Re: [squid-users] wccp working config example

Nuno Silva wrote:
> Another question...should i see the requests from users in the
> access.log? (because I'm not)
> I'm trying to filter the requests by category (no porn, no gambling, no
> streaming....and so on), mas it seems that if I use the Squid as
> transparent proxy it doesn't apply the ACL's in squid.conf (but if I use
> the squid as my proxy, it works)
>

Yes you should be seeing access.log entries if the requests are ever
making it into Squid. Authentication ACL wont work, but the rest will.

Amos

>
> Best regards,
> Nuno Silva
>
>
> -----Mensagem original-----
> De: Amos Jeffries [mailto:squid3_at_treenet.co.nz]
> Enviada: quarta-feira, 10 de Setembro de 2008 15:26
> Para: Nuno Silva
> Cc: Dan Letkeman; squid-users
> Assunto: Re: [squid-users] wccp working config example
>
> Nuno Silva wrote:
>> Amos.
>>
>> Thank you very much, it started working, i was missing the 'iptables
> -t
>> nat -A POSTROUTING -j MASQUERADE'... what is the purpose of that?
>
> Normally to NAT traffic coming in you have to NAT the responses back to
> the right places, but it gets tricky very quickly so someone created
> MASQUERADE to unwind all NAT bindings automatically on response packets.
>
> I'm not sure about speed, but its easy to configure.
>
>> And regarding the output of iptables -t filter -L *:
>>
>> iptables: No chain/target/match by that name
>>
>> Should the output be other?
>
> Weird, I'd expect a list same as for the -t nat you gave earlier, but
> never mind. I thought maybe there was a forwarding rule or policy
> blocking things. Since MASQUERADE fixed it, we don't need to look any
> further.
>
>> Best regards and many many many many many many many thanks!
>> Nuno Silva
>>
>
> Welcome.
>
> Amos

-- 
Please use Squid 2.7.STABLE4 or 3.0.STABLE8