[squid-users] Accessing a transparent cache on localhost

From: Jonathan Gazeley <jonathan.gazeley_at_bristol.ac.uk>
Date: Wed, 19 Nov 2008 15:26:24 +0000


I'm new to Squid. I've successfully set up a transparent cache on a
server which is also the gateway/firewall/NAT for a small LAN. All the
clients on my LAN use the cache properly. However, the server running
the cache doesn't use its own cache. I've inserted what I thought were
the correct rules into my iptables config:

-A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
-A PREROUTING -s -p tcp --dport 80 -j REDIRECT --to-port 3128
-A PREROUTING -s -p tcp --dport 80 -j REDIRECT --to-port 3128
-A PREROUTING -s x.x.x.x/32 -p tcp --dport 80 -j REDIRECT --to-port 3128
(external public IP)

where eth0 is the LAN-facing interface.

My Squid config allows proxying from localhost and localnet:

http_access allow localhost
http_access allow localnet
http_access deny all

Therefore I think I have not set up my iptables quite right. Can anyone
confirm if this is the right way to go about catching HTTP requests from

Many thanks,

Jonathan Gazeley
Systems Support Specialist
ResNet | Wireless & VPN Team
Information Services
University of Bristol
Received on Wed Nov 19 2008 - 15:26:34 MST

This archive was generated by hypermail 2.2.0 : Thu Nov 20 2008 - 12:00:03 MST