Rhys Jones wrote:
> Hi,
>
> Good spot, but not quite there. There is no browser but there was an odd
> DNS issue. I have entered the appropriate IP details in the hosts file
> so name resolution is working for internal addresses. I am assuming that
> using the PREROUTE rule picks up the HTML traffic before it gets to the
> firewall/vpn handler. What tells Squid where to send the data then ? Can
> I specify an interface or does it simply choose the default gateway ?
Squid is just an application like any other. It does not care about routing,
packets etc. It is your kernels routing table that decides where things will
be sent.
If you are redirecting this traffic to Squid, then
a) Squid needs to be able to DNS resolve the server names, unless the user
is requesting the server by IP address..
b) The local routing needs to allow local applications to send traffic to
the VPN connection..
Runnin a browser locally on the Squid server really is the best test to see if
all these works correctly. In lack of a real browser, "telnet www.example.com
80" suffices..
Regards
Henrik
Received on Tue Jul 09 2002 - 06:23:28 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:09:12 MST