* squid iptables snmp
@ 2004-10-22 10:13 Joel n.solanki
2004-10-22 10:21 ` squid
` (3 more replies)
0 siblings, 4 replies; 10+ messages in thread
From: Joel n.solanki @ 2004-10-22 10:13 UTC (permalink / raw)
To: netfilter, squid
Dear all,
I dont know wheather this problem is related to squid or iptables
netfilter.
But let me specify my problem. I tried my lots but i cant solve this
problem.
Mrtg server Squid + Netfilter box Mikrotik Router
When I try to create mrtg for mikrotik router which is behind Squid +
netfilter box, it gives me this error.
---------------------------------------------------------------------------
-base: Get Device Info on public@202.202.202.202:
SNMP Error:
no response received
SNMPv1_Session (remote host: "202.202.202.202" [202.202.202.202].161)
community: "public"
request ID: 1723286139
PDU bufsize: 8000 bytes
timeout: 2s
retries: 5
backoff: 1)
at /usr/bin/../lib/mrtg2/SNMP_util.pm line 450
SNMPGET Problem for sysDescr sysContact sysName sysLocation sysObjectID
on public@202.202.202.202:
at /usr/bin/cfgmaker line 657
--base: Vendor Id:
--base: Populating confcache
---------------------------------------------------------------------------
If I removed squid + netfilter box then I tried to create mrtg for
mikrotik router then i can easily do it. It doesnt give me any error.
Now i dont know wheather Is this problem related to Netfilter Iptables
OR squid proxy server ????
I thought this might be iptables firewall problem so I just made the
netfilter + squid box iptable rules to INPUT OUTPUT FORWARD to ACCEPT.
So now it should work but it didnt.
Now i cant sort out where is the problem lying ...with iptables or with
squid or any thing else ...
Awaiting for Ideas to get the solution in urgent.
--
Joel N.Solanki
Network Administrator
Mobile: 91-9426353268
Phone No: 0265-550001/2/3/4/5 Ext: 211/212
Digtial 2 Virtual Internet Service Provider.
http://www.packetraptor.com/
http://www.d2visp.com/
Gujarat (India)
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: squid iptables snmp
2004-10-22 10:13 squid iptables snmp Joel n.solanki
@ 2004-10-22 10:21 ` squid
2004-10-22 10:34 ` [squid-users] " Joel n.solanki
2004-10-22 13:37 ` Emilio Casbas
` (2 subsequent siblings)
3 siblings, 1 reply; 10+ messages in thread
From: squid @ 2004-10-22 10:21 UTC (permalink / raw)
To: Joel n.solanki, squid-users, netfilter
step 1
service snmpd stop
step 2
pico /etc/snmp/snmp.conf
step 3 change line
# sec.name source community
#com2sec notConfigUser default public
rocommunity public
step 4
service snmpd start
:)
----- Original Message -----
From: "Joel n.solanki" <zealous@bonbon.net>
To: "netfilter" <netfilter@lists.netfilter.org>; "squid"
<squid-users@squid-cache.org>
Sent: Friday, October 22, 2004 1:13 PM
Subject: [squid-users] squid iptables snmp
>
> Dear all,
>
> I dont know wheather this problem is related to squid or iptables
> netfilter.
> But let me specify my problem. I tried my lots but i cant solve this
> problem.
>
>
> Mrtg server Squid + Netfilter box Mikrotik Router
>
> When I try to create mrtg for mikrotik router which is behind Squid +
> netfilter box, it gives me this error.
>
> ---------------------------------------------------------------------------
> -base: Get Device Info on public@202.202.202.202:
> SNMP Error:
> no response received
> SNMPv1_Session (remote host: "202.202.202.202" [202.202.202.202].161)
> community: "public"
> request ID: 1723286139
> PDU bufsize: 8000 bytes
> timeout: 2s
> retries: 5
> backoff: 1)
> at /usr/bin/../lib/mrtg2/SNMP_util.pm line 450
> SNMPGET Problem for sysDescr sysContact sysName sysLocation sysObjectID
> on public@202.202.202.202:
> at /usr/bin/cfgmaker line 657
> --base: Vendor Id:
> --base: Populating confcache
> ---------------------------------------------------------------------------
>
>
> If I removed squid + netfilter box then I tried to create mrtg for
> mikrotik router then i can easily do it. It doesnt give me any error.
>
>
> Now i dont know wheather Is this problem related to Netfilter Iptables
> OR squid proxy server ????
>
> I thought this might be iptables firewall problem so I just made the
> netfilter + squid box iptable rules to INPUT OUTPUT FORWARD to ACCEPT.
> So now it should work but it didnt.
>
> Now i cant sort out where is the problem lying ...with iptables or with
> squid or any thing else ...
>
> Awaiting for Ideas to get the solution in urgent.
>
>
> --
> Joel N.Solanki
> Network Administrator
> Mobile: 91-9426353268
> Phone No: 0265-550001/2/3/4/5 Ext: 211/212
> Digtial 2 Virtual Internet Service Provider.
> http://www.packetraptor.com/
> http://www.d2visp.com/
> Gujarat (India)
>
>
>
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: [squid-users] squid iptables snmp
2004-10-22 10:21 ` squid
@ 2004-10-22 10:34 ` Joel n.solanki
0 siblings, 0 replies; 10+ messages in thread
From: Joel n.solanki @ 2004-10-22 10:34 UTC (permalink / raw)
To: squid; +Cc: netfilter, squid
Hi..
Well u didnt undertood my problem plz read it again.
But yes i m in problem so i tried your solution.
service snmpd stop
edited the /etc/snmpd/snmp.conf and made that line rocommunity public
service snmpd start
But still the same error :(
Any other Ideas.
Regards,
On Fri, 2004-10-22 at 15:51, squid wrote:
> step 1
> service snmpd stop
> step 2
> pico /etc/snmp/snmp.conf
>
> step 3 change line
> # sec.name source community
> #com2sec notConfigUser default public
> rocommunity public
>
> step 4
> service snmpd start
>
> :)
>
> ----- Original Message -----
> From: "Joel n.solanki" <zealous@bonbon.net>
> To: "netfilter" <netfilter@lists.netfilter.org>; "squid"
> <squid-users@squid-cache.org>
> Sent: Friday, October 22, 2004 1:13 PM
> Subject: [squid-users] squid iptables snmp
>
>
> >
> > Dear all,
> >
> > I dont know wheather this problem is related to squid or iptables
> > netfilter.
> > But let me specify my problem. I tried my lots but i cant solve this
> > problem.
> >
> >
> > Mrtg server Squid + Netfilter box Mikrotik Router
> >
> > When I try to create mrtg for mikrotik router which is behind Squid +
> > netfilter box, it gives me this error.
> >
> > ---------------------------------------------------------------------------
> > -base: Get Device Info on public@202.202.202.202:
> > SNMP Error:
> > no response received
> > SNMPv1_Session (remote host: "202.202.202.202" [202.202.202.202].161)
> > community: "public"
> > request ID: 1723286139
> > PDU bufsize: 8000 bytes
> > timeout: 2s
> > retries: 5
> > backoff: 1)
> > at /usr/bin/../lib/mrtg2/SNMP_util.pm line 450
> > SNMPGET Problem for sysDescr sysContact sysName sysLocation sysObjectID
> > on public@202.202.202.202:
> > at /usr/bin/cfgmaker line 657
> > --base: Vendor Id:
> > --base: Populating confcache
> > ---------------------------------------------------------------------------
> >
> >
> > If I removed squid + netfilter box then I tried to create mrtg for
> > mikrotik router then i can easily do it. It doesnt give me any error.
> >
> >
> > Now i dont know wheather Is this problem related to Netfilter Iptables
> > OR squid proxy server ????
> >
> > I thought this might be iptables firewall problem so I just made the
> > netfilter + squid box iptable rules to INPUT OUTPUT FORWARD to ACCEPT.
> > So now it should work but it didnt.
> >
> > Now i cant sort out where is the problem lying ...with iptables or with
> > squid or any thing else ...
> >
> > Awaiting for Ideas to get the solution in urgent.
> >
> >
> > --
> > Joel N.Solanki
> > Network Administrator
> > Mobile: 91-9426353268
> > Phone No: 0265-550001/2/3/4/5 Ext: 211/212
> > Digtial 2 Virtual Internet Service Provider.
> > http://www.packetraptor.com/
> > http://www.d2visp.com/
> > Gujarat (India)
> >
> >
> >
--
Joel N.Solanki
Network Administrator
Mobile: 91-9426353268
Phone No: 0265-550001/2/3/4/5 Ext: 211/212
Digtial 2 Virtual Internet Service Provider.
http://www.packetraptor.com/
http://www.d2visp.com/
Gujarat (India)
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: squid iptables snmp
2004-10-22 10:13 squid iptables snmp Joel n.solanki
2004-10-22 10:21 ` squid
@ 2004-10-22 13:37 ` Emilio Casbas
2004-10-22 13:39 ` Joel n.solanki
2004-10-22 14:45 ` Henrik Nordstrom
2004-10-22 15:28 ` Jason Opperisano
3 siblings, 1 reply; 10+ messages in thread
From: Emilio Casbas @ 2004-10-22 13:37 UTC (permalink / raw)
To: Joel n.solanki; +Cc: netfilter
Joel n.solanki wrote:
>Dear all,
>
>I dont know wheather this problem is related to squid or iptables
>netfilter.
>But let me specify my problem. I tried my lots but i cant solve this
>problem.
>
>
>Mrtg server Squid + Netfilter box Mikrotik Router
>
>When I try to create mrtg for mikrotik router which is behind Squid +
>netfilter box, it gives me this error.
>
>---------------------------------------------------------------------------
>-base: Get Device Info on public@202.202.202.202:
>SNMP Error:
>no response received
>SNMPv1_Session (remote host: "202.202.202.202" [202.202.202.202].161)
> community: "public"
> request ID: 1723286139
> PDU bufsize: 8000 bytes
> timeout: 2s
> retries: 5
> backoff: 1)
> at /usr/bin/../lib/mrtg2/SNMP_util.pm line 450
>SNMPGET Problem for sysDescr sysContact sysName sysLocation sysObjectID
>on public@202.202.202.202:
> at /usr/bin/cfgmaker line 657
>--base: Vendor Id:
>--base: Populating confcache
>---------------------------------------------------------------------------
>
>
Are you configured the snmp_access acl in squid.conf?
some like;
acl snmp-public snmp_community public
acl snmp-user src host_ip
snmp_access allow snmp-public localhost
snmp_access allow snmp-public snmp-user
snmp_access deny all
Thanks
Emilio C.
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: squid iptables snmp
2004-10-22 13:37 ` Emilio Casbas
@ 2004-10-22 13:39 ` Joel n.solanki
0 siblings, 0 replies; 10+ messages in thread
From: Joel n.solanki @ 2004-10-22 13:39 UTC (permalink / raw)
To: Emilio Casbas; +Cc: netfilter
Yes i have configured that also.
On Fri, 2004-10-22 at 19:07, Emilio Casbas wrote:
> Joel n.solanki wrote:
>
> >Dear all,
> >
> >I dont know wheather this problem is related to squid or iptables
> >netfilter.
> >But let me specify my problem. I tried my lots but i cant solve this
> >problem.
> >
> >
> >Mrtg server Squid + Netfilter box Mikrotik Router
> >
> >When I try to create mrtg for mikrotik router which is behind Squid +
> >netfilter box, it gives me this error.
> >
> >---------------------------------------------------------------------------
> >-base: Get Device Info on public@202.202.202.202:
> >SNMP Error:
> >no response received
> >SNMPv1_Session (remote host: "202.202.202.202" [202.202.202.202].161)
> > community: "public"
> > request ID: 1723286139
> > PDU bufsize: 8000 bytes
> > timeout: 2s
> > retries: 5
> > backoff: 1)
> > at /usr/bin/../lib/mrtg2/SNMP_util.pm line 450
> >SNMPGET Problem for sysDescr sysContact sysName sysLocation sysObjectID
> >on public@202.202.202.202:
> > at /usr/bin/cfgmaker line 657
> >--base: Vendor Id:
> >--base: Populating confcache
> >---------------------------------------------------------------------------
> >
> >
> Are you configured the snmp_access acl in squid.conf?
> some like;
> acl snmp-public snmp_community public
> acl snmp-user src host_ip
> snmp_access allow snmp-public localhost
> snmp_access allow snmp-public snmp-user
> snmp_access deny all
>
>
> Thanks
> Emilio C.
--
Joel N.Solanki
Network Administrator
Mobile: 91-9426353268
Phone No: 0265-550001/2/3/4/5 Ext: 211/212
Digtial 2 Virtual Internet Service Provider.
http://www.packetraptor.com/
http://www.d2visp.com/
Gujarat (India)
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: squid iptables snmp
2004-10-22 10:13 squid iptables snmp Joel n.solanki
2004-10-22 10:21 ` squid
2004-10-22 13:37 ` Emilio Casbas
@ 2004-10-22 14:45 ` Henrik Nordstrom
2004-10-22 15:19 ` [squid-users] " Joel n.solanki
2004-10-22 15:28 ` Jason Opperisano
3 siblings, 1 reply; 10+ messages in thread
From: Henrik Nordstrom @ 2004-10-22 14:45 UTC (permalink / raw)
To: Joel n.solanki; +Cc: netfilter, squid
On Fri, 22 Oct 2004, Joel n.solanki wrote:
> I dont know wheather this problem is related to squid or iptables
> netfilter.
If anything it is related to iptables.
There is no technical way it can be related to running Squid.
Regards
Henrik
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: [squid-users] squid iptables snmp
2004-10-22 14:45 ` Henrik Nordstrom
@ 2004-10-22 15:19 ` Joel n.solanki
0 siblings, 0 replies; 10+ messages in thread
From: Joel n.solanki @ 2004-10-22 15:19 UTC (permalink / raw)
To: Henrik Nordstrom; +Cc: netfilter, squid
Ok :)
On Fri, 2004-10-22 at 20:15, Henrik Nordstrom wrote:
> On Fri, 22 Oct 2004, Joel n.solanki wrote:
>
> > I dont know wheather this problem is related to squid or iptables
> > netfilter.
>
> If anything it is related to iptables.
>
> There is no technical way it can be related to running Squid.
>
> Regards
> Henrik
--
Joel N.Solanki
Network Administrator
Mobile: 91-9426353268
Phone No: 0265-550001/2/3/4/5 Ext: 211/212
Digtial 2 Virtual Internet Service Provider.
http://www.packetraptor.com/
http://www.d2visp.com/
Gujarat (India)
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: [squid-users] squid iptables snmp
2004-10-22 10:13 squid iptables snmp Joel n.solanki
` (2 preceding siblings ...)
2004-10-22 14:45 ` Henrik Nordstrom
@ 2004-10-22 15:28 ` Jason Opperisano
2004-10-22 15:48 ` Joel n.solanki
3 siblings, 1 reply; 10+ messages in thread
From: Jason Opperisano @ 2004-10-22 15:28 UTC (permalink / raw)
To: netfilter
On Fri, Oct 22, 2004 at 03:43:34PM +0530, Joel n.solanki wrote:
>
> Dear all,
>
> I dont know wheather this problem is related to squid or iptables
> netfilter.
> But let me specify my problem. I tried my lots but i cant solve this
> problem.
>
>
> Mrtg server Squid + Netfilter box Mikrotik Router
>
> When I try to create mrtg for mikrotik router which is behind Squid +
> netfilter box, it gives me this error.
can you ping "Mikrotik Router" from "Mrtg server" when "Squid +
Netfilter" is between them?
is IP forwarding enabled on "Squid + Netfilter" box?
what is the default gateway of "Mrtg server"?
what is the default gateway of "Mikrotik Router"?
are you trying to NAT the traffic to "Mikrotik Router"?
-j
--
Jason Opperisano <opie@817west.com>
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: [squid-users] squid iptables snmp
2004-10-22 15:28 ` Jason Opperisano
@ 2004-10-22 15:48 ` Joel n.solanki
2004-10-22 16:31 ` Jason Opperisano
0 siblings, 1 reply; 10+ messages in thread
From: Joel n.solanki @ 2004-10-22 15:48 UTC (permalink / raw)
To: Jason Opperisano; +Cc: netfilter
Yes I can ping mikrotik router from mrtg server when squid + netfilter
box is between them
I can even trace them.
Yes IP forwarding is enabled on squid + netfilter box
No i m not doing NAT coz i have public ip addres so i m using that.
I have my setup with current scenario in other city and it is working
fine.
yes I have recompiled my kernel ...can kernel could be reason for this ?
Regards,
On Fri, 2004-10-22 at 20:58, Jason Opperisano wrote:
> On Fri, Oct 22, 2004 at 03:43:34PM +0530, Joel n.solanki wrote:
> >
> > Dear all,
> >
> > I dont know wheather this problem is related to squid or iptables
> > netfilter.
> > But let me specify my problem. I tried my lots but i cant solve this
> > problem.
> >
> >
> > Mrtg server Squid + Netfilter box Mikrotik Router
> >
> > When I try to create mrtg for mikrotik router which is behind Squid +
> > netfilter box, it gives me this error.
>
> can you ping "Mikrotik Router" from "Mrtg server" when "Squid +
> Netfilter" is between them?
>
> is IP forwarding enabled on "Squid + Netfilter" box?
>
> what is the default gateway of "Mrtg server"?
>
> what is the default gateway of "Mikrotik Router"?
>
> are you trying to NAT the traffic to "Mikrotik Router"?
>
> -j
--
Joel N.Solanki
Network Administrator
Mobile: 91-9426353268
Phone No: 0265-550001/2/3/4/5 Ext: 211/212
Digtial 2 Virtual Internet Service Provider.
http://www.packetraptor.com/
http://www.d2visp.com/
Gujarat (India)
^ permalink raw reply [flat|nested] 10+ messages in thread
* Re: [squid-users] squid iptables snmp
2004-10-22 15:48 ` Joel n.solanki
@ 2004-10-22 16:31 ` Jason Opperisano
0 siblings, 0 replies; 10+ messages in thread
From: Jason Opperisano @ 2004-10-22 16:31 UTC (permalink / raw)
To: netfilter
On Fri, Oct 22, 2004 at 09:18:57PM +0530, Joel n.solanki wrote:
> Yes I can ping mikrotik router from mrtg server when squid + netfilter
> box is between them
>
> I can even trace them.
> Yes IP forwarding is enabled on squid + netfilter box
>
> No i m not doing NAT coz i have public ip addres so i m using that.
>
> I have my setup with current scenario in other city and it is working
> fine.
> yes I have recompiled my kernel ...can kernel could be reason for this ?
run a tcpdump on the netfilter box on the interface facing the router
and make sure your snmp queries are making it through.
something like:
tcpdump -n -p -i $router_side_int udp port 161
-j
--
Jason Opperisano <opie@817west.com>
^ permalink raw reply [flat|nested] 10+ messages in thread
end of thread, other threads:[~2004-10-22 16:31 UTC | newest]
Thread overview: 10+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-10-22 10:13 squid iptables snmp Joel n.solanki
2004-10-22 10:21 ` squid
2004-10-22 10:34 ` [squid-users] " Joel n.solanki
2004-10-22 13:37 ` Emilio Casbas
2004-10-22 13:39 ` Joel n.solanki
2004-10-22 14:45 ` Henrik Nordstrom
2004-10-22 15:19 ` [squid-users] " Joel n.solanki
2004-10-22 15:28 ` Jason Opperisano
2004-10-22 15:48 ` Joel n.solanki
2004-10-22 16:31 ` Jason Opperisano
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.