hello masters im configuring firewal + proxy/cache server "squid" both on the same machine for our client. I gota few question regarding traverse of packet in this scenrio Proxy is transparent (interception) 1) packets (port 80 requests) from client will traverse INPUT chain not FORWARD chain right? 2) squid will fetch the content on behalf of the clients packet leave cache/firewall machine via OUTPUT chain right? 3) which chains packets will travers when response coming back from Internet that is Internet ----> Cache --->Clients Default policies for INPUT, OUTPUT , FORWAD will be DROP in which chains i have to do filtering in either case i-e Clients ----->Firewal/cache-----Internet and Internet --->Firewall/cache----->Clients regards Askar -- (after bouncing head on desk for days trying to get mine working, I'll make your life a little easier)
