[EnGarde] Re: Reverse Proxy with Squid

Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit
Hi all,
Does anyone have any idea how to fix this??/ I'm stuck for the past 3 weeks with this issue. Any help greatly appreciated.
Chris.

Scott Kaelin wrote:
> It is an issue with the SEL policy. One of the Engarde guys will need
> to help you out witht he policy file
>
> On 4/17/07, Chris Malek <k.malek@csdcsystems.com> wrote:
>
>> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>> Content-Transfer-Encoding: 7bit
>> Small update,
>> it looks like it's not a problem with squid or my config, because as
>> soon as i put engarde into permisive mode, everything works like it
>> should., but then as soon as I put it back into enforcing mode I can't
>> start the squid....
>>
>> Any ideas?????
>> Chris
>>
>> Chris Malek wrote:
>>
>>> Content-Type: text/plain; charset=ISO-8859-1; format=flowed
>>> Content-Transfer-Encoding: 7bit
>>> Hello All,
>>> I'm either doing something wrong, or I don't know something about
>>> engarde + squid.
>>> No matter what I do Squid will not start. I want to use it as reverse proxy.
>>> I will not copy/paste 4000+ lines of config file but basically here is
>>> the stuff I put in it...(as per squid wiki faq)
>>>
>>> http_port 80 accel defaultsite=your.main.website
>>> cache_peer ip.of.webserver parent 80 0 no-query originserver
>>>
>>> And when I try to start it either from webtool or from CLI I'm getting
>>> this in the system log:
>>>
>>> Apr 17 09:17:06 dmz squid[9068]: Squid Parent: child process 9114 exited due to signal 6
>>> Apr 17 09:17:06 dmz kernel: audit(1176815826.532:173): avc: denied { name_bind } for pid=9114 comm="squid" src=80 scontext=root:system_r:initrc_t tcontext=system_u:object_r:http_port_t tclass=tcp_socket
>>> Apr 17 09:17:06 dmz squid[9068]: Squid Parent: child process 9114 started
>>>
>>> I would really appreciate any help with this.
>>> Thanks,
>>> Chris
>>>
>>>
>>>
>>> -- Binary/unsupported file stripped by Ecartis --
>>> -- Type: text/x-vcard
>>> -- File: k.malek.vcf
>>>
>>>
>>> ------------------------------------------------------------------------
>>> To unsubscribe email engarde-users-request@engardelinux.org
>>> with "unsubscribe" in the subject of the message.
>>>
>>>
>>>
>>>
>> --
>> Regards,
>>
>> Chris Malek
>> IT Support Analyst
>> CSDC Systems Inc.
>> 905 206-1296 ext 303
>> k.malek@csdcsystems.com
>>
>>
>>
>>
>> -- Binary/unsupported file stripped by Ecartis --
>> -- Type: text/x-vcard
>> -- File: k.malek.vcf
>>
>>
>> ------------------------------------------------------------------------
>> To unsubscribe email engarde-users-request@engardelinux.org
>> with "unsubscribe" in the subject of the message.
>>
>>
>>
>
>
>
-- Regards, Chris Malek IT Support Analyst CSDC Systems Inc. 905 206-1296 ext 303 k.malek@csdcsystems.com -- Binary/unsupported file stripped by Ecartis -- -- Type: text/x-vcard -- File: k.malek.vcf ------------------------------------------------------------------------ To unsubscribe email engarde-users-request@engardelinux.org with "unsubscribe" in the subject of the message.

• This message: [ Message body ]
• Next message: David: "[EnGarde] Re: Reverse Proxy with Squid"
• Next in thread: David: "[EnGarde] Re: Reverse Proxy with Squid"
• Reply: David: "[EnGarde] Re: Reverse Proxy with Squid"

• Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ]