[shell-script] Squid, erro 404 para Messenger

[Rogério Bernardes]

Estou com o seguinte problema.

Ativei meu Squid, e estou navegando normalmente,porem
nao cheguei a testar o acesso SSL porta 443 (terminal
Server por exemplo) e o Messenegr (porta 1863).
Apos criar alumas regras iptables, percebi que nao
consigo mais acessar o messenger e nem meu servidor
windows pelo terminal Server. Mas nao tenho certeza se
é isso realmente que está influenciando.

alguem poderia me ajudar???

Segue meu SQUID.CONF e logo abaixo, minhas regras
IPTABLES
#####################  Inicio de roteamento e tabela
IPTABLES
# echo 1 > /proc/sys/net/ipv4/ip_forward

iptables -A INOUT -i lo -j ACCEPT
iptables -A INPUT -p tcp -s 200.171.74.178
--destination-port 22 -j ACCEPT
# iptables -t nat -A FORWARD -d loginnet.passport.com
-p tcp --dport 1863 -j ACCEPT
# iptables -A INPUT -p tcp --destination-port 1021 -j
ACCEPT
# iptables -A INPUT -p tcp --destination-port 1080 -j
ACCEPT
iptables -A INPUT -p tcp -s 192.168.0.0/255.255.255.0
-j ACCEPT
iptables -A FORWARD -p TCP --dport 1863 -j ACCEPT
iptables -A FORWARD -p TCP --dport 443 -j ACCEPT
iptables -A INPUT -p tcp --syn -j DROP
##############################################

http_port 3128
visible_hostname srvlinux

# CONFIGURACAO DO CACHE
cache_mem 32 MB
maximum_object_size_in_memory 64 KB
maximum_object_size 512 MB
minimum_object_size 0 KB
cache_swap_low 90
cache_swap_high 95
cache_dir ufs /var/spool/squid 20248 16 256

# LOCAL DO LOG DE ACESSOS DO SQUID
cache_access_log /var/log/squid/access.log

refresh_pattern  ^ftp:        15   2%  2280
refresh_pattern  ^gopher:     15   0%  2280
refresh_pattern  .            15  20%  2280

acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localhost src 127.0.0.1/255.255.255.255
acl SSL_ports port 443 563
acl Safe_ports port 80         # http
acl Safe_ports port 21         # ftp
acl Safe_ports port 443 563    # https, snews
acl Safe_ports port 70         # gopher
acl Safe_ports port 210        # wais
acl Messenger port 1863
acl Safe_ports port 1025-65535 # portas sem registro
acl Safe-ports port 280        # http-mgmt
acl Safe-ports port 488        # gss-http
acl Safe-ports port 591        # filemaker
acl Safe-ports port 777        # multiling http
acl Safe-ports port 901        # SWAT
acl purge method PURGE
acl CONNECT method CONNECT

http_access allow manager localhost
http_access deny manager
http_access allow purge localhost
http_access deny purge
ttp_access allow Messenger
http_access deny !Safe_ports
http_access allow CONNECT !SSL_ports

# LIBERA ACESSO FULL EM DETERMINADO HORARIO
acl horariofree time 00:00-01:00
http_access allow horariofree

# FILTROS POR PALAVRAS E POR DOMINIOS
acl proibidos dstdom_regex "/etc/squid/proibidos"
http_access deny proibidos

acl bloqueados dstdomain www.playboy.com.br
playboy.com.br playboy.com www.playboy.com
http_access deny bloqueados

# LIBERA ACESSO PARA A REDE LOCAL
acl redelocal src 192.168.0.0/24
http_access allow localhost
http_access allow redelocal

# BLOQUEIA ACESSOS EXTERNOS
http_access deny all


################################################################
REGRAS ITABLES
################################################################

#  Inicio de roteamento e tabela IPTABLES
# echo 1 > /proc/sys/net/ipv4/ip_forward

iptables -A INOUT -i lo -j ACCEPT
iptables -A INPUT -p tcp -s 200.171.74.178
--destination-port 22 -j ACCEPT
# iptables -t nat -A FORWARD -d loginnet.passport.com
-p tcp --dport 1863 -j ACCEPT
# iptables -A INPUT -p tcp --destination-port 1021 -j
ACCEPT
# iptables -A INPUT -p tcp --destination-port 1080 -j
ACCEPT
iptables -A INPUT -p tcp -s 192.168.0.0/255.255.255.0
-j ACCEPT
iptables -A FORWARD -p TCP --dport 1863 -j ACCEPT
iptables -A FORWARD -p TCP --dport 443 -j ACCEPT
iptables -A INPUT -p tcp --syn -j DROP



Agradeço se alguém puder me ajudar!

Rogério


        



        
                
_______________________________________________________ 
Yahoo! doce lar. Faça do Yahoo! sua homepage. 
http://br.yahoo.com/homepageset.html