Proxy só funciona com firewall desativado
-
Fala galera,
configurei o proxy para funcionar com o tutorial autenticando no windows e lendo grupos pelo squidguard.Porém o acesso só funciona com o firewall desabilitado, alguem poderia me dar uma dica?
Obrigado
-
Primeiro passo antes de desativar o firewall é conferir suas regras e monitorar via console/ssh o trafego com o tcpdump.
-
Boa noite amigo,
monitorei a porta 3128 do proxy e me deu essa mensagem, saberia me dizer o que pode ser? obrigado novamente.
Aqui eu uso vlans 192.168.40.0, 41.0, 51.0, 60.0 e 61.0 eu coloquei eles como rota estatica e pelo ssh consigo conectar normalmente, porem pela porta 3128 não vai com o firewall ativado.
00:00:01.007567 rule 5/0(match): block in on re0: (tos 0x0, ttl 127, id 4271, offset 0, flags [DF], proto TCP (6), length 48)
192.168.61.83.52606 > 192.168.0.60.3128: Flags ~~, cksum 0xc559 (correct), seq 935120242, win 8192, options [mss 1460,nop,nop,sackOK], length 0
00:00:00.250006 rule 5/0(match): block in on re0: (tos 0x0, ttl 127, id 4318, offset 0, flags [DF], proto TCP (6), length 48)
192.168.61.83.52607 > 192.168.0.60.3128: Flags ~~, cksum 0x28cf (correct), seq 3011243580, win 8192, options [mss 1460,nop,nop,sackOK], length 0
00:00:00.752378 rule 5/0(match): block in on re0: (tos 0x0, ttl 64, id 0, offset 0, flags [DF], proto UDP (17), length 68)
192.168.0.9.3205 > 255.255.255.255.3206: UDP, length 40listening on re0, link-type EN10MB (Ethernet), capture size 96 bytes
21:17:37.742315 IP 192.168.61.83.52279 > 192.168.0.60.3128: Flags, seq 3392283331, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0~~~~
21:17:37.992987 IP 192.168.61.83.52280 > 192.168.0.60.3128: Flags, seq 3736999811, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
21:17:40.739282 IP 192.168.61.83.52279 > 192.168.0.60.3128: Flags, seq 3392283331, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
21:17:40.992140 IP 192.168.61.83.52280 > 192.168.0.60.3128: Flags, seq 3736999811, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
21:17:46.744601 IP 192.168.61.83.52279 > 192.168.0.60.3128: Flags, seq 3392283331, win 8192, options [mss 1460,nop,nop,sackOK], length 0
21:17:46.990562 IP 192.168.61.83.52280 > 192.168.0.60.3128: Flags, seq 3736999811, win 8192, options [mss 1460,nop,nop,sackOK], length 0
21:17:58.746932 IP 192.168.61.83.52285 > 192.168.0.60.3128: Flags, seq 2963282421, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
21:17:58.996931 IP 192.168.61.83.52286 > 192.168.0.60.3128: Flags, seq 3421026813, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0
21:18:01.748748 IP 192.168.61.83.52285 > 192.168.0.60.3128: Flags, seq 2963282421, win 8192, options [mss 1460,nop,wscale 8,nop,nop,sackOK], length 0