Hello community!
I’m a beginner on IpFire and I installed my firewall today but I’m having some problems…
I have a simple green + red configuration.
What works:
*ssh access and web interface from green or red
*hardware
What doesn’t seem normal to me:
*an ifconfig command gives me the two interfaces with a broadcast address of 0.0.0.0 even though the addresses and masks are correct!
What doesn’t work:
*I need to use web proxy to communicate and authenticate to an upstreamproxy in the red zone. I think my syntax in squid.conf is correct:
cache_peer upstreamproxyName.fr parent 3128 3130 login=PASS proxy-only no-query
What firewall rules should be added knowing that the two proxies are on 3128?
Thank you very much for your help and have a nice day!
Have you read www.ipfire.org - Upstream proxy about upstream proxy?
How are red and green configured? For DHCP config on red the broadcast address should be given by the DHCP server.
Thanks for your response!
Yes i have read it and I put PASS in the field Login in order to have this cache_peer xxxxxxxx.fr parent 3128 3130 login=PASS proxy-only no-query in squid.conf and i think it’s correct.
The proxy is working fine now!
I want now to adjust my firewall rules in order to deny all the traffic except:
*proxy web (3128 for the both in red and green)
*ssh(22) and 444 input
*DNS
The red interface has a static address, not DHCP.
Thanks (and sorry for my poor english)
please see here for the firewall documentation, and here for some recommendation on this topic.
As the topic of this thread is solved, I’m taking the liberty of closing it. If you encounter any further problems related to firewall, please feel free to open a new thread in the Firewall Rules - IPFire Community category if your question is not answered in the IPFire wiki.
