On Jan 8, 2008 10:37 AM, Indunil Jayasooriya wrote: > command again, pls note this is one LINE. > > iptables -A INPUT -i eth1 -d 192.168.60.254 -p tcp -s 192.168.60.0/24 > --dport 3128 -j ACCEPT > > I just tried on my RedHat EL4 box. It worked. > Sorry, yes that is what happened. It still doesn't help, though. iptables are as follows: root@Base:/home/dave# iptables -L Chain INPUT (policy ACCEPT) target prot opt source destination ACCEPT tcp -- 192.168.60.0/24 Base.local tcp dpt:3128 Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination and root@Base:/home/dave# iptables -t nat -L Chain PREROUTING (policy ACCEPT) target prot opt source destination DNAT tcp -- anywhere anywhere tcp dpt:www to:192.168.60.254:3128 DNAT tcp -- anywhere anywhere tcp dpt:3128 to:192.168.60.254:3128 DNAT tcp -- anywhere anywhere tcp dpt:webcache to:192.168.60.254:3128 Chain POSTROUTING (policy ACCEPT) target prot opt source destination MASQUERADE 0 -- 192.168.60.0/24 anywhere neither /var/log/squid/access.log nor /var/log/squid/cache.log show any activity, either through firefox which returns "Server not found" or telnet iether to Base 3128 or to Base 80.
