Прочитал много док, настроил по рабочему конфигу, а инета нет
Пишет
1258910247.617 1 192.168.1.10 TCP_MISS/504 1660 GET
http://www.rian.ru/favicon.ico - NONE/- text/html
У меня 2 машины - сервер 192.168.1.1 и клиент 192.168.1.10
Без прокси все работает. Скажите где копать
Ip tables???
Спасибо
http_port 3128 transparent
dns_nameservers 127.0.0.1
visible_hostname cydonia
icp_port 0
#cache_peer 127.0.0.1 parent 3128 0 no-query default
acl donocache urlpath_regex cgi-bin user submit
no_cache deny donocache
cache_mem 32 MB
cache_dir ufs /var/spool/squid 1000 16 256
cache_access_log /var/log/squid/access.log
cache_log /var/log/squid/cache.log
cache_store_log /var/log/squid/store.log
mime_table /etc/squid/mime.conf
pid_filename /var/run/squid.pid
ftp_user anonymous@
ftp_list_width 32
ftp_passive on
ftp_sanitycheck on
acl all src 0/0
acl SMTP port 25
acl doallow src 192.168.1.0/32 127.0.0.1/32
acl Safe_ports port 80
acl Safe_ports port 21
acl Safe_ports port 443 563 5190 5552
acl Safe_ports port 777
acl banners url_regex -i "/etc/squid/acls/banners.txt"
acl 1banners url_regex -i "/etc/squid/acls/1banners.txt"
acl nobanners url_regex -i "/etc/squid/acls/nobanners.txt"
http_access allow all
http_access deny 1banners
http_access deny banners !nobanners
http_access deny !Safe_ports
http_access deny SMTP
http_access allow doallow
http_access deny all
icp_access allow all
always_direct deny all
never_direct allow all
IP tables
# Generated by iptables-save v1.4.4 on Sun Nov 22 20:24:22 2009
*mangle
:PREROUTING ACCEPT [7590:3116788]
:INPUT ACCEPT [1092:114656]
:FORWARD ACCEPT [6497:3000632]
:OUTPUT ACCEPT [962:204597]
:POSTROUTING ACCEPT [7349:3201659]
-A FORWARD -o ppp0 -p tcp -m tcp --tcp-flags SYN,RST SYN -m tcpmss --mss 1400:1536 -j TCPMSS --clamp-mss-to-pmtu
COMMIT
# Completed on Sun Nov 22 20:24:22 2009
# Generated by iptables-save v1.4.4 on Sun Nov 22 20:24:22 2009
*nat
:PREROUTING ACCEPT [449:34153]
:POSTROUTING ACCEPT [7:1519]
:OUTPUT ACCEPT [164:13397]
-A POSTROUTING -o ppp0 -j MASQUERADE
-A POSTROUTING -o eth0 -j MASQUERADE
COMMIT
# Completed on Sun Nov 22 20:24:22 2009
# Generated by iptables-save v1.4.4 on Sun Nov 22 20:24:22 2009
*filter
:INPUT DROP [56:9015]
:FORWARD ACCEPT [6383:2996072]
:OUTPUT ACCEPT [948:202252]
-A INPUT -i lo -j ACCEPT
-A INPUT -i eth0 -j ACCEPT
-A INPUT -m state --state INVALID -j DROP
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m tcp --dport 80 -j LOG --log-prefix "IN HTTP: "
-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
-A FORWARD -i ppp0 -o eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A FORWARD -i eth1 -o ppp0 -j ACCEPT
-A FORWARD -i eth0 -o eth1 -j ACCEPT
-A FORWARD -i eth1 -o eth0 -j ACCEPT
-A FORWARD -m state --state INVALID -j DROP
-A OUTPUT -o lo -j ACCEPT
COMMIT
# Completed on Sun Nov 22 20:24:22 2009
Тема: Помогите Squid ни разу не заработал (Прочитано 875 раз)
