Use ntlmaps to pass through MSPROXY (ISA ).

Using ntlmaps through MSPROXY (ISA), you don't have to worry about accessing the Internet in Linux-Linux Enterprise Application-Linux server application information. Here is the details. Generally, ISA 2004 is used as a firewall. The following clients are windows. If some linux clients want to access the Internet through http proxy, they will get stuck in NTLM verification.

Today I want to update the program in the Virtual Machine. Set http_proxy
# Http_proxy = "http: // user: passwd@192.168.1.224: 8080"
# Export http_proxy
Then yum install xxx
Http error 400 (Bad Request)
Later, I installed a ccproxy on my windows xp, set a secondary proxy in ccproxy, and fill in the company's ISA firewall.
The IP address, port, user name, and password of. Then, set http_proxy of linux in the virtual machine to the ip address and port of ccproxy of winxp.
Yum. OK.
# Export http_proxy = "192.168.1.159: 808"
Yum installs a lynx browser on the Character interface to see why it cannot be updated.
# Yum install lynx
# Lynx www.baidu.com
Looking up www.baidu.com first
Looking up 192.168.1.20.: 8080
Making HTTP connection to 192.168.1.20.: 8080
Sending HTTP request.
HTTP request sent; waiting for response.
Alert! : Invalid header 'proxy-Authenticate: negotiate'
Alert! : Invalid header 'proxy-Authenticate: Kerberos'
Alert! : Invalid header 'proxy-Authenticate: ntlm'
Alert! : Proxy authorization required -- retrying
Retrying with proxy authorization information.
....
Can't access' [url] http://www.baidu.com/'#/url]
Alert! : Unable to access document.
Oh. An NTLM error is reported. It turns out to be a verification problem.
Baidu, find a solution.
Use ntlmaps to wear? Msproxy on Linux? Don't worry
NTLM proxy server? Palm
1) What? Is NTLM Authorization Proxy Server
'Ntlm Authorization Proxy Server' is a software similar to a Proxy. It can use
MS proxy Server Authentication mode. Does it modify guest? Loose? Why? Evaluate some values in the package to make? Evaluate similar
Ms ie sends. Is the program using Python? Description.
Next, please refer to this article, download, install, configure, and test. OK.
After the download, run
$ Tar zxvf ntlmaps-0.9.9.tar.gz
Locate server. cfg and modify it.
[GENERAL]
LISTEN_PORT: 5865 # local listening port
PARENT_PROXY: 192.168.1.20.# ISA Server
PARENT_PROXY_PORT: 8080 # ISA server port
PARENT_PROXY_TIMEOUT: 15
ALLOW_EXTERNAL_CLIENTS: 0
FRIENDLY_IPS:
URL_LOG: 0
MAX_CONNECTION_BACKLOG: 5
[CLIENT_HEADER]
Accept: image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/vnd. ms-excel,
Application/msword, application/vnd. ms-powerpoint ,*/*
User-Agent: Mozilla/4.0 (compatible; MSIE 5.5; Windows 98)
[NTLM_AUTH]
NT_HOSTNAME: yw-04 # Host Name
NT_DOMAIN: chinabank # domain
USER: test # ISA proxy Username
PASSWORD: test # ISA proxy PASSWORD
LM_PART: 1
NT_PART: 0
NTLM_FLAGS: 06820000
NTLM_TO_BASIC: 0
[DEBUG]
DEBUG: 0
BIN_DEBUG: 0
SCR_DEBUG: 0
AUTH_DEBUG: 0
Save the configuration and start main. py:
#./Main. py &
Or
# Python main. py &
Then, change http_proxy of linux to 127.0.0.1: 5865.
# Http_proxy = "http: // 127.0.0.1: 5865"
# Export http_proxy
Then update the program online. OK. If not, try to modify the ntlm Authentication Mode in server. cfg.
Conclusion: NTLM verification of ISA is really annoying.
If this error is reported during startup.
ERROR: Unable to get the IP address of this machine. This is not a fatal problem,
May cause problems for you using this proxy in some scenarios ."
Google has no results. Check the source code lib/config_affairs.py.
In
Hostname = socket. gethostname ()
It seems that the hostname is incorrect.
# Hostname
Bogon
Different from/etc/hosts,
Run
# Hostname localhost
And then run. No error is reported this time.