Mailing List
Home
Linux - General Red Hat Linux discussion list
Enterprise Linux 3 - Discussion of Red Hat Enterprise Linux 3 (Taroon)
Red Hat Linux 9 - Discussion of Red Hat Linux 9 (Shrike)
Installation - Getting started with Red Hat Linux
Red Hat Linux 7.3 - Discussion of Red Hat Linux 7.3 (Valhalla)
Red Hat Linux 8.0 - Discussion of Red Hat Linux 8.0 (Psyche)
Red Hat Linux 7.2 - Discussion of Red Hat Linux 7.2 (Enigma)
Red Hat Linux 7.1 - Discussion of Red Hat Linux 7.1 (Seawolf)
Apache Web Server
Oracle database, Microsoft SQL server ...
Subjects
application/x mplayer2 plugin
RPM error: db4 error(16) from dbenv >remove: Device or resource
   busy
Command stream end of file while reading
X Windows problem (xauth)
Upgrading openoffice 1 1 rpm
FTP: connection refused
FTP: connection refused
mount: /dev/cdrom: is not a valid block device
Dell Precision 650, RedHat 9, no sound
how to trace the cause resulting in the crash of bind server
Virus on the list
UNINSTALL RPM MYSQL
usb pen drives: mounting as a user
broadcom network interface
make mrproper
sendmail configuration on redhat
Couldn 't open PID file /var/run/named/named pid Permission denied
Promise 378 controller
kernel 2 6 and /dev/sound/mixer not found
Problem using up2date
mrtg step by step howto/configuration for a newbie?
Compiling and Installing Kernel 2 6
Can 't locate module ppp0, can 't locate module ppp compress 21
HOW I CAN MAKE BOOTABLE FLOPPY DISKET
Lotus Notes under Wine
/etc/security/limits conf question
Intel E/1000 driver
Command stream end of file while reading
rpm database corrupt
qla2300 modules
 
Search:  
Power your search with and, or, +, -, or "some phrase" operators.
Proxy Server Setup Problems

Proxy Server Setup Problems

2004-02-18       - By wintoe

 Back
Reply:     1     2  

Dear List,

I am now setting up Proxy + Firewall for my LAN.
( Yesterday I send this messge to RH-LIST. But I am not sure where mail arrive to list or not. SO i send again )
Here is Current Network Configuration.

+ ======== +
| LAN-1 | 192.168.1.0/24
+ ======== +
||
||
192.168.1.254/24
+ ==eth1=== +
| |
| LinuxBox eth0 -- -- > ISP---- >Internet
| | 10.x.x.x
+ ==eth2=== +
192.168.2.254/24
||
||
+ ======== +
| LAN-2 | 192.168.2.0.0/24
+ ======== +

I have done the followings.

Setup proxy server with following confugrations
Red Hat 9.0
Squid-2-5-STABLE1-2.
( here is squid configurations )
http_port 192.168.1.254:8080
http_port 192.168.2.254:8080
acl lan1 src 192.168.1.0/24
acl lan2 src 192.168.2.0/24
http_access allow lan1
http_access allow lan2
cache_peer isp-proxy-server-ip isp-proxy-ip-port 3130


IPTABLES
IP_forrwarding is set to 1 in /proc/sys/net/ipv4/ip_forward
LAN-1 and LAN-2 are DHCP clients of Linux Box ( but eth1, eth2 of Linux box are static )


I can connect to intranet of ISP from LAN-1, LAN-2 through Linux Box as proxy server.
Linux box can connect to Internet if I configure to use Proxy of ISP.
But I cannot connect to Internet from LAN-1, LAN-2 through Linux Box as proxy server.
When I connect to Internet MS-IE say "Connecting to site. Waiting for reply ". Then error occurs.

What I would like to know is
1. What configurations are missing ( I think nat configuration in iptables. I am now testing nat. but i need someone help )
2. What additional network services, I have to configure.

***
I am now finding a good e-book for both Firewall ( iptables ) and Proxy Server ssetup ( with SQUID ). I had googled......
but I cannot find...... what I want.
Could some one can point out me to the place where I can get these e-book.

****

Any help is highly appreciated.

Win Toe



<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN " >
<HTML > <HEAD >
<META content= "text/html; charset=iso-8859-1 " http-equiv=Content-Type >
<META content= "MSHTML 5.00.2919.6307 " name=GENERATOR >
<STYLE > </STYLE >
</HEAD >
<BODY bgColor=#ffffff >
<DIV > <FONT face=Arial size=2 >Dear List, </FONT > </DIV >
<DIV >  </DIV >
<DIV > <FONT face=Arial size=2 >    I am now setting up Proxy +
Firewall for my LAN. </FONT > </DIV >
<DIV > <FONT face=Arial size=2 > ( Yesterday I send this messge to RH-LIST.
But I am not sure where mail arrive to list or not. SO i send again 
) </FONT > </DIV >
<DIV > <FONT face=Arial size=2 >    Here is Current Network
Configuration. </FONT > </DIV >
<DIV > <FONT face=Arial size=2 >       
</FONT > </DIV >
<DIV > <FONT face=Arial size=2 >    + ======== + </FONT > </DIV >
<DIV > <FONT face=Arial size=2 >    |    
LAN-1      | 192.168.1.0/24 </FONT > </DIV >
<DIV > <FONT face=Arial size=2 >
<DIV > <FONT face=Arial size=2 >    + ======== + </FONT > </DIV >
<DIV >             || </DIV >
<DIV >
<DIV >            
||  </DIV >
<DIV >192.168.1.254/24 </DIV >
<DIV > <FONT face=Arial size=2 >    + ==eth1=== + </FONT > </DIV >
<DIV >
<DIV >   
|                   
| </DIV >
<DIV > <FONT face=Arial size=2 >   
|    LinuxBox   eth0 -- -->
ISP---->Internet   </FONT > </DIV >
<DIV >   
|                    |
10.x.x.x </DIV >
<DIV > <FONT face=Arial size=2 > <FONT face=Arial size=2 >    +
==eth2=== + </FONT > </FONT > </DIV >
<DIV > <FONT face=Arial size=2 >192.168.2.254/24 </DIV > </FONT > </DIV > </DIV >
<DIV >            || </DIV >
<DIV >            || </DIV >
<DIV >
<DIV > <FONT face=Arial size=2 >    + ======== + </FONT > </DIV >
<DIV > <FONT face=Arial size=2 >    |    
LAN-2      |  192.168.2.0.0/24 </FONT > </DIV >
<DIV > <FONT face=Arial size=2 > <FONT face=Arial size=2 >    +
======== + </FONT > </FONT > </DIV >
<DIV > <FONT face=Arial size=2 > </FONT >  </DIV >
<DIV >I have done the followings. </DIV >
<DIV >  </DIV >
<DIV >Setup proxy server with following confugrations </DIV >
<DIV >    Red Hat 9.0 </DIV >
<DIV >    Squid-2-5-STABLE1-2. </DIV >
<DIV >        ( here is squid configurations
) </DIV >
<DIV >           
http_port 192.168.1.254:8080 </DIV >
<DIV >           
http_port 192.168.2.254:8080 </DIV >
<DIV >           
acl   lan1 src 192.168.1.0/24 </DIV >
<DIV >
<DIV >           
acl   lan2 src 192.168.2.0/24 </DIV > </DIV >
<DIV >           
http_access allow lan1 </DIV >
<DIV >           
http_access allow lan2 </DIV >
<DIV >           
cache_peer     isp-proxy-server-ip   
    isp-proxy-ip-port    3130 </DIV >
<DIV >            </DIV >
<DIV >            </DIV >
<DIV >    IPTABLES </DIV >
<DIV >    IP_forrwarding is set to 1 in
/proc/sys/net/ipv4/ip_forward </DIV >
<DIV >    LAN-1 and LAN-2 are DHCP clients of Linux Box ( but
eth1, eth2 of Linux box are static ) </DIV >
<DIV > <FONT face=Arial size=2 >       
</FONT > </DIV >
<DIV >  </DIV >
<DIV >I can connect to intranet of ISP from LAN-1, LAN-2 through Linux Box as
proxy server. </DIV >
<DIV >Linux box can connect to Internet if I configure to use Proxy of ISP. </DIV >
<DIV >But I cannot connect to Internet from LAN-1, LAN-2 through Linux Box as
proxy server. </DIV >
<DIV >When I connect to Internet MS-IE say  "Connecting to site. Waiting for
reply ". Then error occurs. </DIV >
<DIV >  </DIV >
<DIV >What I would like to know is </DIV >
<DIV >    1. What configurations are missing ( I think nat
configuration in iptables. I am now testing nat. but i need someone help
) </DIV >
<DIV >    2. What additional network services, I have to
configure. </DIV >
<DIV > <FONT face=Arial size=2 > </FONT >  </DIV >
<DIV >    *** </DIV >
<DIV >        I am now finding a good e-book for
both Firewall ( iptables ) and Proxy Server ssetup ( with SQUID ). I had
googled...... </DIV >
<DIV >         but I cannot
find...... what I want. </DIV >
<DIV >        Could some one can point out me to
the place where I can get these e-book. </DIV >
<DIV >  </DIV >
<DIV >    **** </DIV >
<DIV >  </DIV >
<DIV >Any help is highly appreciated. </DIV >
<DIV >  </DIV >
<DIV >Win Toe </DIV >
<DIV >  </DIV >
<DIV > <FONT face=Arial
size=2 >  </DIV > </FONT > </DIV > </FONT > </DIV > </BODY > </HTML >