Re: [squid-users] Newbie Help - Is this Possible?

> It would work, but you could run squid anywhere, you just need to redirect the traffic accordingly.

This is true, but I was hoping to insert squid transparently so that all computers and wireless devices, such as tablets and phones, would be forced to use it. In the future this is going to be for filtering and monitoring. I wanted something that couldn't be avoided easily; such as adjusting your proxy settings. I was just trying to get the simple case to work first.

> Also, which kernel/distro are you running?

I'm trying to use Debian 6 right now. I'll probably upgrade to Debian 7 at some point.

Could I hang squid off the LAN side of the router like all the other devices, and have the router some how enforce the proxy? My router is running DD-WRT. Maybe that would be a better approach. Then the squid box could get the DNS and gateway information from DHCP like everyone else.

--------------------------------------------
On Fri, 10/18/13, Per Jessen <per_at_computer.org> wrote:

 Subject: Re: [squid-users] Newbie Help - Is this Possible?
 To: squid-users_at_squid-cache.org
 Date: Friday, October 18, 2013, 12:39 AM
 
 Aaron Wright wrote:
 
> I wanted to add Squid to my home network for web
 caching. This is the
> setup I was thinking about.
>
>
> +-------+      +--------+      +----------+
> | CABLE |      | BRIDGE |       |  ROUTER  |
> |       +------+       +-------+          |
> | MODEM |      | SQUID  |      |          |
> +-------+      +--------+      ++-+-+-+-+-+
 
 snip
 
> With all the different connections I thought that the
 only place that
> made sense to put Squid, where it could catch all the
 traffic, would
> be between the Cable Modem and the Router. Would this
 work?
 
 It would work, but you could run squid anywhere, you just
 need to
 redirect the traffic accordingly.
 
> I've tried setting it up for the last two days, but
 I've had no luck.
> I can make a bridge on the Squid box so that everyone
 can still access
> the internet, but every time I use iptables to redirect
 traffic to
> Squid, web pages stop working.
 
 Please post your iptables setup (the relevant parts). 
 Also, which
 kernel/distro are you running? - there was an issue with
 icmp redirects
 a while ago.
 
> I've tried several different Squid configurations.
 Frankly, the shear
> number of options is overwhelming. I tried to follow
 
 This is most probably not a squid issue, postpone fiddling
 with squid
 until you've got the basic setup working.
 
 Here's what I do:
 
 on my router/firewall:
 iptables -A PREROUTING -t mangle -i eth0 -p tcp --dport http
 -j
 MARK --set-mark 3
 
 ip route add default via <squidbox> dev eth0 table
 transproxy
 ip rule add fwmark 3 table transproxy
 
 
 
 --
 Per Jessen, Zürich (8.8°C)
 http://www.hostsuisse.com/ - dedicated server rental in
 Switzerland.
 
 
Received on Sat Oct 19 2013 - 17:59:48 MDT