You are not logged in.
I have a router 10.0.3.1 on gentoo and I have file sever on archlinux 10.0.3.2 in my office network.
I installed on 10.0.3.56 clear archlinux and now want to install some packages,but pacman doesn't work
On the 10.0.3.2 archlinux system pacman ssh and etc works ok!
ping to the google.ru from 10.0.3.56 going properly too, but traceroute stoping on the 10.0.3.1
in the /etc/resolv.conf
search vodoline.loc
nameserver 10.0.3.1configuration of /etc/rc.conf the very similar with 10.0.3.2. diff only in IP and DAEMONS ,but network is included
here is squid.conf 10.0.3.1
http_port 10.0.3.1:4000
icp_port 0
udp_incoming_address 10.0.3.1
hierarchy_stoplist cgi-bin ?
acl QUERY urlpath_regex cgi-bin \?
no_cache deny QUERY
cache_dir ufs /var/cache/squid 1000 30 256
logformat my %ts %>a %<st %ru %Sh %mt
access_log /var/log/squid/access.mylog my
access_log /var/log/squid/access.log squid
pid_filename /var/run/squid.pid
auth_param basic children 5
auth_param basic realm Squid proxy-caching web server
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl bask src 10.0.3.56/255.255.255.255
acl zaharov src 10.0.3.70/255.255.255.255
acl buh src 10.0.3.33/255.255.255.255
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 # http
acl Safe_ports port 110 # POP3
acl Safe_ports port 25 # SMTP
acl Safe_ports port 53 # DNS
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 30583 # gopher
acl Safe_ports port 1025-65535 # unregistered ports
acl CONNECT method CONNECT
acl LOCAL src 10.0.3.0/24
acl BANNER url_regex -i movie banner games wallpap reklama linkexch click love banpics stars dom2 xxx sex girls boobs telki pussy tits hentai babes porn desctopix oboi erogall damvam begun бёus\.yimg\.com [\./]ad[s]?[\./]
acl media url_regex -i \.avi$ \.mpg$ \.mpeg$ \.mp3$ \.3gp$ \.mov$ \.wav$ \.wm$ \.swf$
acl BANNERS url_regex "/etc/squid/banners"
acl accepted dstdomain "/etc/squid/accepted"
http_access allow accepted
http_access allow zaharov all
http_access allow bask all
http_access deny BANNERS
http_access deny media
http_access allow LOCAL
http_access deny all
http_access deny !Safe_ports
http_access deny CONNECT !SSL_ports
http_reply_access allow all
visible_hostname Local Proxy Server
forwarded_for off
coredump_dir /var/cache/squid
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on httpd_accel_uses_host_header onhere is iptables
#!/bin/sh
#clear all chains
iptables -F INPUT
iptables -F OUTPUT
iptables -F FORWARD
iptables -A OUTPUT -m limit --limit 3/minute --limit-burst 3 -j LOG --log-level 6 --log-prefix "ACC_IN:"
iptables -A OUTPUT -o ppp0 -s 10.0.3.0/255.255.255.0 -p tcp --sport 80 -j ACCEPT
#iptables -A OUTPUT -p tcp -s 10.0.3.0/24
iptables -t nat -A PREROUTING -s 10.0.3.1/24 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 4000
#
iptables -A INPUT -i eth0 -j ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A INPUT -i ppp0 -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A INPUT -i ppp0 -p tcp --destination-port smtp -j ACCEPT
iptables -A INPUT -i ppp0 -p tcp --destination-port ssh -j ACCEPT
iptables -A INPUT -i ppp0 -p tcp --destination-port 110 -j ACCEPT
iptables -A INPUT -i ppp0 -p tcp --destination-port http -j ACCEPT
iptables -A INPUT -i ppp0 -p tcp --destination-port 45689 -j ACCEPT
iptables -P INPUT DROP
# ati
iptables -A FORWARD -s 10.0.3.0/24 -p tcp --destination-port 20003 -j ACCEPT
iptables -A FORWARD -s 10.0.3.2 -j ACCEPT
iptables -A FORWARD -s 10.0.3.3 -j ACCEPT
iptables -A FORWARD -d 10.0.3.0/24 -m state --state ESTABLISHED,RELATED -j ACCEPT
iptables -A FORWARD -s 10.0.3.0/24 -p icmp -j ACCEPT
iptables -A FORWARD -s 10.0.3.0/24 -p tcp --destination-port https -j ACCEPT
iptables -A FORWARD -s 10.0.3.0/24 -p tcp --destination-port 5190 -j ACCEPT
iptables -P FORWARD DROP
iptables -t nat -A POSTROUTING -s 10.0.3.0/24 -o ppp0 -j MASQUERADE
echo 1 > /proc/sys/net/ipv4/ip_forwardhere is iptables -L
Chain INPUT (policy DROP)
target prot opt source destination
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere
ACCEPT all -- anywhere anywhere state RELATED,ESTABLISHED
ACCEPT tcp -- anywhere anywhere tcp dpt:smtp
ACCEPT tcp -- anywhere anywhere tcp dpt:ssh
ACCEPT tcp -- anywhere anywhere tcp dpt:pop3
ACCEPT tcp -- anywhere anywhere tcp dpt:http
ACCEPT tcp -- anywhere anywhere tcp dpt:45689
Chain FORWARD (policy DROP)
target prot opt source destination
ACCEPT tcp -- 10.0.3.0/24 anywhere tcp dpt:20003
ACCEPT all -- archserver anywhere
ACCEPT all -- 10.0.3.3 anywhere
ACCEPT all -- anywhere 10.0.3.0/24 state RELATED,ESTABLISHED
ACCEPT icmp -- 10.0.3.0/24 anywhere
ACCEPT tcp -- 10.0.3.0/24 anywhere tcp dpt:https
ACCEPT tcp -- 10.0.3.0/24 anywhere tcp dpt:aol
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
LOG all -- anywhere anywhere limit: avg 3/min burst 3 LOG level info prefix `ACC_IN:'
ACCEPT tcp -- 10.0.3.0/24 anywhere tcp spt:httpOffline
any ideas?
Offline