.151.98 -p tcp --dport 22 -j ACCEPT
iptables -A INPUT --source 0/0 -p tcp --dport 8080 -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -j DROP
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 3128 -j REDIRECT
--to-port 8080

and Squid.conf SSL ports configurations are

acl Safe_ports port 443
http_access deny CONNECT !SSL_ports

I have took ur precious time, ur cooperation will be highly appreciated
i have attached snapshots of msn msgr login errors.
http://old.nabble.com/file/p26159993/msnmsgr.jpg
http://old.nabble.com/file/p26159993/msnmsgr1.jpg

-- 
View this message in context: http://old.nabble.com/msn-messenger-login-issue-tp26159993p26159993.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Received on Tue Nov 03 2009 - 06:39:25 MST

This archive was generated by hypermail 2.2.0 : Tue Nov 03 2009 - 12:00:02 MST