On 18/01/2013 10:53 a.m., Alex Crow wrote:
On 17/01/13 20:00, Holmes, Michael A (Mike) wrote:
Basically, can squid be the endpoint for TCP connections, and
establish a new outgoing TCP connection to the destination server?
Mike
That's not really transparent if the client knows that Squid is the
endpoint. Transparent means that the client just does business as
usual, so:
Do you mean that the client is unaware of (and does not have to be
configured for) the Squid server? If so, yes, of course it can be
fully transparent, ie the client connects to an external IP but it
gets passed through Squid. See "intercept" and "tproxy" in the docs.
Both of course require that you are in control of the network from
which the clients connect to the internet!
Alex
However, all of those only work for HTTP (port 80 and 443) because ...
the "Squid HTTP caching proxy" is an, uhm, HTTP caching proxy.
You want a SOCKS proxy for TCP proxying. These can be setup with the
"ssh" tool (see its documentation about -D).
Amos
