On 2014-07-03 01:57, Mark jensen wrote:
Hello I want to configure squid to be a Transparent proxy using L3 cisco 3550 switch (without using wccp), so I follow this tutorial http://www.cisco.com/c/en/us/support/docs/ip/ip-routed-protocols/47900-cat3550pbr.html as the picture in the tutorial show: The goal is to redirect all workstations (20.20.20.0) traffic to squid 30.30.30.2 (I have used PC with squid instead of the shown router in the picture) and I set 10.10.10.2 as a web server instead of the router too The redirection have worked well, my question is how can I make squid redirect the HTTP traffic to the web server from the workstation Transparently and return the page from web server to the workstations too?
You seem to be asking how to setup an MITM proxy, please read <http://wiki.squid-cache.org/SquidFaq/InterceptionProxy> carefully to understand what you are doing before going further. Once you understand it we have many examples of how-to which can be found in the wiki (<http://wiki.squid-cache.org/ConfigExamples#Interception>).
At its simplest all you have to do is add an http_port directive with the "intercept" mode flag and setup NAT *on the squid machine* to send the packets there. TCP protocol naturally does the upstream webserver parts without any configuration needed.
Amos
