On 07-Mar-02 at 10:16, Silmar's inspired musing was thus :
> It's port using which squid connects to internal server.
> But which port is used when internal server answers?
A random port, higher than 1024. You can force it to use a certain range, but
generally if the connection is already established you should not be
firewalling responses, i.e. your firewall should let packets back through
anyway. Just allow any traffic from the httpd server to the proxy, but only if
connections are already established.
How to do this depends on which firewall you are using.
-- |-Simon White # GIMPS current unit progress: 29.71% #-| |-Internet Services Manager # > http://www.mersenne.org/prime.htm #-| |-MTDS S.A. 14, rue 16 novembre THIS SPACE tel: +212.3.737.4861-| |-Rabat, Kingdom of Morocco FOR RENT fax: +212.3.737.4863-|Received on Thu Mar 07 2002 - 02:19:17 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:06:46 MST