kang ason wrote:
still not working too mr, but my squid port is running
in 8080 not 3128, any other idea mr?
Dig up tcpdump/wireshark and see where the traffic IS going and how?
Amos
--- Indunil Jayasooriya <indunil75@xxxxxxxxx> wrote:
Date: Mon, 11 Feb 2008 08:29:29 +0530
From: "Indunil Jayasooriya" <indunil75@xxxxxxxxx>
To: "kang ason" <a550n@xxxxxxxxx>
CC: squid-users@xxxxxxxxxxxxxxx
Subject: Re: squid transparent proxy
still not working
and this is my iptables for squid transparent
iptables -t nat -A PREROUTING -i eth0 -s
192.168.10.10
-p tcp --dport 80 -j ACCEPT
iptables -t nat -A PREROUTING -i eth1 -s
192.168.10/24
-p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t filter -A FORWARD -i eth1 -s
192.168.10/24
-p tcp --dport 80 -j REJECT
pls try below 2 iptables rules
iptables -t nat -A PREROUTING -p tcp -i eth1
--dport 8080 -j REDIRECT
--to-port 3128
iptables -A INPUT -i eth1 -d 192.168.10.10 -p tcp
-s
192.168.101.0/24 --dport 3128 -j ACCEPT
I assume 192.168.10.10 is the ip of squid proxy
server's LAN ip. pls
add this ip to client's gateway
--
Thank you
Indunil Jayasooriya
regards
ason
Cah Kopeng
Lereng Utara Gunung Merbabu
____________________________________________________________________________________
Be a better friend, newshound, and
know-it-all with Yahoo! Mobile. Try it now. http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ
--
Please use Squid 2.6STABLE17+ or 3.0STABLE1+
There are serious security advisories out on all earlier releases.
