Hello all, Anyways I sorted it my self. The problem was with my ip configuration. I have created IP Aliasing in my LAN nic. that is it had 2 IPs. one in 10.10.10.1 which is the gateway for my one set of LAN clients. The other was 192.168.1.150 which I was supposed to add to add other clients. But when i removed the 192.168.1.150 ip definition from the interface it all worked fine. On Thu, Feb 3, 2011 at 6:48 PM, Jayakrishnan <jayakrishnanlll@xxxxxxxxx> wrote: > On Thu, Feb 3, 2011 at 5:56 PM, Amos Jeffries <squid3@xxxxxxxxxxxxx> wrote: >> On 04/02/11 00:50, Jayakrishnan wrote: >>> >>> Dear all, >>> >>> I am shamed to tell you that I have same old problem with transparent >>> proxying. Please help me out with this. >> >> Sure. >> >> Answer: >> it is not possible to "transparent proxy" any protocol other than plain >> HTTP with Squid. >> >> There you go. Problem solved. > > Yea, I know that Squid is a HTTP proxy. But I masqueraded my HTTPS > traffic by using IPTables. I do not want to cache HTTPS traffic as I > know that it violates man in the middle theory. > > However We need to allow https traffic also right? I request you to > kindly check my iptables configuration attached and advice what I am > missing. As I told you we have a nating Access Point/Router at the > end. so that the internet interface in my squid box is also in private > net.. > > Please advice!!! > >> >> <snip> >>> >>> Everything is working fine but transparent proxying is not working for >>> https ftp traffic. However there is no point in having a transparent >>> proxy with out https support. Is there any thing to do if nating is >>> taking place in my WIRELESS ACCESS POINT/ROUTER. >>> >> >> The point of Squid is to optimize and manage HTTP. If that alone is not >> enough then you need other tools. >> >> In the case of FTP you can look at FROX (FTP proxy). >> >> Amos >> -- >> Please be using >> Current Stable Squid 2.7.STABLE9 or 3.1.10 >> Beta testers wanted for 3.2.0.4 >> > > > > -- > Regards, > > Jayakrishnan. L > > Visit: > www.foralllinux.blogspot.com > www.jayakrishnan.bravehost.com > -- Regards, Jayakrishnan. L Visit: www.foralllinux.blogspot.com www.jayakrishnan.bravehost.com -- Thanks and Regards, Jayakrishnan L Customer Engineer Server C.o.E HCL Infosystems Ltd. 42-49, Hardware Park, Kancha Imarat, Pahadi Shareef, Hyderabad -5. Mob: +91-9505105924 www.hclinfosystems.com www.foralllinux.blogspot.com www.jayakrishnan.bravehost.com www.hcl.in P Please do not print this email unless it is absolutely necessary. Save paper. Save trees. Spread environmental awareness DISCLAIMER: ------------------------------------------------------------------------------- The contents of this e-mail and any attachment(s) are confidential and intended for the named recipient(s) only. It shall not attach any liability on the originator or HCL or its affiliates. Any views or opinions presented in this email are solely those of the author and may not necessarily reflect the opinions of HCL or its affiliates. Any form of reproduction, dissemination, copying, disclosure, modification, distribution and / or publication of this message without the prior written consent of the author of this e-mail is strictly prohibited. If you have received this email in error please delete it and notify the sender immediately. Before opening any mail and attachments please check them for viruses and defect. -------------------------------------------------------------------------------
