Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 550
  • Last Modified:

Unable to Surf by IP when using Squid as a transparent Proxy

I have a couple of different offices that use Linux boxes as combined routers and transparent proxies.  All of them are working fine, apart from one which is having a weird issue when attempting to view a web page via IP.  Using this website as an example, if I surf to;

http://www.experts-exchange.com

It works fine.

However, if I surf to;

http://64.156.132.140

It will immediately drop me to a standard 'page cannot be displayed' message.

If I bypass the transparent proxy, say by trying to load the page on the router itself, it works fine, so I don't believe it is an ISP issue.

My other locations using seemingly identically configured proxies can access pages by IP fine.
0
ropetin
Asked:
ropetin
1 Solution
 
robocatCommented:


Can you see your attempt in the squid logs (access.log, store.log) ?
0
 
ropetinAuthor Commented:
No, the page view attempts do not show up in either log file.
0
 
ravenplCommented:
You see, if squid is configured in transparent mode it have to know where You really want to go. It uses the name You enter into browser as destination.
If You enter ip, and therefore there;s no Host: http/1.1 request header, squid does not know where to go? It have to drop it.
0
 [eBook] Windows Nano Server

Download this FREE eBook and learn all you need to get started with Windows Nano Server, including deployment options, remote management
and troubleshooting tips and tricks

 
ropetinAuthor Commented:
So the question I have is, why do 6 seemingly identically configured squid proxies, seem to not  have a problem?
0
 
robocatCommented:

How do you redirect the traffic to the transparent proxy ? Switch ? Router ?
0
 
ropetinAuthor Commented:
The box that is running the squid proxy is the router.  I have the users connected via a generic workgroup switch.
0
 
robocatCommented:

Have you compared the router (redirection) settings with the other 6 proxies ?

Perhaps you should look at what kind of logging you can enable on router level ?

0
 
ropetinAuthor Commented:
By router settings you mean the iptables configuration?  I don't 100% understand iptables, but I don't see anything that would make it drop unresolved IPs.  Any suggestion how I can verify?
0
 
Jozk0Commented:
This might be a browser specific issue. Look here:

http://www.visolve.com/squid/whitepapers/trans_caching.php

Go down to the section "Disadvantages of Transparent Caching"
0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now