> I've looked thru the documentation and config examples but can't seem to
> find a complete document that uses the following:
>
> Squid 3.1
> tproxy 4
> iptables 4.0
** no such iptables release. 1.4.3 was just officially released today.
>
> I am trying to accomplish setting up squid with tproxy to maintain the
> tcp session. i.e. Customer accesses the internet and is transparently
> redirected to squid server, but their IP address shows on the internet
> instead of the cache servers IP. I have been able to setup squid to run
> transparent, however an IP lookup at 'whatsmyip.org' shows me the cache
> servers IP address. I have already rebuilt the kernel, and iptables
> with the patches. I tried combining the steps for features/TPROXY,
> FullyTransparentWithTPROXY, TPROXYPatchingCentos, etc to no avail. I
> can see the access log being populated, but only pre-cached info is
> returned. Is there any completed/ fully documented article available
> for us knuckleheads that describes step by step how this may be
> accomplished. Any help would be most appreciated.
Kernel 2.6.28+ is also required.
The wiki page http://wiki.squid-cache.org/Features/Tproxy4 contains a full
step-by step setup for each of the 3 involved softwares.
whatsmyip.org uses tricks and tests not related to the TPROXY spoofing
which is only known to happen at Layer-2/3 towards the client.
You may need tcpdump or similar to catch the raw packets and investigate
their src/dst details to view it.
Amos
Received on Mon Mar 23 2009 - 22:29:31 MDT
This archive was generated by hypermail 2.2.0 : Tue Mar 24 2009 - 12:00:02 MDT