Re: [squid-users] squid redirect/iptables

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Mon, 23 Jun 2003 21:11:24 +0200

On Monday 23 June 2003 18.49, Alex Short wrote:
> This seems more appropriate to an iptables ml, but I'm sure this
> has come up for some of you :)
>
> I want my gateway box to redirect to squid, but I also want it to
> do so for local connections as well.

To forward connections to anoter box running the proxy you need to
route TCP sessions. Doing NAT on the gateway is suboptimal in this
situation and should be avoided.

See Linux advanced routing howto and the CONNMARK target (in iptables
patch-o-matic/extra).

Regards
Henrik

-- 
Donations welcome if you consider my Free Squid support helpful.
https://www.paypal.com/xclick/business=hno%40squid-cache.org
If you need commercial Squid support or cost effective Squid or
firewall appliances please refer to MARA Systems AB, Sweden
http://www.marasystems.com/, info@marasystems.com
Received on Mon Jun 23 2003 - 13:12:06 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:17:35 MST