On 8/09/2016 11:54 p.m., John Sayce wrote: > Yeah, that was the key. I was expecting my firewall to be doing NAT but destination NAT rather than source NAT. I hadn't realised this was completely wrong. > > Got it working now. Source-NAT is fine and sometimes needed to translate between subnets. But Destination-NAT before the TCP packets reach the Squid machine kills the MITM being done by proxy machine. Amos _______________________________________________ squid-users mailing list squid-users@xxxxxxxxxxxxxxxxxxxxx http://lists.squid-cache.org/listinfo/squid-users
