I am an idiot. I didnt read the howto properly. I now realize that this
http://en.tldp.org/HOWTO/TransparentProxy-5.html page discusses how to do redirect with
squid on the same server as the firewall. The url that I have in the previous email is
if squid is on another box. I have set the following iptable command but without success
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
From the client I am getting error URL could not be found and am getting the following
in the access.log
1081968754.867 22 10.1.2.100 TCP_DENIED/400 1435 GET / - NONE/- text/html
1081968755.020 1 10.1.2.100 TCP_DENIED/400 1457 GET /favicon.ico - NONE/- text/html
1081968816.434 4 10.1.2.100 TCP_DENIED/400 1481 GET /products/firefox/start/ -
NONE/- text/html
1081968816.601 0 10.1.2.100 TCP_DENIED/400 1457 GET /favicon.ico - NONE/- text/html
Any advice?
Thanks,
Dhaval
Forwarded From: Dhaval Patel <list@patel.sh>
> Hello all, I am new to the list. I have recently setup squid-cache and squidguard on our
> local network. It works very well when I manually configure a browser to use the proxy.
> What I would like to do is transparently cache users so that I would not have to go and
> change settings on all computers. I have been looking into the HOWTO at
> (http://en.tldp.org/HOWTO/TransparentProxy-4.html). I am a bit confused about the
> iptable rules. I would be interesetd in method 2 which works for http 1.1 and 1.0
> traffic. My setup is the following. I have a linux server which is the firewall and
> router. This is also the server that will run squid. I would be looking to implement
> rules to forward outbound http connections through squid. Does anyone have this setup or
> can perhaps help me figure out what the iptables statements should be?
>
> Thanks,
> Dhaval
>
--Received on Wed Apr 14 2004 - 13:28:32 MDT
This archive was generated by hypermail pre-2.1.9 : Fri Apr 30 2004 - 12:00:02 MDT