He leido e intentado algunos manuales añadiendo script para iptables pero no logro hacer funcionar el correo por POP. espero puedan ayudarme cualquier ayuda es buena y si tienen algun tuto o modificacion que me puedan brindar seria genial aca les posteo mi squid.conf y lo que me muestra el iptables -L -n, gracias de antemano por su apoyo y ayuda.-..
squid.conf , acepto sugerencias.
Cita:
iptables -L -n# WELCOME TO SQUID 2.6.STABLE5
http_port 3128
http_port 80
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
hosts_file /etc/hosts
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
cache_mem 100 MB
cache_dir ufs /var/spool/squid 100 16 256
ftp_user [email protected]
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
#permite la conexion, mediante CONNECT, a puertos tipicos SSL: 443 y 563
acl SSL_ports port 443 563 25 110
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl purge method PURGE
acl CONNECT method CONNECT
################################################## ###
acl redpermitida src "/etc/squid/listas/redpermitida"
acl rednopermitida src "/etc/squid/listas/rednopermitida"
acl prohi url_regex "/etc/squid/listas/prohibidos"
acl sitepermitidos dstdomain "/etc/squid/listas/sitepermitidos"
acl webtotal src "/etc/squid/listas/webtotal"
################################################## ####
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow webtotal
http_access allow redpermitida sitepermitidos
http_access deny prohi !sitepermitidos
http_access deny rednopermitida
http_access deny all
http_reply_access allow all
cache_mgr [email protected]
icp_access allow all
cache_effective_group proxy
visible_hostname localhost
error_directory /usr/share/squid/errors/Spanish
coredump_dir /var/spool/squid
http_port 3128
http_port 80
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
access_log /var/log/squid/access.log squid
hosts_file /etc/hosts
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
cache_mem 100 MB
cache_dir ufs /var/spool/squid 100 16 256
ftp_user [email protected]
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
#permite la conexion, mediante CONNECT, a puertos tipicos SSL: 443 y 563
acl SSL_ports port 443 563 25 110
acl Safe_ports port 80 21 443 563 70 210 1025-65535
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl purge method PURGE
acl CONNECT method CONNECT
################################################## ###
acl redpermitida src "/etc/squid/listas/redpermitida"
acl rednopermitida src "/etc/squid/listas/rednopermitida"
acl prohi url_regex "/etc/squid/listas/prohibidos"
acl sitepermitidos dstdomain "/etc/squid/listas/sitepermitidos"
acl webtotal src "/etc/squid/listas/webtotal"
################################################## ####
http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_access allow localhost
http_access allow webtotal
http_access allow redpermitida sitepermitidos
http_access deny prohi !sitepermitidos
http_access deny rednopermitida
http_access deny all
http_reply_access allow all
cache_mgr [email protected]
icp_access allow all
cache_effective_group proxy
visible_hostname localhost
error_directory /usr/share/squid/errors/Spanish
coredump_dir /var/spool/squid
Cita:
proxy:/etc/network/if-pre-up.d# iptables -L -n
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain bloquear-spoof (0 references)
target prot opt source destination
Chain pqtes-icmp-permitidos (0 references)
target prot opt source destination
Chain pqtes-tcp-permitidos (0 references)
target prot opt source destination
Chain pqtes-udp-permitidos (0 references)
target prot opt source destination
Chain INPUT (policy ACCEPT)
target prot opt source destination
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain bloquear-spoof (0 references)
target prot opt source destination
Chain pqtes-icmp-permitidos (0 references)
target prot opt source destination
Chain pqtes-tcp-permitidos (0 references)
target prot opt source destination
Chain pqtes-udp-permitidos (0 references)
target prot opt source destination