Hi Indunil...
All iptables rules here implemented on firewall-box.
I have also check the access.log of squid guys,
but there is nothing logged. :'(
Its looks like firewall-box didn't make it redirect all web
services to the squid-box. How can I solve this out...
I do need help here.. :'(
Thanks for all guys
Rachmat Hidayat Al Anshar
----- Original Message ----
> From: Indunil Jayasooriya <indunil75@xxxxxxxxx>
> To: Rachmat Hidayat Al Anshar <rachmat_hidayat_03@xxxxxxxxx>
> Cc: squid cache <squid-users@xxxxxxxxxxxxxxx>
> Sent: Monday, January 14, 2008 1:34:09 PM
> Subject: Re: [help] setting up firewall policy for transparent (single-homed host) proxy
>
> on your squid box,
> > pls add below rule.
> >
> > iptables -A PREROUTING -t nat -i eth0 -p tcp --dport 80 -j
> > REDIRECT --to-port 3128
>
>
>
> Where did you add below SNAT rule? On squid box or iptables box ?
> it should be added to iptables box. NOT to SQUID box.
>
> > in addition to that, Your squid box needs a SNAT rule , if it is
> > behind the SNATed networlk. Pls add it to iptables box.
>
> > rule like below. 1.2.3.4 is the external ip of iptables firewall
> box
>
and ip address
> > 192.168.101.1 is the ip address of squid box. pls change it
> > accordingly
> >
> > iptables -t nat -A POSTROUTING -o eth0 -s 192.168.101.1 -j SNAT
> > --to-source 1.2.3.4
>
>
> --
> Thank you
> Indunil Jayasooriya
>
____________________________________________________________________________________
Never miss a thing. Make Yahoo your home page.
http://www.yahoo.com/r/hs
