Squid Proxy Server not resolving local DNS domains Windows Server 2008

Hello,

i recently configured Squid Proxy Server to be used in Windows. (Squid started as a Unix product).

Everything is working fine. I have my ACLs working fine. Only a group of websites are accessible as i configured it this way. Perfect. Now, when i try to access our own websites, it's giving me this error.


ERROR
The requested URL could not be retrieved

While trying to retrieve the URL: http://lindsaygia.com/

The following error was encountered:

    * Read Error

The system returned:

    (10054) WSAECONNRESET, Connection reset by peer.

An error condition occurred while reading data from the network. Please retry your request.

Your cache administrator is webmaster.
Generated Tue, 21 Sep 2010 17:05:53 GMT by IFGSRVMIS001.IFG.LOCAL (squid/2.7.STABLE8)


I don't know where to start... i believe it might be a DNS issue, but don't know exactly what since you can always see our websites perfectly fine when we are not using the Proxy.

It seems obvious to me it's a DNS issue, but maybe it's more a Squid configuration issue... BUT, if that was the case, then i wouldnt be able to see google and yahoo for example.

Something curious... I have an exchange server that resolves in xx.xxx.xxx.228 when i want to acccess the web version of outlook. the rest of my websites resolves to .229. Now, the difference is that All websites resolving .229 are accessed thru a Coyote Load Balancing.
in other words, in my DNS, instead of having 10.0.0.40 (which is my webserver) i have .45 (Coyote). Outlook is pointing to .47 (no using coyote).

Very confused right now that's why i am asking to the experts because i can't figure this out by myself...
Thank you
acamposAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
digitapConnect With a Mentor Commented:
I may be off:

Or, is it that you don't have a loop back on the Coyote?  Adding the internal DNS means it doesn't try to use the public IP and get routed back through the Coyote to the internal web sever.  Do your internal users use point to the public IP of your website or do they point to the internal IP?

So that I know if I understand, the Coyote hardware is your firewall, right?
0
 
acamposAuthor Commented:
Ok. I found something interesting.

I added a Host (A) in my DNS with the intranet.mywebsite.com pointing directly to the IP of my webserver (contrary to pointing to my Coyote IP) and it works like a charm. It seems Coyote does not let Squid to resolve DNS.

I am gonna take a look to Juniper forums and see if i find some jewel in there...

i'll keep you posted.
0
 
giltjrConnect With a Mentor Commented:
Without using Squid can you connect to intranet.mywebsite.com using the public external IP address?

If so, then you need to check all ACL's to see if the IP address of the box you are running Squid on is permited to do the same thing as your other internal IP addresses.

Typically inside hosts do NOT use external public IP addresses to access other internalhosts.

Coyote is more than likely a reference to a load balancer from  Coyotepoint.  We just retired a pair and we always used the Internal IP addresses from our Internal network.
0
Easily Design & Build Your Next Website

Squarespace’s all-in-one platform gives you everything you need to express yourself creatively online, whether it is with a domain, website, or online store. Get started with your free trial today, and when ready, take 10% off your first purchase with offer code 'EXPERTS'.

 
acamposAuthor Commented:
My boss decided to go with Websense... so, i guess at this point this discussion is over :(

Thank you for all your help thou.

0
 
acamposAuthor Commented:
We decided to change product.
0
 
digitapCommented:
you're welcome and thanks for the points!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.