"tproxy" problem with squid 2.7 stable with centos 5.9

Dear all ,
ive installed centos 5.9 32 bit .

ive compiled the kernel with balabit "tproxy patch" i downloaded the kernel
& patch from balabit site .
i also patched the iptables from balabit site with verison 1.4.10.

i followed the articale of how to patch the kernel & iptables from
http://mattiasgeniar.be/2010/09/01/compile-a-centos-kernel-and-iptables-with-tproxy-support/

ive patched the kernel & iptables successfully ,

ive compiled squid 2.7stable 9 with --enable netfilter

when i try to enable "tproxy" in squid.conf file
i have the following error :

root_at_drvirus ~]# /usr/local/squid/sbin/squid
FATAL: Bungled squid.conf line 7: http_port 65535 tproxy
Squid Cache (Version 2.7.STABLE9): Terminated abnormally.
[root_at_drvirus ~]#

================================================
squid version:

/usr/local/squid/sbin/squid -v
Squid Cache: Version 2.7.STABLE9
configure options: '--enable-linux-netfilter' '--enable-linux-tproxy'

==============================================
here is my kernel after patch and compileing :

[root_at_drvirus ~]# uname -a
Linux drvirus 2.6.25.20-tproxy #1 SMP Sat Feb 16 11:26:52 EST 2013 i686 i686
i386 GNU/Linux

=============================================
iptables after patch :
[root_at_drvirus ~]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination

Chain OUTPUT (policy ACCEPT)
target prot opt source destination
[root_at_drvirus ~]# iptables -V
iptables v1.4.0
[root_at_drvirus ~]#
=================================================
squid.conf file config :
[root_at_drvirus ~]# cat /etc/squid/squid.conf
#recommended minimum configuration
########### Port Config:
http_port 127.0.0.1:6552
http_port 3128
#http_port 127.0.0.1:65495
#http_port 192.168.1.252:65395
http_port 65535 transparent tproxy
#http_port 3128
#http_port 65333 transparent
#http_port 3129 tproxy
#icp_port 65515
########### WCCP2 Config:
wccp2_router x.x.x.x
#wccp2_router x.x.x.x
wccp_version 2
wccp2_forwarding_method 2
wccp2_return_method 2
#wccp2_assignment_method mask
wccp2_service dynamic 80
wccp2_service_info 80 protocol=tcp flags=src_ip_hash priority=240 ports=80
wccp2_service dynamic 90
wccp2_service_info 90 protocol=tcp flags=dst_ip_hash,ports_source
priority=240 ports=80
########################################################################################
#http_port 3128
####block containing porn
#acl blockkeywords url_regex -i "/etc/squid/b.conf"
#http_access deny blockkeywords
acl all src 0.0.0.0/0.0.0.0
acl manager proto cache_object
acl localnet src 192.168.1.0/24 x.x.0.0/16 x.x0.0/16
acl localhost src 127.0.0.1/255.255.255.255
acl to_localhost dst 127.0.0.0/8
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
#Default:\
#visible_hostname squidcentos
coredump_dir /var/spool/squid
#
#
#not working lookdown#url_rewrite_program /usr/local/bin/squidguard -c
/usr/local/squidGuard/squidguard.conf
#squidguard with centos#####
#redirect_program /usr/bin/squidguard -c /etc/squid/squidguard.conf
redirect_children 1
cache_effective_user squid
cache_effective_group squid
##############################
#
# http_access deny all
#
#Recommended minimum configuration:
#
# Only allow cachemgr access from localhost
http_access allow manager localhost
http_access allow localnet
http_access deny manager
# Deny requests to unknown ports
http_access deny !Safe_ports
# Deny CONNECT to other than SSL ports
http_access deny CONNECT !SSL_ports
# And finally deny all other access to this proxy
http_access deny all
#Allow ICP queries from everyone
icp_access allow all
hierarchy_stoplist cgi-bin ?
#####log directory###
access_log /var/log/squid/access.log squid
##########
acl QUERY urlpath_regex cgi-bin \?
cache deny QUERY
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern . 0 20% 4320
###caching direcory##
cache_dir ufs /home/squid 100 16 256
########################
acl apache rep_header Server ^Apache
broken_vary_encoding allow apache
#

note that if i remove "tproxy" , the squid works !!!!

wish to help me .

with my best reagrds

--
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/tproxy-problem-with-squid-2-7-stable-with-centos-5-9-tp4658559.html
Sent from the Squid - Development mailing list archive at Nabble.com.