On 5/02/2012 12:25 a.m., Mustafa Raji wrote:
> dear Amos
> this is my iptables rule the same as i read in the link that you told me about it defintilly the problem is in the iptables rule,
> my machine ip address is 192.168.40.2
> iptables rule is
> iptables -t nat -A PREROUTING -s 192.168.40.2 -p tcp --dport 80 -j
> ACCEPT
> iptables -t nat -A PREROUTING -p tcp --dport 80 -j DNAT --to-destination
> 192.168.40.2:3128
> iptables -t nat -A POSTROUTING -j MASQUERADE
>
> and the last rule i didn't added, may be this when problem, some time the server does not drop the packet that cumming from itself and entering a loop
> my system is ubuntu server and it's connected to mikrotik router so is this the correct rule.
These are correct for the Squid box iptables.
Do you have policy routing on the microtik passing packets to Squid?
there could be a bypass needed there as well if the Squid traffic is
passing through it as well as the client traffic.
Amos
Received on Sat Feb 04 2012 - 12:05:19 MST
This archive was generated by hypermail 2.2.0 : Sat Feb 04 2012 - 12:00:02 MST