Fermé

Squid IPv6 Configuration

Need help troubleshooting my Squid 3.1 configuration running on a Linux Debian Squeeze VPS.

I'm setting up an anonomous proxy server using ipv6 IPs. My VPS has 5 ipv4 and a /64 block of ipv6. The ipv4 proxies are working fine but the ipv6 is not working. I'm not sure if it's a bug in Squid or my setup needs to be corrected or if a work around needs to be done.

The first two lines in the below code works fine but the ipv6 address causes an error when I use the ipv6 ips in my Internet Explorer 8. I'm using [2607:f2f8:aea8::3] port 3128 as the proxy.

acl ip2 myip [url removed, login to view]

tcp_outgoing_address [url removed, login to view] ip2

acl ip1 myip 2607:f2f8:aea8::3

tcp_outgoing_address 2607:f2f8:aea8::3 ip1

When I remove the last two lines of the above code and use [2607:f2f8:aea8::3] as a proxy, there's no error, but the ip shows up as [url removed, login to view] when using whatismyip.com.

Another issue. There seems to be a delay in switching over the ips. When I switch from one ipv4 to another and use [url removed, login to view], the old ips shows up until 10-20 seconds later. I disabled the cache using no_cache deny all. Please review that code as well.

Below is my [url removed, login to view] file. If we need to test it on my server, I'll provide you access with username/password.

*************************************

#Turn Off Cache

#acl all src 0.0.0.0/0.0.0.0

no_cache deny all

cache_access_log none

cache_store_log none

#acl all src all

acl manager proto cache_object

acl localhost src 127.0.0.1/32 ::1

acl to_localhost dst 127.0.0.0/8 0.0.0.0/32 ::1

acl SSL_ports port 443

acl Safe_ports port 80

# http

acl Safe_ports port 21

# ftp

acl Safe_ports port 443

# https

acl Safe_ports port 70

# gopher

acl Safe_ports port 210

# wais

acl Safe_ports port 1025-65535

# unregistered ports

acl Safe_ports port 280

# http-mgmt

acl Safe_ports port 488

# gss-http

acl Safe_ports port 591

# filemaker

acl Safe_ports port 777

# multiling http

acl CONNECT method CONNECT

http_access allow all

http_access allow manager localhost

http_access deny manager

http_access deny !Safe_ports

http_access deny CONNECT !SSL_ports

http_access allow localhost

#http_access deny all

http_port 3128

#***********************************************

# ipv4 works, ipv6 doesn't

#***********************************************

acl ip2 myip [url removed, login to view]

tcp_outgoing_address [url removed, login to view] ip2

acl ip1 myip 2607:f2f8:aea8::3

tcp_outgoing_address 2607:f2f8:aea8::3 ip1

#***********************************************

#Setting up highly anonomous elite proxy server

#***********************************************

forwarded_for delete

request_header_access Allow allow all

request_header_access Authorization allow all

request_header_access WWW-Authenticate allow all

request_header_access Proxy-Authorization allow all

request_header_access Proxy-Authenticate allow all

request_header_access Cache-Control allow all

request_header_access Content-Encoding allow all

request_header_access Content-Length allow all

request_header_access Content-Type allow all

request_header_access Date allow all

request_header_access Expires allow all

request_header_access Host allow all

request_header_access If-Modified-Since allow all

request_header_access Last-Modified allow all

request_header_access Location allow all

request_header_access Pragma allow all

request_header_access Accept allow all

request_header_access Accept-Charset allow all

request_header_access Accept-Encoding allow all

request_header_access Accept-Language allow all

request_header_access Content-Language allow all

request_header_access Mime-Version allow all

request_header_access Retry-After allow all

request_header_access Title allow all

request_header_access Connection allow all

request_header_access All deny all

#***********************************************

hierarchy_stoplist cgi-bin ?

coredump_dir /var/spool/squid3

refresh_pattern ^ftp: 1440 20% 10080

refresh_pattern ^gopher: 1440 0% 1440

refresh_pattern -i (/cgi-bin/|\?) 0 0% 0

refresh_pattern . 0 20% 4

Compétences : Linux

Voir plus : squid ipv6, squid ipv6 configuration, squid ipv6 ipv4, squid ipv6 deny, squid deny ipv6, squid ipv6 debian squeeze, ipv6 squid setup, test configuration manager, test turn, review bug, filemaker work, dst server, cgi review, bug review, squid ipv6 setup, squid ipv6 squeeze, linux ipv6 squid configuration, squid configuration, ipv6 setup, vps error, squid, proxy squid, proto, ipv4, gopher

Concernant l'employeur :
( 0 commentaires ) Ventura, United States

N° du projet : #1061071

3 freelance ont fait une offre moyenne de 167 $ pour ce travail

tehif

Let me help you!

120 $ USD en 2 jours
(43 Commentaires)
5.6
brND

Please check Your PMB

50 $ USD en 3 jours
(17 Commentaires)
4.5
itplane

i am teacher of Rhce and also certified let see

250 $ USD en 7 jours
(0 Commentaires)
0.0
satyapalgarhwal

ready to work with u

200 $ USD en 7 jours
(0 Commentaires)
1.8