From: "Pascal Hambourg" <pascal.mail@xxxxxxxxxxxxxxx>
iptables -t -nat -A OUTPUT -m owner ! --owner-uid squid -p tcp --dport
80 -j REDIRECT --to-destination 3128
'--to-destination' is not a valid option for REDIRECT. The only valid
option is '--to-ports'.
Sorry, sure, that is what it actually looked like.
I pasted the code quickly from my memory.
The rule I used was
iptables -t -nat -A OUTPUT -m owner ! --owner-uid squid -p tcp --dport
80 -j REDIRECT --to-ports 3128
doesn't seem to work,
That does not provide much info. Can you elaborate ?
The browser sends http-request, it is redirected to squid
and then network-timeout-error occurs in the browser .
cause a browser would not be expecting a reply
from a transparent proxy when waiting for replies to its requests.
Huh ?
See:
The browser sends http-request to e.g. 99.9.9.9.1:80.
The request is redirected to proxy on 127.0.0.1:3128.
Browser waits for reply from 99.9.9.9:80.
Actually the reply will come from proxy on 127.0.0.1:3128.
Do you see the problem?
Regards
Sascha
