On Fri, Feb 1, 2008 at 12:02 AM, Yogesh Patil <yogesh@xxxxxxxxxxxxx> wrote: > hi, > I am using SQUID 2.6.STABLE17 with CentOS 5, & BIND > DNS SERVER configured on the same box, i have configured squid as > transparent proxy with all default settings , and applied iptables > rule by using the following > command > > iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT > --to-port 3128 > > i am able to browse http websites, but when i try to open https > sites, such as, gmail.com, hotmail.com etc.. i am not able to get any > response from the proxy. > i have also tryied with forwarding 443 (https) port to the 3128 > (squid) port but still no success. > Hi Yogesh, Try below iptables rules: iptables -A FORWARD -p tcp -m multiport -s $LAN_NETWORK --dport $YAHOO_CHAT,$YAHOO_WEB_CAM -j ACCEPT iptables -A FORWARD -p tcp -m multiport -s $LAN_NETWORK --dport $HTTPS,$HTTP -j ACCEPT Ports for HTTPS="443",YAHOO_CHAT="5050",YAHOO_WEB_CAM="2047,2048,5100", where $LAN_NETWORK is your lan network for ex 192.168.1.0/24 . Regards Ankush
