If I add this line before my redirect rule, it works. iptables -t nat -A PREROUTING -i my -d 1.1.1.1 -j ACCEPT BUT I have to add every single www server to this list and users with a www server won't get any cached objects. Any other things i could do in my squid.conf to have inbound www server working ? thanks On 9/11/06, Charles Regan <charles.regan@xxxxxxxxx> wrote:
I am doing a transparent redirect using a bridge. (iptables -t nat -A PREROUTING -i my -p tcp --dport 80 -j REDIRECT --to-port 3128) WEBSERVER ---- ROUTER ----- SQUID ------ INTERNET Doing this make my webserver not accessible from the internet (port 80). Any idea whats wrong ? How can I use iptables to not redirect my webserver? I've tried adding to squid.conf acl Websvr1 dst 1.1.1.1/255.255.255.255 no_cache deny Websvr1 Didn't work. thanks C.