Hi,
I'm trying to let Debian EDU workstations use squid on the main server
via IPv6. Debian EDU workstations have an IPv6 link-local fe80:: address
and the main server has an fe80:: also. I thought it should be feasible
to bind squid to port 3128 listening on the fe80:: address and proxying
requests from the clients coming over IPv6.
As http_port 3128 is set, squid should listen on all available
IP-Adresses. And it listens to all IPv4 and IPv6 addresses but not on
the fe80::. I even tried just to connect by using telnet from the Debian
EDU server to all IP addresses and all other addresses worked, even an
external IPv6, but not the fe80:: address.
SocketStat also shows me that it should listen on all interfaces/IPs:
# ss -ntlp | grep squid
LISTEN 0 256 *:3128 *:*
users:(("squid",pid=1593037,fd=18))
debug_options ALL,5 in squid.conf didn't provide further reasons:
journalctl -f -u squid.service
Apr 04 16:12:30 tjener.intern squid[1593037]: Starting Squid Cache
version 4.13 for x86_64-pc-linux-gnu...
Apr 04 16:12:30 tjener.intern squid[1593037]: Service Name: squid
Apr 04 16:12:30 tjener.intern squid[1593037]: Process ID 1593037
Apr 04 16:12:30 tjener.intern squid[1593037]: Process Roles: worker
Apr 04 16:12:30 tjener.intern squid[1593037]: With 1024 file descriptors
available
Apr 04 16:12:30 tjener.intern squid[1593037]: Initializing IP Cache...
Apr 04 16:12:30 tjener.intern squid[1593037]: DNS Socket created at
[::], FD 5
Apr 04 16:12:30 tjener.intern squid[1593037]: DNS Socket created at
0.0.0.0, FD 9
Apr 04 16:12:30 tjener.intern squid[1593037]: Adding nameserver
127.0.0.1 from /etc/resolv.conf
Apr 04 16:12:30 tjener.intern squid[1593037]: Adding domain intern from
/etc/resolv.conf
Apr 04 16:12:30 tjener.intern squid[1593037]: Logfile: opening log
daemon:/var/log/squid/access.log
Apr 04 16:12:30 tjener.intern squid[1593037]: Logfile Daemon: opening
log /var/log/squid/access.log
Apr 04 16:12:30 tjener.intern squid[1593037]: Unlinkd pipe opened on FD 15
Apr 04 16:12:30 tjener.intern squid[1593037]: Local cache digest
enabled; rebuild/rewrite every 3600/3600 sec
Apr 04 16:12:30 tjener.intern squid[1593037]: Store logging disabled
Apr 04 16:12:30 tjener.intern squid[1593037]: Swap maxSize 11725824 +
204800 KB, estimated 917740 objects
Apr 04 16:12:30 tjener.intern squid[1593037]: Target number of buckets:
45887
Apr 04 16:12:30 tjener.intern squid[1593037]: Using 65536 Store buckets
Apr 04 16:12:30 tjener.intern squid[1593037]: Max Mem size: 204800 KB
Apr 04 16:12:30 tjener.intern squid[1593037]: Max Swap size: 11725824 KB
Apr 04 16:12:30 tjener.intern squid[1593037]: Rebuilding storage in
/var/spool/squid (clean log)
Apr 04 16:12:30 tjener.intern squid[1593037]: Using Least Load store dir
selection
Apr 04 16:12:30 tjener.intern squid[1593037]: Set Current Directory to
/var/spool/squid
Apr 04 16:12:30 tjener.intern squid[1593037]: Finished loading MIME
types and icons.
Apr 04 16:12:30 tjener.intern squid[1593037]: HTCP Disabled.
Apr 04 16:12:30 tjener.intern squid[1593037]: Pinger socket opened on FD 20
Apr 04 16:12:30 tjener.intern squid[1593037]: Squid plugin modules loaded: 0
Apr 04 16:12:30 tjener.intern squid[1593037]: Adaptation support is off.
Apr 04 16:12:30 tjener.intern squid[1593037]: Accepting HTTP Socket
connections at local=[::]:3128 remote=[::] FD 18 flags=9
Apr 04 16:12:30 tjener.intern systemd[1]: Started Squid Web Proxy Server.
I couldn't find any hints that squid never binds to fe80:: addresses, so
I'm a bit stuck and don't know if this may be a bug or works as designed.
Any hints?
Thanks,
Marco
inett GmbH
Ihr IT Systemhaus in Saarbrücken
Marco Gabriel
Geschäftsführer
t: 0681-410993-0
e: mgabr...@inett.de
www.inett.de
Technische Fragen:
Support E-Mail: supp...@inett.de
Support Hotline: 0681-410993-42
inett GmbH | Geschäftsführung: Marco Gabriel | Amtsgericht Saarbrücken HRB 16588
