[squid-users] Squid not sending request to web

Hi All,
I have squid 3.3.8 configured as a transparent proxy. My router is
redirecting web requests on port 80 to the squid box on port 3128. The
problem is that the request is returned url could not be retrieved. My
configuration file is below. I am hoping that some one can take a look at
it and help me resolve this issue. The proxy server works when I direct
traffic to port 3128 using the browser. Router script is below the config
file.
Thanks

#Recommended minimum configuration:
#acl manager proto cache_object
acl localhost src 127.0.0.1/32
acl to_localhost dst 127.0.0.0/8
acl localnet src 192.168.1.0/24
acl lan src 192.168.1.0/255.255.255.0
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http

acl bad_url url_regex "/etc/squid3/blockedsites.acl
#acl lan src 192.168.1.0/25
acl CONNECT method CONNECT
visible_hostname NAS
http_access allow lan
#http_access allow manager localhost
#http_access deny manager
#http_access deny !Safe_ports
#http_access deny to_localhost
icp_access deny all
htcp_access deny all

http_port 3129
http_port 192.168.1.16:3128 intercept

hierarchy_stoplist cgi-bin ?
access_log /var/log/squid3/access.log squid

#Suggested default:
refresh_pattern ^ftp: 1440 20% 10080
refresh_pattern ^gopher: 1440 0% 1440
refresh_pattern -i (/cgi-bin/|\?) 0 0% 0
refresh_pattern . 0 20% 4320
# Leave coredumps in the first cache dir
coredump_dir /var/spool/squid3

acl whitelist dstdomain "/etc/squid3/whitelist.txt"

# Allow localnet machines to whitelisted sites
#http_access allow localnet whitelist

# block all other access
http_access deny bad_url

Below is my Iptables router script.
#!/bin/sh
PROXY_IP=192.168.1.16
PROXY_PORT=3128
LAN_IP=`nvram get lan_ipaddr`
LAN_NET=$LAN_IP/`nvram get lan_netmask`

iptables -t nat -A PREROUTING -i br0 -s $LAN_NET -d $LAN_NET -p tcp --dport
80 -j ACCEPT
iptables -t nat -A PREROUTING -i br0 -s ! $PROXY_IP -p tcp --dport 80 -j
DNAT --to $PROXY_IP:$PROXY_PORT
iptables -t nat -I POSTROUTING -o br0 -s $LAN_NET -d $PROXY_IP -p tcp -j
SNAT --to $LAN_IP
iptables -I FORWARD -i br0 -o br0 -s $LAN_NET -d $PROXY_IP -p tcp --dport
$PROXY_PORT -j ACCEPT

--
View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/Squid-not-sending-request-to-web-tp4665512.html
Sent from the Squid - Users mailing list archive at Nabble.com.