Koozali.org: home of the SME Server

Obsolete Releases => SME Server 7.x => Topic started by: bpivk on June 30, 2007, 04:14:04 PM

Title: Problem with one particual webpage using proxy
Post by: bpivk on June 30, 2007, 04:14:04 PM

Ok i stumbled on a webpage that doesn't seem to like my proxy.
If i enable proxy (under proxy settings) the site detects it and it displays "Proxy not allowed" webpage. The site works normally if i disable proxy (but i need it for squidguard content filtering).

I tryed with direct connect (with Squid Proxy Administration contrib) but it doesn't work either.

Any help would be really apreciated because i've ran out of ideas.

Title: Problem with one particual webpage using proxy
Post by: mmccarn on July 01, 2007, 06:29:33 PM

( Content removed - see following post and bugzilla NFR referenced below)

Explanation:

I have duplicated the existing 35transproxy and 90adjustTransProxy to look for, and create rules for, new config variables 'BypassProxyTo' and 'BypassProxyFrom'.

The modifications I have inserted are based on the AllowHosts / DenyHosts code from 90InboundTCP10filter_tcp.

You can list multiple hosts or networks that require proxy bypass separated by commas.

'BypassProxyTo' is expanded into the --destination section of an iptables rule (use this to bypass the proxy server when accessing remote hosts or networks)

'BypassProxyFrom' is expanded into the --source section of an iptables rule (use this to allow specified internal hosts or networks to bypass the proxy server entirely)

It seems to work for me...

Here's a link to the Bugzilla NFR for this feature: http://bugs.contribs.org/show_bug.cgi?id=2374

Title: Problem with one particual webpage using proxy
Post by: mmccarn on July 01, 2007, 07:40:28 PM

After re-reading the bugzilla NFR listed above I modified my scripts...  Here are some updated instructions that avoid pico and extensive copying and pasting:

mkdir -p /etc/e-smith/templates-custom/etc/rc.d/init.d/masq
cd /etc/e-smith/templates-custom/etc/rc.d/init.d/masq
wget -O 35transproxy http://bugs.contribs.org/attachment.cgi?id=1191
wget -O 90adjustTransProxy http://bugs.contribs.org/attachment.cgi?id=1192
config setprop squid BypassProxyTo

a.b.c.d
expand-template /etc/rc.d/init.d/masq
service masq restart[/list]

* Replace a.b.c.d with the IP or network address for which you wish to bypass the proxy server.
* Use config setprop squid BypassProxyFrom a.b.c.d to configure a specific local host or network that should bypass the proxy server
* Note that 'signal-event remoteaccess-update' does not seem to completely rebuild /etc/rc.d/init.d/masq
* Be sure to check the bug for changes to the attachments: http://bugs.contribs.org/show_bug.cgi?id=2374)
* Disable proxy bypass using config delprop squid BypassProxyFrom  or config delprop squid BypassProxyTo