iptables and squid
Hi List, i have configured an Linux BOX with Squid, Squid NCSA_AUTH and dansguardian. It works fine. Now i want to implement iptables. The Squid is not tranparent. But i have no idea about the iptables. Can anyone help??? Regrads Andreas Wahlert
use SuSEfirewall its easy to configure tail -f /var/log/firewall will help you to debug ----- Original Message ----- From: "Wahlert Andreas" <andreas.wahlert@cpvision.de> To: <suse-security@suse.com> Sent: Thursday, May 02, 2002 5:49 PM Subject: [suse-security] iptables and squid Hi List, i have configured an Linux BOX with Squid, Squid NCSA_AUTH and dansguardian. It works fine. Now i want to implement iptables. The Squid is not tranparent. But i have no idea about the iptables. Can anyone help??? Regrads Andreas Wahlert -- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
Hi Andreas, you have to allow port 3128 from internal network, that's enough. Then you have to allow your firewall to connect to the outside with destination ports 80 (http), 53 (dns), 21 (ftp) and 443 (ssl). Then you have to allow incoming packages on your outgoing requests and vice versa. That's it. When I get home I can send you a working script from a school LAN, if you're interested. Best regards, Ralf Ronneburger Wahlert Andreas wrote:
Hi List,
i have configured an Linux BOX with Squid, Squid NCSA_AUTH and dansguardian. It works fine. Now i want to implement iptables. The Squid is not tranparent. But i have no idea about the iptables. Can anyone help???
Regrads
Andreas Wahlert
participants (3)
-
Ernesto Fries -
Ralf Ronneburger -
Wahlert Andreas