I've had this server up and running for over a year and just recently started getting TCP_DENIED/403 in the logs for a site we've been using forever. When users try to access the site they get "web page not available" messages in their browser. I verified the site and all other links on the site our in my white list. If I bypass the proxy it works just fine.
Any help would be appreciated.
Thanks
Dear all
i installed nagios on centos. everythins is ok. i can view and login nagios web site. but when i click on every links i recieved error:
-------------------------------------------------
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator, root@localhost and inform them of the time the error occurred, and anything you might have done that may have caused the error.
More information about this error may be available in the server error log.
Apache/2.2.3 (CentOS) Server at 192.168.100.17 Port 80
-------------------------------------------------------
all links say this error.
please some body help me.
/etc/httpd/conf.d/nagios.conf :
---------------------------------------------------
AllowOverride None
Order allow,deny
Allow from all
# Order deny,allow
# Deny from all
# Allow from 127.0.0.1
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
</Directory>
Alias /nagios "/usr/local/nagios/share"
<Directory "/usr/local/nagios/share">
# SSLRequireSSL
Options None
AllowOverride None
Order allow,deny
Allow from all
# Order deny,allow
# Deny from all
# Allow from 127.0.0.1
AuthName "Nagios Access"
AuthType Basic
AuthUserFile /usr/local/nagios/etc/htpasswd.users
Require valid-user
</Directory>
---------------------------------------------------------
I have setup proxy server as squid Now i would like to enable High Availability between two squid proxy servers acting as one.
hye all... 1st of all merry Christmas...
i'm degree student.. and now i have to do final year project..
my project is proxy server.. my problem is i want to connect config file from squid to database server...
i must install squid on fedora and database on difference PC... anyone can help me...
I am the webmaster of a site dedicated to the travel to the southwest of France. The site is hosted by Hostpapa (in Canada).
The site URL is: http://southweststory.com
The site is 3 yeas old and worked fine until 1 week ago when it became unaccessible to people who use the French company "Free" as an ISP. (the site is available via all other French or International ISP providers as far as I know).
I have contacted Free tech support but they are completely incompetent - I even got answers like "If we cannot see the site we cannot do anything for you" and they surely could not see it because it is THEIR company that blocks it etc.
Frankly I am at my wits end and not sure what to do next. Free is a popular company in France due to their cut prices so it is a pity to lose so many potential customers.
My question is: is there anything that Free could have changed (not sure what) that would prompt me to change any settings in the for example .htaccess file or anything like this? Any ideas would be very much appreciated. Thank you
SIR
I HAVE RECENTLY INSTALLED CENTOS7 AND CONFIGURED SQUID ON IT . I AM FACING A TYPICAL PROBLEM I AM ABLE TO BROWSE THE NORMAL PAGES BUT WHEN ANY PAGE THAT STARTS WITH HTTPS:\\ IS NOT ALLOWED TO BROWSE.
I HAVE CHECKED MY SQUID.CONF FILE BUT AM UNABLE TO FIND THE PROBLEM.
I HAVE DISABLE SELINEX AND THERE ARE NO RULES IN IPTABLES ALSO.
KINDLY HELP
PASTING MY SQUID.CONF FILE
#
# Recommended minimum configuration:
#
# Example rule allowing access from your local networks.
# Adapt to list your (internal) IP networks from where browsing
# should be allowed
#acl all src all
#acl manager proto cache_object
#acl localhost 127.0.0.1/32
#acl to_localhost dst 127.0.0.0/8 0.0.0.0/32
acl localnet src 191.254.178.0/24 191.254.28.0/24 10.0.43.0/24 10.0.42.0/24
http_access allow localnet
icp_access allow all
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
#
# Recommended minimum Access Permission configuration:
#
# Deny requests to certain unsafe ports
http_access deny !Safe_ports
# Deny CONNECT to other than secure SSL ports
http_access deny CONNECT !SSL_ports
# Only allow cachemgr access from localhost
#http_access allow localhost manager
http_access allow localnet manager
http_access deny manager
# We strongly recommend the following be uncommented to protect innocent
# web applications running on the proxy server who think the only
# one who can access services on "localhost" is a local user
#http_access deny to_localhost
#
# INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS
#
# Example rule allowing access from your local networks.
# Adapt localnet in the ACL section to list your (internal) IP networks
# from where browsing should be allowed
#http_access allow localhost
# And finally deny all other access to this proxy
http_access deny all
# Squid normally listens to port 3128
http_port 8899
# Uncomment and adjust the following to add a disk cache directory.
#cache_dir ufs /var/spool/squid 100 16 256
# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid
cache_peer 191.254.178.76 parent 3128 0 no-query no-digest
#icp_access allow all
#
# Add any of your own refresh_pattern entries above these.
#
refresh_pattern ^ftp: 1440 20 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
using seamonkey web browser wen i go to a specific site the spellchecker dose not work any ideal ? just 1 site i don't understand it the rest it works fine
I am trying to set up a "Proxy Server" in Linux, without using Squid (Part of my project). However I have beginner's knowledge of iptables. I am using the following script from "http://www.aboutdebian.com/proxy.
#!/bin/sh
INTIF="eth1"
EXTIF="eth0"
EXTIP="`/sbin/ifconfig eth0 | grep 'inet addr' | awk '{print $2}' | sed -e 's/.*://'`"
/sbin/depmod -a
/sbin/modprobe ip_tables
/sbin/modprobe ip_conntrack
/sbin/modprobe ip_conntrack_ftp
/sbin/modprobe ip_conntrack_irc
/sbin/modprobe iptable_nat
/sbin/modprobe ip_nat_ftp
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "1" > /proc/sys/net/ipv4/ip_dynaddr
iptables -P INPUT ACCEPT
iptables -F INPUT
iptables -P OUTPUT ACCEPT
iptables -F OUTPUT
iptables -P FORWARD DROP
iptables -F FORWARD
iptables -t nat -F
iptables -A FORWARD -i $EXTIF -o $INTIF -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -i $INTIF -o $EXTIF -j ACCEPT
iptables -t nat -A POSTROUTING -o $EXTIF -j MASQUERADE
Question is there is no packet forwarding from eth1 to eth0 (verified from wireshark, a windows is using eth1's ip address as its default gateway)
Any help would be highly appreciated!
I am using Iceweasel with debian wheezy. I have thought about using a proxy server for anonymity on the net.
However, on the Iceweasel Advanced Settings, it shows that there is a proxy setting already being used.
Does this mean I don't need to use a proxy server if I use Iceweasel?
Can anyone please advise about linux methods of preserving anonymity?
hey i've just installed SUSE and used this link to configure proxy to have internet access. but that isn't suficcent
http://www.unixmen.com/how-to-enable-proxy-on-opensuse/
now the settings is correct because it works on nearby ubuntu.
i'm connecting with both with USB2LAN
any ideas?
We have 20 systems and I installed SQUID proxy on CENTOS to limit internet access but I'm unable to configure LAN and WAN. We have got one router in the network with 192.168.1.1 as default gateway. I installed squid successfully but unable to configure it in client systems as I'm unable to configure LAN and WAN ips in CentOS.
Please suggest me correct configuration of LAN and WAN for my network. We don't have any static IP with us. What series of IPs do I have to configure in Linux server? After that, what would be my Proxy IP?
I have basic knowledge about Linux...
Please suggest me Conf file accordlingly.