squid.conf dosyamın içeriğinden bir kesit şu şekilde
lakin squid içeriden https isteklerini karşılamıyor yani https sayfalarını
açmıyor. bende geçici olarak
pass in all
pass out all
ve
map fxp0 172.16.1.0/22 -> 192.0.0.30/32 proxy port ftp ftp/tcp
map fxp0 172.16.1.0/22 -> 192.0.0.30/32 portmap tcp/udp 12500:60000 map fxp0 172.16.1.0/22 -> 192.0.0.30/32 diyerek proxy kullanmadan çıkmaya izin verdim.
sizce hatayı nerede yapıyorum! (new at bsd world!)
----------------------------------------------------------------------------------
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object acl localhost src 127.0.0.1/255.255.255.255 acl ustag src 192.0.0.0/24 acl altag src 172.16.0.0/21 acl to_localhost dst 127.0.0.0/8 acl yasak1 url_regex sex acl yasak2 url_regex porn acl yasak3 url_regex hot acl yasak4 url_regex teen acl SSL_ports port 110 acl PURGE method purge acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT ----------------------------------------------------- #http_access deny all http_access allow localhost http_access allow ustag http_access allow altag http_access allow purge localhost http_access deny purge http_access deny !Safe_ports http_access deny yasak1 http_access deny yasak2 http_access deny yasak3 http_access deny yasak4 --------------------------------------------------- # Only allow cachemgr access from
localhost
http_access allow manager localhost http_access deny manager # Deny requests to unknown ports # http_access deny !Safe_ports # Deny CONNECT to other than SSL ports http_access deny CONNECT !SSL_ports # # We strongly recommend to uncomment the following to protect innocent # web applications running on the proxy server who think that the only # one who can access services on "localhost" is a local user #http_access deny to_localhost # # INSERT YOUR OWN RULE(S) HERE TO ALLOW ACCESS FROM YOUR CLIENTS # Exampe rule allowing access from your local networks.
Adapt
# to list your (internal) IP networks from where browsing should # be allowed #acl our_networks src 192.168.1.0/24 192.168.2.0/24 #http_access allow our_networks # And finally deny all other access to this proxy http_access deny all # and finally allow by default http_reply_access allow all #Allow ICP queries from everyone icp_access allow all -----------------------------------------------------------------------------------
saygılar.
kolay gelsin!
|
- [freebsd] guvenlik sorunu Engin O.
- Re: [freebsd] guvenlik sorunu "Özkan KIRIK"
- Re: [freebsd] guvenlik sorunu Engin O.
- Re: [freebsd] guvenlik sorunu "Özkan KIRIK"
- Re: [freebsd] squid.conf - https Mesut GÜLNAZ
- Re: [freebsd] squid.conf - h... Engin O.
- [freebsd] proftpd Mesut GÜLNAZ
- Re: [freebsd] proftpd Yalcin Cekic
- [freebsd] proftpd - conf... Mesut GÜLNAZ
- Re: [freebsd] proftp... Yalcin Cekic
- [freebsd] anoymous -... Mesut GÜLNAZ
- Re: [freebsd] anoymo... Yalcin Cekic
- [freebsd] anonymous ... Mesut GÜLNAZ
- [freebsd] anoymous -... Mesut GÜLNAZ
- [freebsd] normal mi? Mesut GÜLNAZ