On 2014-07-03 01:57, Mark jensen wrote:
> Hello
>
> I want to configure squid to be a Transparent proxy using L3 cisco
> 3550 switch (without using wccp), so I follow this tutorial
>
> http://www.cisco.com/c/en/us/support/docs/ip/ip-routed-protocols/47900-cat3550pbr.html
>
> as the picture in the tutorial show:
> The goal is to redirect all workstations (20.20.20.0) traffic to squid
> 30.30.30.2 (I have used PC with squid instead of the shown router in
> the picture) and I set 10.10.10.2 as a web server instead of the
> router too
>
> The redirection have worked well, my question is how can I make squid
> redirect the HTTP traffic to the web server from the workstation
> Transparently and return the page from web server to the workstations
> too?
You seem to be asking how to setup an MITM proxy, please read
<http://wiki.squid-cache.org/SquidFaq/InterceptionProxy> carefully to
understand what you are doing before going further. Once you understand
it we have many examples of how-to which can be found in the wiki
(<http://wiki.squid-cache.org/ConfigExamples#Interception>).
At its simplest all you have to do is add an http_port directive with
the "intercept" mode flag and setup NAT *on the squid machine* to send
the packets there. TCP protocol naturally does the upstream webserver
parts without any configuration needed.
Amos
Received on Thu Jul 03 2014 - 06:21:34 MDT
This archive was generated by hypermail 2.2.0 : Thu Jul 03 2014 - 12:00:05 MDT