proxy question

randyloveless · April 25, 2005, 9:03pm

hello all

ok i have proxy up and working well but . i have a
ip address is 64.3.3.x
http://www.xyz.com/shop/admin page that from out side my network works fine
but from within doesnt work i get Error: Access is Denied

this server is outside of my MT network not inside

i have tried adding the web to the direct tab but doesnt seem to matter. what am i doing incorrectly.

i can access the http://www.xyz.com/shop website from with in the network

randyloveless · April 25, 2005, 9:06pm

also forgot to state that if i access this webpage form a
https://www.xyz.com/shop/admin

the first page works and logs in then all other pages dont cause i am not
loging in all pages with https

Randy

onubah · May 5, 2005, 11:50am

Hi Randy,

CAn you show me how you configured your Web Proxy Plus cache cos, I am having problem or I dont understand.

I have cnonfigured the proxy and in the cache area I can see about 10 hits. Do I need to have more hits before browsing will improve, or I am missing something.

Thanks

Paul

onubah · May 5, 2005, 11:50am

Hi Randy,

CAn you show me how you configured your Web Proxy Plus cache cos, I am having problem or I dont understand.

I have cnonfigured the proxy and in the cache area I can see about 10 hits. Do I need to have more hits before browsing will improve, or I am missing something.

Thanks

Paul

randyloveless · May 5, 2005, 5:59pm

this is how i have it set and works

ip web-proxy> print
enabled: yes
src-address: 0.0.0.0
port: 8080
hostname: proxy
transparent-proxy: yes
parent-proxy: 0.0.0.0:0
cache-administrator: webmaster@srsnetworks.net
max-object-size: 32000 kB
cache-drive: secondary-master
max-cache-size: unlimited
status: running
reserved-for-cache: 30083 MB

Status of the web-proxy

ip web-proxy> mon
status: running
uptime: 14d19h8m47s
clients: 414
requests: 1164763
hits: 426346
cache-size: 2921196 kB
received-from-servers: 6740347 kB
sent-to-clients: 8201951 kB
hits-sent-to-clients: 1548139 kB

web proxy rules i have setup are

ip web-proxy access> pr
Flags: X - disabled, I - invalid
0 ;;; allow CONNECT only to SSL ports 443 [https] and 563 [snews]
dst-port=!443 method=connect action=deny

1 ;;; Our customers
src-address=192.168.4.0/24 action=allow

2 ;;; Our customers
src-address=212.212.212.0/24 action=allow

3 ;;; Deny using us as telnet and SMTP relay
dst-port=23-25 action=deny

4 ;;; Deny everything else
action=deny

under ip firewall dst-nat print
these two rules catch all traffic on two different interfaces

9 in-interface=local srs dst-address=!64.173.180.181/32:80 protocol=tcp
action=redirect to-dst-port=8080

10 in-interface=wireless network dst-address=!64.173.180.181/32:80
protocol=tcp action=redirect to-dst-port=8080

ip web-proxy cache> pri
Flags: X - disabled, I - invalid
0 ;;; don’t cache dynamic http pages
url=“cgi-bin \?” method=get action=deny