Squid as PROXY for Local LAN

Basic network setup:

Internet - Router - PIX - Local LAN

Is it possible to have a Linux PC (with only ONE network interface card)
running Squid 2.5 place inside the LAN to serve all other LAN PCs as a PROXY
server?

If it is not possible to run with one network interface card, then if I
added a second network card, do I need to do any special setup on the
networks settings for those card ,like default gateway, static or automatic
ip assignment?

TIA

17

On 2005-04-11, Riverside17 <(E-Mail Removed)> wrote:
> Is it possible to have a Linux PC (with only ONE network interface card)
> running Squid 2.5 place inside the LAN to serve all other LAN PCs as a PROXY
> server?

Sure. Configure Squid and point all the client to the IP of that as
proxy.

Davide

--
Q: How many Microsoft Programmers does it take to screw in a lightbulb?
A: It cannot be done. You will need to upgrade your house.
-- Geoff Johnson

did not work....

Here is some more info and what I did:

Network IP range is 192.168.1.0/24

Linux PC's IP address is 192.168.1.100 (not sure if makes a difference,
Linux PC ip is dynamically assigned) with gateway 192.168.1.254.

Network users use IE 6.0. Configure browsers to use manual PROXY at
192.168.1.100 with port 3128. Will not connect any web site with manual
proxy but connect fine with direct connection (bypass proxy).

If I used the above manual setup on the Squid LINUX PC it works fine.

Do I need to edit or uncomment any lines from the default squid.conf file?

Thanks.

"Davide Bianchi" <(E-Mail Removed)> wrote in message
news:(E-Mail Removed) .net...
> On 2005-04-11, Riverside17 <(E-Mail Removed)> wrote:
> > Is it possible to have a Linux PC (with only ONE network interface card)
> > running Squid 2.5 place inside the LAN to serve all other LAN PCs as a
PROXY
> > server?
>
> Sure. Configure Squid and point all the client to the IP of that as
> proxy.
>
> Davide
>
> --
> Q: How many Microsoft Programmers does it take to screw in a lightbulb?
> A: It cannot be done. You will need to upgrade your house.
> -- Geoff Johnson

Riverside17 wote:
>
<snip>
>
> Network users use IE 6.0. Configure browsers to use manual PROXY at
> 192.168.1.100 with port 3128. Will not connect any web site with manual
> proxy but connect fine with direct connection (bypass proxy).
>
> If I used the above manual setup on the Squid LINUX PC it works fine.
>
> Do I need to edit or uncomment any lines from the default squid.conf file?

See http://www.squid-cache.org/Doc/FAQ/FAQ-10.html

PS: Please, learn to post http://www.allmyfaqs.com/faq.pl?How_to_post

--
Regards,

Carles Arjona (E-Mail Removed) ( nospammer IS my real username )

> Do I need to edit or uncomment any lines from the default squid.conf
file?

Well, mostly not. Just look for ACL, that's access control lists.
Guessing you are running a 192.168.0.0 network.

http-access allow localhost
http-access deny all
acl lanaccess src 192.168.0.0/255.255.255.0
http-access allow lanaccess

--
Raqueeb Hassan
Bangladesh

Still NOT working...

My current squid.conf have the following lines uncommented:

http_port 3128
acl lanout src 192.168.1.0/24
http_access allow lanout
http_access allow localhost
http_access deny all
http_reply_access allow all
debug_options ALL,1 33,2

Looking at the cache.log and access.log file, there were NO entries
indicating any attempt from local users. Tried both Internet Explorer 6.0
and FireFox and still no go...

Any other suggestions?

I got it to work now...

Thanks for all the suggestions...

For those who are experiencing similar problem, my particular problem was
due to the firewall running on the Linux PC. It's blocking all TCP ports
except for HTTP, SMTP, Telnet... Once I added TCP port 3128, users can
browse any sites now...

Riverside17