• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Squid httpd-accelerator

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> UNIX // GNU/Linux

View previous topic :: View next topic  
Author Message
Jay
Just Arrived
Just Arrived


Joined: 01 Feb 2003
Posts: 0


Offline

PostPosted: Sat Feb 01, 2003 6:16 pm    Post subject: Squid httpd-accelerator Reply with quote

I have a webserver running and want to use squid as an http accelerator. The setup I tried was as follows...

http port 80 (my IP)
http port 3128 (192.168.0.1)
Accel Port 81

Apache port is 81

...and everything seems to work fine, however I also want to use squid as a proxy. I set up my browser (from within my network) to connect to 192.168.0.1:3128 and I can surf the net, except to visit my site. The squid conf file says...

"Note however that your proxy users may have trouble to reach the accelerated domain unless their browsers are configured not to use this proxy for those domains"

...should the word "may" be substituted with "will" or is there a way to reach the accelorated domains while still going through the proxy.

Secondly, cannot someone on the net simply use their browser and connect to my server and use it as a proxy for themselves Question
Back to top
View user's profile Send private message
flw
Forum Fanatic
Forum Fanatic


Joined: 27 May 2002
Posts: 16777215
Location: U.S.A.

Offline

PostPosted: Sat Feb 01, 2003 8:15 pm    Post subject: Reply with quote

Quote:
squid as an http accelerator


Caching web stuff at a server is one good method but will still tax your local bandwidth. Have you already looked at caching locally to the users machines thus not needing any bandwidth from your local net?
Back to top
View user's profile Send private message Visit poster's website
Posideon
Just Arrived
Just Arrived


Joined: 10 Jan 2003
Posts: 1
Location: UK Baby!!!

Offline

PostPosted: Sat Feb 01, 2003 8:35 pm    Post subject: Reply with quote

For the benefit of the viewers, could you name some apps that do this.

Thanks
Back to top
View user's profile Send private message Send e-mail Visit poster's website Yahoo Messenger MSN Messenger
flw
Forum Fanatic
Forum Fanatic


Joined: 27 May 2002
Posts: 16777215
Location: U.S.A.

Offline

PostPosted: Sat Feb 01, 2003 9:44 pm    Post subject: Reply with quote

Quote:
For the benefit of the viewers, could you name some apps that do this.


I'm not sure if you meant this for me or not but here it goes. Even just changing the settings on I.E. as to when it should look for a newer copies of web stuff and how much web stuff should it cache on the local drive. Especally since unused local drive space (PC's just the past few years) for typical users is ususally plentiful.

Any add on's at the client or server only adds on software layers to slow the whole process down, so if space if adequate a local cache is faster than a server cache which is faster than going to the net.

I have intentionally not brought cache appliances into the discussion to keep it more basic.

Also if you want to cache on the server level a dedicated cache machine is faster than combining your proxy with the cache device (assuming the cache is going to get very large). If cache is going to be small then why cache on a server at all?
Back to top
View user's profile Send private message Visit poster's website
Jay
Just Arrived
Just Arrived


Joined: 01 Feb 2003
Posts: 0


Offline

PostPosted: Sun Feb 02, 2003 3:47 am    Post subject: okay, here is the problem Reply with quote

I told a buddy of mine to fire up Internet explorer

Tools-->Internet Options--> Connections-->Lan settings

Check the proxy server box and enter the values

My IP and port 80

He was then able to surf the net through my proxy.

I have since switched everything back so Apache is answering 80.

Is it possible to have squid answering port 80, but prevent people from using it as a proxy server in this manner? How? Question
Back to top
View user's profile Send private message
flw
Forum Fanatic
Forum Fanatic


Joined: 27 May 2002
Posts: 16777215
Location: U.S.A.

Offline

PostPosted: Sun Feb 02, 2003 5:30 am    Post subject: Reply with quote

Quote:
Is it possible to have squid answering port 80, but prevent people from using it as a proxy server in this manner? How?


Have you been to http://www.linux.org/docs/index.html there's plenty to read about that and other linux stuff.
Back to top
View user's profile Send private message Visit poster's website
Jay
Just Arrived
Just Arrived


Joined: 01 Feb 2003
Posts: 0


Offline

PostPosted: Sun Feb 02, 2003 8:53 am    Post subject: Thanks Reply with quote

Thanks, I'll check it out. I've been reading through the squid and webmin faqs and finding no answers.
Back to top
View user's profile Send private message
flw
Forum Fanatic
Forum Fanatic


Joined: 27 May 2002
Posts: 16777215
Location: U.S.A.

Offline

PostPosted: Sun Feb 02, 2003 3:04 pm    Post subject: Reply with quote

Some other stuff to check are:

http://www.squid-cache.org/ for a general look around then

http://www.squid-cache.org/Doc/FAQ/FAQ.html FAQ's like config/Trouble shooting/etc...

http://www.linuxheadquarters.com/howto/networking/squid.shtml more config

http://en.tldp.org/LDP/solrhe/Securing-Optimizing-Linux-RH-Edition-v1.3/chap28sec231.html Configure the /etc/squid/squid.conf file -in httpd-accelerator mode
Back to top
View user's profile Send private message Visit poster's website
Jay
Just Arrived
Just Arrived


Joined: 01 Feb 2003
Posts: 0


Offline

PostPosted: Sun Feb 02, 2003 7:24 pm    Post subject: Sweet! Reply with quote

That last one is exactly what I was looking for. Everything is working fine now. Thanks for the pointer! Very Happy
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> UNIX // GNU/Linux All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register