ons 2006-09-20 klockan 08:32 +0200 skrev "Víctor J. Hernández Gómez": > >> 2006/09/19 11:44:30| parseHttpRequest: NF getsockopt(SO_ORIGINAL_DST) > >> failed: (92) Protocol not available > >> > >> ...in our cache.log. > >> > >> Any idea on what is going on? > > > > Do you have the NAT iptable loaded? > > On the squid-box? No, I have not loaded iptable nat. Should I? NAT is > applied in a box before the packets reach squid. Then transparent interception will not work properly as there will not be any way for the proxy to find out the originally intended destination address. It will in most cases still work however as nearly all clients sends Host headers indicating the requested web site, but in such setups you should not be using the "transparent" option. Instead use "vport=80 vhost" and always_direct, configuring your Squid as an accelerator for the whole Internet.. Regards Henrik
Attachment:
signature.asc
Description: Detta =?ISO-8859-1?Q?=E4r?= en digitalt signerad meddelandedel
