Mailinglist Archive: opensuse-security (343 mails)

< Previous Next >
Re: [suse-security] iptables and squid
  • From: Dirk Ertl <dirk@xxxxxxxxxxx>
  • Date: Sun, 01 Jul 2001 17:51:03 +0200
  • Message-id: <3B3F46E7.F6C1E425@xxxxxxxxxxx>
Stefan_Walther@xxxxxxxxxxxx schrieb:

> Hello Dirk, hello folks,
>
> I don't know if it works but you can try this, maybe you can send me your
> log and the full error listed at you monitor:
>
> #SQUID internal lan
> iptables -A INPUT -i $IF_LAN -p tcp --dport 3128 -j ACCEPT
> iptables -A OUTPUT -i $IF_LAN -p tcp --sport 3128 -j ACCEPT
> #HTTP
> iptables -A INPUT -i $IF_WAN -p tcp --dport 80 -j ACCEPT
> iptables -A OUTPUT -i $IF_WAN -p tcp --sport 80 -j ACCEPT
> #DNS
> iptables -A INPUT -i $IF_WAN -p udp --sport 1024:65535 --dport 53 -j
> ACCEPT
> iptables -A OUTPUT -o $IF_WAN -p udp --dport 53 --sport 1024:65535 -j
> ACCEPT
> iptables -A INPUT -i $IF_WAN -p tcp --sport 1024:65535 --dport 53 -j
> ACCEPT
> iptables -A OUTPUT -o $IF_WAN -p tcp --dport 53 --sport 1024:65535 -j
> ACCEPT
>
> just try this (use the portnumbers not names in /etc/services). if this
> doesn't work, you should try to install proxy and firewall at to different
> machines.
>
> MfG.
>
> Stefan Walther
> stefan_walther@xxxxxxxxxxxx
> dienst.: +4930/89786448
> Funk: +49172/3943961
>
> --
> To unsubscribe, e-mail: suse-security-unsubscribe@xxxxxxxx
> For additional commands, e-mail: suse-security-help@xxxxxxxx

Helo Stefan, helo folks,

sorry for bogart time to answer, Stefan.

I`m too mutch in work.

Well, I tried these rules,but it`s the same thing anyway.

Maybe something else is wrong, I don`t kwnow? :-(

I used to work that kid of hardware- and software Server with Kern 2.2.(
ipchains) and everything gonna be o.K.

Now with Kern 2.4 someone go crasy.

Probleby I have to update, cause I`m using 2.4.0.

So thank you for help, I see forward for new strating point.

Dirk

Dirk Ertl
networktechnican
fon : +49 179/492 63 59
mailto : dirk@xxxxxxxxxxx

-------------------------------------------
It`s always a pleasure to here from you tux.
Be care and I CU

< Previous Next >
List Navigation
This Thread
  • No further messages