Need config for one squid reverse proxy serving up multiple sites with different internal IP's all from the single external IP used by Squid

I followed this example: http://wiki.squid-cache.org/ConfigExamples/Reverse/MultipleWebservers

but can't it to work for my setup - which is a bit different but not that much.  This is using a default config from Squid 2.6 on CentOS 5.4, nothing extra added or changed except for what is mentioned in the article.  I get 'service is not available'...

My setup is:
test1.example.com hosted on IP1
test2.example.com hosted on IP1
test3.example.com hosted on IP2
test4.example.com hosted on IP2
test5.example.com hosted on IP3
test6.example.com hosted on IP3
test7.example.com hosted on IP4
test8.example.com hosted on IP5
...
testX.example.com hosted on IPX

I use Citrix Xen but I don't that's relevant as they are all separate virtual servers with separate internal IP's accessed via the Squid reverse proxy which has one external IP.  The reason I am doing this is not really for web acceleration but because we don't have enough external IP's to map to each virtual server we need.  A single virtual server may host more than one site, using Apache and VHOSTS.  Some virtual servers may only host a single site, regardless all virtual servers will have separate internal IP addresses, naturally.

Any assistance is greatly appreciated!
Thanks
Richard
Richard2048Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

cjl7freelance for hireCommented:
You need to allow and deny traffic in your squid, out of the box it only allows localhost (I think).

You need something like

                 acl all src 0.0.0.0/0.0.0.0
                 http_access allow all

Or if you want to be a bit more specific you could do

acl MyNetwork0 src 192.168.0.0/24
acl MyNetwork1 src 192.168.1.0/24
acl MyNetwork2 src 192.168.2.0/24
http_access allow MyNetwork0
http_access allow MyNetwork1
http_access allow MyNetwork2

and issue a 'service squid restart'.


0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Richard2048Author Commented:
Yup - thanks - works for me now....

This is my conf now:

http_port 80 accel defaultsite=error.example.local vhost
cache_peer 192.168.0.35 parent 80 0 no-query originserver name=myAccel

acl all src 0.0.0.0/0.0.0.0
http_access allow all
cache_peer_access myAccel allow all

It'll need tightened up for security but now at least works.

Thanks
Richard
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Linux

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.