Solved

How do I add an IP for FTP on Squid?

Posted on 2014-09-15
3
309 Views
Last Modified: 2014-09-16
I am trying to work with a software vendor to set up software that uploads specific data via FTP to their facility.
This is coming from a satellite facility that connects through a proxy (Squid) located at our main location.

The vendor has suggested that I add their IP address to Squid to allow two way communication.
Is this correct and if it is, how do I add it?
IP = 64.38.XXX.XX for port 21
I am a novice at configuring Squid and I have spent time googling it, but I have not had much luck.
0
Comment
Question by:RSchalhoub
3 Comments
 
LVL 1

Accepted Solution

by:
Serafin Rusu earned 500 total points
ID: 40323949
add this to /etc/squid.conf
"
acl squidclient2 src 64.38.xx.xx/32
http_access allow squidclient2
"

make sure you put these 2 lines before:
"
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
"

I don't know how this will help your vendor, but this is the way.
0
 
LVL 9

Expert Comment

by:nattygreg
ID: 40324322
Here you go

[root@server ~#]vi /etc/squid/squid.conf
acl SSL_ports port 443 21                 #(Edit add the ftp port 21 to SSL port acl)
acl ftp proto FTP                              #(Create a new acl for ftp protocol)
http_access allow ftp                       #(Allow browsing above created ftp acl)
#save the squid.conf file
0
 
LVL 13

Expert Comment

by:Sandy
ID: 40324571
don't forget to reload or restart your squid after making above changes.

Ty/SA
0

Featured Post

Better Security Awareness With Threat Intelligence

See how one of the leading financial services organizations uses Recorded Future as part of a holistic threat intelligence program to promote security awareness and proactively and efficiently identify threats.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
2 LAN/WAN on One Server 2 46
Nic to NIC 5 47
network timeout on mapped drive 3 28
Error installing extension Linux 4 36
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

20 Experts available now in Live!

Get 1:1 Help Now