Topic: flash, java and the proxy server connection problem

[pogopolice]

BypassProxyFrom/BypassProxyTo won't have any effect if your browser (and java) are configured to talk directly to the proxy -- they will only work if you are counting on the SME server to proxy your traffic 'transparently'.

The only proxy config in firefox that gets me online is to set edit/preferences/network/settings/manual proxy config :
[sme server ip] : 8080
or
[dsl modem ip] : 80
in both cases dan's content filter is working properly.

I am using Knetworkmanager with the sme server as the default gateway.I don't get an internet connection if in firefox I choose "no proxy" or "auto detect proxy settings for this network".  If I remove or change the default gateway in Knetworkmanager, I lose my connection.

You could also do a port scan to see if port 43594 is really open, see grc.com

the port scan shows that 43594 is closed.  What do I need to do to open the port?

[mmccarn]

I feel like we're going around in circles.

If you want to try to get this to work:


1) Restore *all* SME server firewall and proxy settings to defaults.
2) Configure the application to talk directly to the internet, using the SME server's LAN IP as the default gateway.
3) Test your application
4) If (as expected) it doesn't work, disable the SME http proxy
5) Test your application
6) It *should* work at this point - the SME is acting like any other port-forwarding router on the planet.  If it doesn't work at this point, something failed in steps 1 or 3 (Verify this by replacing the SME temporarily with a Linksys router).
6) Re-enable the SME http proxy, and configure an appropriate BypassProxyFrom *or* BypassProxyTo rule.
7) Test your application
If it still works, try reinstalling Dansguardian; if it doesn't, look at /var/log/iptables/current to see if there is any indication of what is being blocked.

[pogopolice]

I apologize for my lack of attention to detail, but in the original post I didn't note that after setting up dansguardian I have also run a series of commands to put the sme server into stealth mode.

as per this link I ran the following commands:
config setprop masq Stealth yes
config setprop ftp access private
config setprop smtpd access private
config setprop dnscache access private
config setprop httpd-e-smith access private
config setprop oidentd access private
config setprop modSSL access private
config setprop ssmtpd access private
config setprop sshd access private
config setprop imaps access private
config setprop ldap access private
config setprop pop3 access private
config setprop pop3s access private
config setprop nmbd access private
config setprop smbd access private
signal-event post-upgrade
signal-event reboot

If that throws up any obvious red flags, please let me know.  For now I'm trying to find the time to follow the process that mmccarn outlined.  Thanks, by the way.