Operating System - Linux
1823788 Members
4298 Online
109665 Solutions
New Discussion юеВ

Yahoo voice through SQUID

 
kcpant
Trusted Contributor

Yahoo voice through SQUID

Hi Friends,

Anybody have idea how to get yahoo voice chat working through SQUID? I don't want to use NATing for this, I want it to be accomplished through SQUID itself.
One more thing is, is there any robust and easily configurable traffic shaper/ bandwidth manager available under GPL for linux? I was trying to implement tc, but found it somewhat difficult ( either due to insufficient documentation I have about tc, or I do not have much time to read all about tc right now).

Thanks in advance
PreSales Specialist
9 REPLIES 9
Steven E. Protter
Exalted Contributor

Re: Yahoo voice through SQUID

Few things to note:

You need to make sure any iptables configuration allows the ports that yahoo voice uses for output. If yahoo is accepting the tcp traffic on port 7800 for example, you need to allow output on that port and any other ports it needs.

Example, many web sites let inbound traffic on port 80. The output for my web based email is in the 1500 range.

So I recommend you analyze the port usage on a machine without squid and make sure iptables isn't bothering you.

I don't actually see anything in the squid doc's that says there should be a problem with this service, so I suspect that it maybe firewall or other concerns.

Tell me, what do the squid logs say when this fails?

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
kcpant
Trusted Contributor

Re: Yahoo voice through SQUID

Hi SEP,

Thanks for reply. I've already checked my iptables configuration, and also checked that if I configure NATing on server, and then connect yahoo without proxy, it allows me to go to voice chat. but through SQUID, it's not possible. I don't want to use NATing , for obvious security reasons. So, please let me know if you find any how-to for this.

Also, please suggest me any GPL software for traffic shaping/ bandwidth mgmt. (second question of prior post).
PreSales Specialist
Gopi Sekar
Honored Contributor

Re: Yahoo voice through SQUID


For traffic shapping use the iprout2 packages which are installed by default on the system.

Most likely it is already installed on your system, check for command 'tc' and for further information check 'man tc'.

For bandwidth usage display use MRTG, it is GPL and opensource and quite popular.
http://mrtg.hdl.com/mrtg.html

Hope this helps,
Gopi

Never Never Never Giveup
kcpant
Trusted Contributor

Re: Yahoo voice through SQUID

Hi Gopi,

I think you haven't read my prior post on this thread. I don't need bandwidth diplay ( I know about MRTG, RRDtool, MRTS and using them from last 1 yr), I need any easily configurable bandwidth manager other than tc.
PreSales Specialist
Gopi Sekar
Honored Contributor

Re: Yahoo voice through SQUID

oops, i am sorry... my mistake
Never Never Never Giveup
Stuart Browne
Honored Contributor

Re: Yahoo voice through SQUID

Squid has the ability to bounce given ports through it's self to external sites.

If Yahoo Voice has the ability to use a single (or pre-defined/configurable) port, then you can configure squid to use a 'direct connect'.

It's called the 'CONNECT' method.

Assuming that Squid allows the given port through, then it should allow the CONNECT.

If you look at a default configration (from a RH box), you'll see something simlar to this:

acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443 563
acl Safe_ports port 80 81 88 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 563 # https, snews
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
acl snmppublic snmp_community public

#
#Default:
# http_access deny all
#
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access deny manager
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
# http_access deny CONNECT !SSL_ports

As the line at the bottom here is commented out, it means that any of the ports of which weren't otherwise denied (i.e. ports listed in 'Safe_ports') will be allowed through.

Now, as for a nice interface to TC, I've never found one worth using.

TC isn't really that hard to figure out.

But for a good example, have a look at the Wonder Shaper: http://lartc.org/wondershaper/
One long-haired git at your service...
kcpant
Trusted Contributor

Re: Yahoo voice through SQUID

Thanks SB,

I'll find out if it works if CONNECT is allowed to all ports (or ports specific to yahoo, if I configure it this way), and assign point after that ;) .By the way, can you suggest me any nice document on using tc in conjuction to iptables/ iproute2?
PreSales Specialist
Stuart Browne
Honored Contributor

Re: Yahoo voice through SQUID

Apart from the 'ip' info page (and a PS document distributed with the package), and the Advanced Routing Howto, I haven't used any.

One long-haired git at your service...
kcpant
Trusted Contributor

Re: Yahoo voice through SQUID

Closing threads open from a long time....
PreSales Specialist