Re: Problems with Transparent Proxy using IPTables, Squid and 2.6 kernel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

it appears to me as if it's redirecting to port 3128 but its not getting a reply from squid - the squid access log does not show the access at all as if it never received the packet


Jan 12 14:52:21 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST=216.239.37.104 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=47715 DF PROTO=TCP SPT=53036 DPT=80 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:21 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST=10.0.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=47715 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:24 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=47717 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:27 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=60 TOS=0x00 PREC=0x00 TTL=63 ID=47719 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:30 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=63 ID=47721 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:33 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=63 ID=47724 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:36 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=63 ID=47726 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:42 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=63 ID=47739 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0
Jan 12 14:52:54 proxyhost IN=eth0 OUT= MAC=00:04:75:fb:a6:e1:00:d0:52:04:43:5a:08:00 SRC=64.187.35.163 DST= 10.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=63 ID=47743 DF PROTO=TCP SPT=53036 DPT=3128 WINDOW=8192 RES=0x00 SYN URGP=0

On Saturday, January 10, 2004, at 12:26 AM, Alistair Tonner wrote: 

	Have you tried LOGging the INPUT chain for both 80 and 3128?
	Or, perhaps more thorough, put a LOG rule in PREROUTING
	before the REDIRECT/DNAT rule to log what you will change,
	and since your destination is local, a LOG rule at the top of INPUT
	to catch *everything* for the interim? -- then see at what point
	the packets are actually disappearing.


[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux