Solved

How do I add an IP for FTP on Squid?

Posted on 2014-09-15
3
325 Views
Last Modified: 2014-09-16
I am trying to work with a software vendor to set up software that uploads specific data via FTP to their facility.
This is coming from a satellite facility that connects through a proxy (Squid) located at our main location.

The vendor has suggested that I add their IP address to Squid to allow two way communication.
Is this correct and if it is, how do I add it?
IP = 64.38.XXX.XX for port 21
I am a novice at configuring Squid and I have spent time googling it, but I have not had much luck.
0
Comment
Question by:RSchalhoub
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 1

Accepted Solution

by:
Serafin Rusu earned 500 total points
ID: 40323949
add this to /etc/squid.conf
"
acl squidclient2 src 64.38.xx.xx/32
http_access allow squidclient2
"

make sure you put these 2 lines before:
"
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
"

I don't know how this will help your vendor, but this is the way.
0
 
LVL 14

Expert Comment

by:Natty Greg
ID: 40324322
Here you go

[root@server ~#]vi /etc/squid/squid.conf
acl SSL_ports port 443 21                 #(Edit add the ftp port 21 to SSL port acl)
acl ftp proto FTP                              #(Create a new acl for ftp protocol)
http_access allow ftp                       #(Allow browsing above created ftp acl)
#save the squid.conf file
0
 
LVL 13

Expert Comment

by:Sandy
ID: 40324571
don't forget to reload or restart your squid after making above changes.

Ty/SA
0

Featured Post

Manage your data center from practically anywhere

The KN8164V features HD resolution of 1920 x 1200, FIPS 140-2 with level 1 security standards and virtual media transmissions at twice the speed. Built for reliability, the KN series provides local console and remote over IP access, ensuring 24/7 availability to all servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When it comes to security, there are always trade-offs between security and convenience/ease of administration. This article examines some of the main pros and cons of using key authentication vs password authentication for hosting an SFTP server.
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Suggested Courses

635 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question