[squid-users] Squid Proxy for Web and Mail Traffic

From: Drew Wrobel <phoenix1972_at_hotmail.com>
Date: Tue, 2 Nov 2010 15:34:25 -0400

With some help in the past from the mailing list, I was able to setup a squid proxy server to handle traffic for various web sites for the company.

Of course, they want to rock the cradle and use Lotus Notes Traveler remotely.  I checked out the list and found some posts related to Traveler
and port 8642 traffic.

But I think the existing rules that I have in place for web traffic is stepping on the rules I have for the Traveler traffic.

Here is the squid configuration related to port 80 and 8642 traffic:

#####
# HTTP Web Traffic
# Lotus Notes Traveler Service
http_port 80 accel vhost
http_port 8642 accel vhost  # NEW RULE
#####
# Web Server Proxy
# Lotus Notes Traveler Proxy
cache_peer 172.21.AAA.BBB parent 80    0 no-query originserver round-robin login=PASS name=webserver1
cache_peer 172.21.CCC.DDD parent 80    0 no-query originserver round-robin login=PASS name=webserver2
cache_peer 172.21.EEE.FFF   parent 8642 0 no-query originserver name=notestraveler    # NEW RULE
#####
#
acl mainSite dstdomain www.abc.com
acl mailServer dstdomain notestraveler.abc.com    # NEW RULE
######
#
cache_peer_access notestraveler allow mailServer    # NEW RULE
cache_peer_access notestraveler deny all    # NEW RULE
#
never_direct allow mailServer    # NEW RULE
http_access allow mailServer    # NEW RULE
#####
#
cache_peer_access webserver1 allow mainSite
cache_peer_access webserver1 deny all
cache_peer_access webserver2 allow mainSite
cache_peer_access webserver2 deny all
#
http_access allow mainSite
http_access deny !mainSite !mailServer
#
deny_info http://www.abc.com/ mainSite

As I said...I had everything working without any problems for the port 80 traffic.  Not sure if I put the rules related to 8642 in the wrong
place or if the http rules are screwing me up.

Checking the squid access log, I'm getting TCP_DENEID and return code 403

Here is the URL being accessed, based on the log

http://notestraveler.abc.com/servlet/traveler/Microsoft-Server-ActiveSync?

Any help would be greatly appreciated.

THANKS
                                               
Received on Tue Nov 02 2010 - 19:34:31 MDT

This archive was generated by hypermail 2.2.0 : Wed Nov 03 2010 - 12:00:02 MDT