> A simple > > iptables -t -nat -A OUTPUT -m owner ! --owner-uid squid -p tcp --dport 80 -j > REDIRECT --to-destination 3128 > > doesn't seem to work, cause a browser would not be expecting a reply from a > transparent proxy when waiting for replies to its requests. So configure squid to actually act transparent. Or better, reject the traffic and make everyone actively use the proxy. It does not have as many caching caveats as transparent. -`J' --
