On Fri, Feb 1, 2008 at 12:02 AM, Yogesh Patil <yogesh@technotux.net> wrote:
> hi,
> I am using SQUID 2.6.STABLE17 with CentOS 5, & BIND
> DNS SERVER configured on the same box, i have configured squid as
> transparent proxy with all default settings , and applied iptables
> rule by using the following
> command
>
> iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT
> --to-port 3128
>
> i am able to browse http websites, but when i try to open https
> sites, such as, gmail.com, hotmail.com etc.. i am not able to get any
> response from the proxy.
> i have also tryied with forwarding 443 (https) port to the 3128
> (squid) port but still no success.
>
Hi Yogesh,
Try below iptables rules:
iptables -A FORWARD -p tcp -m multiport -s $LAN_NETWORK --dport
$YAHOO_CHAT,$YAHOO_WEB_CAM -j ACCEPT
iptables -A FORWARD -p tcp -m multiport -s $LAN_NETWORK --dport
$HTTPS,$HTTP -j ACCEPT
Ports for HTTPS="443",YAHOO_CHAT="5050",YAHOO_WEB_CAM="2047,2048,5100",
where $LAN_NETWORK is your lan network for ex 192.168.1.0/24 .
Regards
Ankush
Received on Thu Jan 31 2008 - 21:40:41 MST
This archive was generated by hypermail pre-2.1.9 : Fri Feb 01 2008 - 12:00:05 MST