LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Networking (https://www.linuxquestions.org/questions/linux-networking-3/)
-   -   iptables rule to ignore squid proxy server (https://www.linuxquestions.org/questions/linux-networking-3/iptables-rule-to-ignore-squid-proxy-server-652206/)

satish 06-28-2008 02:40 AM
iptables rule to ignore squid proxy server
 
we are using squid proxy server which runs on redhat 9 version,in my office all pc's internet explorer browser configured for internet with use of proxy server in connection settings.in office we have one database web server which has the link http://192.168.1.249:8500, i want a iptable rule to ignore the squid proxy server.i don't want to remove internet connection settings from internet explorer for squid proxy server.if i do that they will not access the internet,all time i have to remove and add the internet connection setting for all machines. Requirement of iptables rule is that i don't want to disturb all clients when my proxy server is down.

local lan : 192.168.1.0/24
proxy server: 192.168.1.2
database web server ip: 192.168.1.249
squid proxy port : 3128


please suggest me any ignore rule for squid proxy server.

Regards


satish

acid_kewpie 06-28-2008 10:27 AM
ignore? I don't understand what you really mean by ignore. it's up to the client browsers to use or not use a proxy, not a destination server, so what I think you mean doesn't really make any sense. As i understand it you want local users to connect to that one ip address directly. in that case it's down to the browser still, maybe you just need to add an exception to each browser, or the best method is to use a proxy.pac file held on a central server to control how every browser uses proxies to a finer level.

dougbourne 06-30-2008 08:22 AM
"transparent proxy" its your answer?
define "ignore" ... ?

satish 07-02-2008 07:18 AM
iptables rule to ignore squid proxy server
 
i know the answer transparent proxy,but it creates me more difficult because transparent proxy works on gateway basis.when you put the proxy server ip address as a gateway then the internet works.in my setup we have one trading software whose router in our office .when we put router's ip address in the pc as a gateway then only the trading software works.why i required to ignore the proxy server is when we have work with proxy server to restart or shutdown the database software of our internal lan not works the users have to remove the settings in connection properties then only software works so that is why I required any iptable rule or any script to ignore the proxy server.so transparen proxy and remove of internet connections cannot work for me.

Regards


satish

acid_kewpie 07-02-2008 07:26 AM
despite their initial appeal, transparent proxies are pretty horrible, and this is a good example of that. You can do better than use a transparent proxy, using a proy.pac file as above or similar.


All times are GMT -5. The time now is 02:20 AM.