[squid-users] transparent proxy

I am using squid as transparent proxy.

I am using ipchains for forwarding other than http request form one
interface to another.(eth0 to eth1)

I set chains for ftp,telnet and other things,

When i do ftp i am getting following error

[sathi@cache sathi]$ ftp 63.2.1.2
Connected to 63.2.1.2.
220 polyserver FTP server (Version wu-2.6.1-16) ready.
Name (63.2.1.2:sathi): bam
331 Password required for bam.
Password:
230 User bam logged in.
Remote system type is UNIX.
Using binary mode to transfer files.
ftp> ls
502 Illegal PORT Command
ftp: bind: Address already in use
ftp>

I set rules as

/usr/local/ipchains-1.3.10/ipchains -A input -j REDIRECT 8080 -p tcp -s
0.0.0.0/0 -d 0.0.0.0/0 80
/usr/local/ipchains-1.3.10/ipchains -N good-bad
/usr/local/ipchains-1.3.10/ipchains -A forward -s 172.16.1.0/24 -i eth1 -j
good-bad
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport 21 -j MASQ
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport smtp -j MASQ
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport 20 -j MASQ
/usr/local/ipchains-1.3.10/ipchains -A good-bad -p tcp --dport telnet -j
MASQ

I do not know where i done error.
please suggest the correct rule to overcome the problem

Thanks in advance

-Jack
Received on Sat Sep 01 2001 - 01:49:50 MDT