>I want to redirect local http traffic to a transparent squid porxy >running on the NAT box itself. > >I've used : ># iptables -t nat -A OUTPUT -p tcp -m owner --uid-owner squid -j ACCEPT ># iptables -t nat -A OUTPUT -p tcp --dport 80 -j REDIRECT --to-ports 3128 > >But this works no more with kernel 2.6.11 & later. > pkts bytes target prot opt in out source destination > 0 0 ACCEPT tcp -- any any anywhere >anywhere OWNER UID match squid Looks like squid doesnot send any packets at all. Jan Engelhardt --
