I'm using optus cable connection, and try to build an internal server. 1
comp (192.168.1.1) with squid and 1 comp (192.168.1.2) with BIND + Samba
+ Apache. A few computers (192.168.1.15) as client
On the client computer, I can see the Apache server with typing
'servcafe.domcafe.com' when Squid is not running But, if the squid is
running, I can't see open the Apache (the server is down, try another
time)
Actually, I want to make a http server where if client from outside
world hitting my optus ip address -or- my full optus name
(co1234567-a.rivrw1.nsw.optushome.com.au) it will redirect onto my local
apache server (192.168.1.2)
I know that I have to do it with iptables also. But anyway, is my BIND
and SQUID configured correctly?
Anyone could help me?
Best Regards,
Phillipus.
I configured the BIND as:
name.conf:
options {
directory "/var/named";
forwarders {
203.164.20.180;
203.164.20.179;
};
allow-query {
localhost;
192.168.1.1;
192.168.1.15;
};
allow-recursion { 192.168.1.0/24; localhost; };
};
//----------------------------------
zone "." {
type hint;
file "named.ca";
};
zone "0.0.127.in-addr.arpa" {
type master;
file "named.local";
};
//----------------------------------
zone "domcafe.com" {
type master;
file "named.domcafe.com";
allow-query { any; };
};
zone "1.168.192.in-addr.arpa" {
type master;
file "named.domcafe.com.rev";
allow-query { any; };
};
named.domcafe.com:
$TTL 3D
domcafe.com. IN SOA servcafe.domcafe.com.
hostmaster.domcafe.com. (
199902151 ; Serial Number
8H ; Refresh every 3 hours
2H ; Retry every 30 minutes
4W ; Expire in 2 weeks
1D ) ; Minimum 1 week
domcafe.com. IN NS servcafe.domcafe.com.
servcafe.domcafe.com. IN A 192.168.1.2
www. IN CNAME
servcafe.domcafe.com.
co1234567-a. IN A 192.168.1.1
serv2cafe.domcafe.com. IN A 192.168.1.3
wincafe.domcafe.com. IN A 192.168.1.15
named.domcafe.com.rev:
$TTL 3D
1.168.192.in-addr.arpa. IN SOA servcafe.domcafe.com.
hostmaster.domcafe.com. (
199902151 ; Serial
8H ; Refresh rate (3 hours)
2H ; Retry (30 minutes)
4W ; Expire (2 weeks)
1D ) ; Minimum (1 week)
1.168.192.in-addr.arpa. IN NS servcafe.domcafe.com.
2.1.168.192.in-addr.arpa. IN PTR servcafe.domcafe.com.
1.1.168.192.in-addr.arpa. IN PTR co1234567-a.
3.1.168.192.in-addr.arpa. IN PTR serv2cafe.domcafe.com.
15.1.168.192.in-addr.arpa. IN PTR wincafe.domcafe.com.
And here's the Squid.conf on 192.168.1.1:
# NETWORK OPTIONS
http_port 3128
http_port 192.168.1.2:80
icp_port 0
tcp_outgoing_address 255.255.255.255
udp_incoming_address co1234567-a.rivrw1.nsw.optushome.com.au
udp_outgoing_address 255.255.255.255
# OPTIONS WHICH AFFECT THE NEIGHBOR SELECTION ALGORITHM
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
# OPTIONS WHICH AFFECT THE CACHE SIZE
cache_mem 32 MB
cache_replacement_policy heap GDSF
memory_replacement_policy heap GDSF
# LOGFILE PATHNAMES AND CACHE DIRECTORIES
cache_dir ufs /cache 200 16 256
client_netmask 255.255.255.0
# OPTIONS FOR EXTERNAL SUPPORT PROGRAMS
redirect_rewrites_host_header off
# ACCESS CONTROLS
-sniffed-
# ADMINISTRATIVE PARAMETERS
cache_mgr [EMAIL PROTECTED]
cache_effective_user squid
cache_effective_group squid
# HTTPD-ACCELERATOR OPTIONS
httpd_accel_port 3128 80
httpd_accel_host 192.168.1.2
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
# MISCELLANEOUS
append_domain .servcafe.domcafe.com
forwarded_for on
log_icp_queries off
cachemgr_passwd abcdefghijklmnopqrstuv all
acl local-servers dstdomain servcafe.domcafe.com
acl optus-name dstdomain co1234567-a.rivrw1.nsw.optushome.com.au
always_direct allow local-servers
always_direct allow optus-name
_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com
--
SLUG - Sydney Linux User Group Mailing List - http://slug.org.au/
More Info: http://lists.slug.org.au/listinfo/slug
