[squid-users] Only internal ip's works: The requested URL could not be retrieved

From: Jack Engqvist Johansson <jack_at_skysel.com>
Date: Sat, 26 Feb 2011 04:05:14 +0100

Hi,

I have set up a working Apache server on an OpenBSD system. It's
listening on port 8000 and is configured with several virtualhosts.
Then I have squid running on port 80 with acceleration mode on. It
works great if I use the servers local ip (192.168.0.3) but not if I
try to use a domain name. (If the domain name is added to /etc/hosts
with the servers ip, it will work).

I've tried everything, searched the Internet, checked
manuals/tutorials/mails/forums in 24h without break!. Didn't found any
solution :(

Does someone knows what I've done wrong? Thanks in advance :)

Error when trying to access nectrus.com:
-----------------------------------------------------------------------------------------------------------------------------------------
ERROR
The requested URL could not be retrieved

While trying to retrieve the URL: http://nectrus.com:8000/

The following error was encountered:

   * Access Denied.

     Access control configuration prevents your request from being
allowed at this time. Please contact your service provider if you feel
this is incorrect.

Your cache administrator is webmaster.
Generated Sat, 26 Feb 2011 02:55:48 GMT by nectrus.com (squid/2.7.STABLE7)
-----------------------------------------------------------------------------------------------------------------------------------------

/etc/squid/squid.conf:
-----------------------------------------------------------------------------------------------------------------------------------------
http_port 80 accel vhost vport=8000 defaultsite=nectrus.com
cache_peer localhost parent 8000 0 no-query originserver name=nectrussquid
cache_peer_access nectrussquid allow all
acl oursites dstdomain .nectrus.com .tekulturen.se
acl allowed_ips src 0.0.0.0-255.255.255.255
http_access allow oursites
http_access allow allowed_ips
http_access allow all

cache_mem 100 MB

# change below to match your hostname (used in logs as host)
visible_hostname nectrus.com

#cache_store_log none

refresh_pattern -i \.jpg$ 0 50% 420
refresh_pattern -i \.gif$ 0 50% 420
refresh_pattern -i \.png$ 0 50% 420
refresh_pattern -i \.js$ 0 20% 420
refresh_pattern -i \.htm$ 0 20% 420
refresh_pattern -i \.html$ 0 20% 420
refresh_pattern -i \.css$ 0 50% 420
-----------------------------------------------------------------------------------------------------------------------------------------

/etc/pf.conf:
-----------------------------------------------------------------------------------------------------------------------------------------
# $OpenBSD: pf.conf,v 1.49 2009/09/17 06:39:03 jmc Exp $
#
# See pf.conf(5) for syntax and examples.
# Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1
# in /etc/sysctl.conf if packets are to be forwarded between interfaces.

set skip on lo

# filter rules and anchor for ftp-proxy(8)
#anchor "ftp-proxy/*"
#pass in quick proto tcp to port ftp rdr-to 127.0.0.1 port 8021

# anchor for relayd(8)
#anchor "relayd/*"

pass # to establish keep-state

# rules for spamd(8)
#table <spamd-white> persist
#table <nospamd> persist file "/etc/mail/nospamd"
#pass in on egress proto tcp from any to any port smtp \
# rdr-to 127.0.0.1 port spamd
#pass in on egress proto tcp from <nospamd> to any port smtp
#pass in log on egress proto tcp from <spamd-white> to any port smtp
#pass out log on egress proto tcp to any port smtp

#block in quick from urpf-failed to any # use with care

# By default, do not permit remote connections to X11
block in on ! lo0 proto tcp to port 6000:6010
-----------------------------------------------------------------------------------------------------------------------------------------
Received on Sat Feb 26 2011 - 03:05:42 MST

This archive was generated by hypermail 2.2.0 : Sat Feb 26 2011 - 12:00:03 MST