> I have two proxy servers running RH 7.3 (both 2.4STABLE7 versions). In
> one machine (#1) with same acl configuration, I can stop certain IPs
> accessing the #1 box, on the other (box #2), I can not stop with the
> exact similar acl. In #1 I have the following command also running
> from /etc/rc.local, (#2 does not run these from rc.local).
>
> echo 1 > /proc/sys/net/ipv4/ip_forward
> /sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
>
> This seems to be the only difference. I have tested box #2 with the
> above commands and then it starts restricting the IPs I want to
> restrict. Can someone shed some light (explain) on this, please?
>
> My quest is really to force everyone to use the proxy. If I have the
> above commands running from rc.local, people can bypass the proxy
> server and go hit the Net directly. I would like them to hit the Net
> directly for any other tasks but http access (which should go through
> proxy only). Please help with directions. Thanks.
>
>
>
Received on Wed Nov 13 2002 - 19:35:27 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:11:19 MST