tis 2010-06-22 klockan 08:53 -0700 skrev Superted666:
> H
> The access.log shows entries from a chinese IP every second or so, below is
> an extract of the hits im seeing.
>
> 1277220997.529 1187 124.31.204.10 TCP_MISS/200 102 CONNECT
> 205.188.251.43:443 - DIRECT/205.188.251.43 -
That's bad indeed.
What http_port and http_access directives do you have in squid.conf?
You should only have one http_port directive listening to a public IP,
and it should be configured for reverse proxying.
http_port publicip:80 accel defaultsite=your.web.domain
make sure you DO NOT have another proxy http_port directive also
listening on the public IP such as
http_port 3128
In addition, configure your http_access rules to only allow access to
content on your site.
Regards
Henrik
Received on Tue Jun 22 2010 - 16:09:10 MDT
This archive was generated by hypermail 2.2.0 : Wed Jun 23 2010 - 12:00:04 MDT