On 2/05/2013 10:23 a.m., prometheus wrote:
Were you able to get this to work? I am having the same problem.
The problem is that DNAT whenever used *erases* critical information which Squid-3.2+ require. The NAT operation *MUST*, absolutely *MUST*, be performed on the Squid box and nowhere else on the path between Squid and clients.
Please go back and re-read the "outline" section on http://wiki.squid-cache.org/ConfigExamples/Intercept/LinuxDnat for details on DNAT configuration.
The configuration for OpenWRT device is in fact a completely different setup, which is one of the cases detailed in http://wiki.squid-cache.org/ConfigExamples/Intercept/IptablesPolicyRoute.
Amos
