[CentOS-es] Problemas squid+dansguardian+iptables

ruben guerra nina ruben_gn en hotmail.com
Mie Oct 13 21:22:38 EDT 2010 

Hola
 
Tengo instalado Centos 5.5 con squid+dansguardian e iptables
las lineas de abajo corresponden a la reglas de iptables, pero tengo problemas para cargar las paginas, aveces carga aveces no me sale una venta con el contenido que pongo al final.
 
Si alguno tiene una idea de donde esta el problema o pudiera darme alguna sugerencia se lo agradeceria muchisimo
 
eth0------ LAN
eth0------ WAN
 
 
 
echo -n Aplicando reglas
echo
iptables -F
iptables -X
iptables -Z
iptables -t nat -F
#Politicas por defecto
iptables -P INPUT ACCEPT
iptables -P OUTPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -t nat -P PREROUTING ACCEPT
iptables -t nat -P POSTROUTING ACCEPT
 
#Empezamos a filtrar
iptables -A INPUT -s 192.168.12.0/24 -i eth0 -j ACCEPT
iptables -t nat -A POSTROUTING -s 192.168.12.0/24 -o eth1 -j MASQUERADE
echo "1" > /proc/sys/net/ipv4/ip_forward
 
#Redireccionamos para evitar que se salten el proxy o dansguardian
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 3128 -j REDIRECT --to-port 8080

ERROR
The requested URL could not be retrieved
--------------------------------------------------------------------------------
While trying to process the request: 
GET / HTTP/1.1
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, application/x-ms-application, application/x-ms-xbap, application/vnd.ms-xpsdocument, application/xaml+xml, */*
Accept-Language: es
Accept-Encoding: identity,gzip,deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)
Host: www.google.com.pe
Connection: Close
Cookie: PREF=ID=856d6648d6182856:U=c90830b041f06d67:FF=0:TM=1287010384:LM=1287010391:S=t_trqGFztpsYNKiD; NID=39=DR2tIaD7Ob3jLyTaV30GHqLe8pZv6jhi4NHMXVnfQhmrQSsdbzhnwy4HtLQXvv8NNfQOk3tkp16F7dt6NDDnypEwVGMwP51ufHHp4h1tAwR4HwvsTFBYydE_0EPSo4XM

The following error was encountered: 
Invalid Request 
Some aspect of the HTTP Request is invalid. Possible problems: 
Missing or unknown request method 
Missing URL 
Missing HTTP Identifier (HTTP/1.0) 
Request is too large 
Content-Length missing for POST or PUT requests 
Illegal character in hostname; underscores are not allowed 
Your cache administrator is computofce en unac.pe. 
Generated Thu, 14 Oct 2010 01:10:11 GMT by iproxy.unac.pe (squid/2.6.STABLE21)

Más información sobre la lista de distribución CentOS-es