[tclug-list] Squid Problems

[justin.vogt at bold.k12.mn.us]

This is my first post. I thank  you for you input in advance.

I have a FC3 box that is doing routing and is the proxy for my local lan. 
If I set my browser to hit the proxy manually on 3128 everything works
fine.  When I add the shorewall rule of..

REDIRECT        loc   3128            tcp     www

I get the squid error page and message invalid url.  When I check my squid
access log I get this error

TCP_DENIED/400 1433 GET / - NONE/- text/html

Here is a copy of my squid.conf

acl all src 0.0.0.0/0.0.0.0
acl passport dstdomain .passport.com
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl O src x.x.x.x/255.255.255.0
acl B src x.x.x.x/255.255.255.0
http_access allow O
http_access allow passport
http_access allow B
acl SSL_ports port 443 563
acl Safe_ports port 80		# http
acl Safe_ports port 21		# ftp
acl Safe_ports port 443 563	# https, snews
acl Safe_ports port 70		# gopher
acl Safe_ports port 210		# wais
acl Safe_ports port 1025-65535	# unregistered ports
acl Safe_ports port 280		# http-mgmt
acl Safe_ports port 488		# gss-http
acl Safe_ports port 591		# filemaker
acl Safe_ports port 777		# multiling http
acl Safe_ports port 80 21 443 563 70 210 1025-65535
http_access deny !Safe_ports
acl CONNECT method CONNECT
no_cache deny !SSL_ports



Justin Vogt