ipchains redirect problem

From: robr <robr@dont-contact.us>
Date: Wed, 28 Jun 2000 13:48:36 -0400

Hi all,

The following rule doesnt catch port 80 traffic and send to squid on 3128

/sbin/ipchains -A input -p tcp -s ext.ip.address.0/24 -d 0/0 80 -j REDIRECT 3128

I have two nic's, one with ext.ip.addres.9 and one with a private internal address of 192.168.1.1, both are class c. I'm using Red Hat 6.2 with a non modified kernel. From a workstation on the lan I can browse out as long as the proxy settings are configured for IE5 (192.168.1.1 and port 3128). The workstation is configured to use 192.168.1.1 as the gateway.
If I add the following chain it will work, but still I dont believe that the traffic is getting redirected to squid:
ipchains -A forward -s 192.168.1.0/24 -d 0.0.0.0/0 -j MASQ

Ip forwarding is enabled. Do I need any chains other than the REDIRECT?
I'm assuming squid is ok since it works with manual proxy config.

Any suggestions would be appreciated.
Thanks,
Rob
robr@zzzip.net
Received on Wed Jun 28 2000 - 11:50:15 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:54:13 MST