Univention Bugzilla – Bug 29576
univention-squid: IPv6 funktiontiert nicht
Last modified: 2017-06-19 15:04:46 CEST
Wenn man auf einem IPv6-only System squid/allow/localnet=yes setzt, dann ist der Zugriff auf den Proxy trotzdem gesperrt. Das setzen von squid/allowfrom funktioniert auch nicht: # ucr set squid/allowfrom='2001:db8::/32' Setting squid/allowfrom File: /etc/squid3/squid.conf Traceback (most recent call last): File "<stdin>", line 145, in <module> File "/usr/lib/python2.6/dist-packages/ipaddr.py", line 1274, in __init__ raise AddressValueError(addr[0]) ipaddr.AddressValueError: 2001:db8::
Ja, das betrifft mich jetzt mit UCS 3.2 ebenfalls. Beide Punkte sind immer noch aktuell.
Created attachment 8016 [details] Patchset to enable ipv6 in squid.conf Contained within the tar archive is a patchset to enable ipv6 in squid.conf. The following changes were made: 1) extend ACL rules `localhost`/`to_localhost` to allow ipv6 addresses 2) small code cleanup 3) extend the parsing of networks from UCR variables `squid/allowfrom` and `squid/parent/directnetworks` to recognize ipv6 networks 4) include all locally configured ipv6 addresses as known squid3 source addresses
Fix to `squid/allowfrom` committed in r78854-r78856, YAML r78858. The access from a IPv6 localnet should have been supported since the update in r77193.
Tests: OK Advisory: OK
<http://errata.software-univention.de/ucs/4.2/46.html>