LinuxQuestions.org
Welcome to the most active Linux Forum on the web.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 01-09-2006, 06:20 AM   #1
tsaravan
Member
 
Registered: Jun 2005
Location: India
Posts: 101

Rep: Reputation: 15
transparent proxy


Hi,

Following network scenario:

1) Redhat 9 (192.168.0.1)
2) Squid for proxy
3) Gateway - Router (192.168.0.254) for leased circuit between A to B for ERP system
4) All the clients default Gateway is No.3 mentioned above
5) All the clients DNS ip is 192.168.0.1

Please guide step by step procedure to setup transparent proxy. Also please let me know the associate software requirements.

thanks in advance

regards,

T. Saravana
 
Old 01-09-2006, 08:34 AM   #2
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 48
According to a quick Google search, you could try http://www.faqs.org/docs/Linux-mini/...rentProxy.html
 
Old 01-09-2006, 08:49 AM   #3
GeoAvram
LQ Newbie
 
Registered: Jul 2005
Location: Romania
Distribution: Fedora Core 3
Posts: 14

Rep: Reputation: 0
try tldp.org/HOWTO/TransparentProxy.html
 
Old 01-11-2006, 12:20 AM   #4
tsaravan
Member
 
Registered: Jun 2005
Location: India
Posts: 101

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by peter_robb
According to a quick Google search, you could try http://www.faqs.org/docs/Linux-mini/...rentProxy.html
Thank you for your reply.

But I would point out that I have already a gateway to connect to our Head Office for ERP access and how do I configure tranparent proxy where I have specify gateway.
 
Old 01-11-2006, 12:20 AM   #5
tsaravan
Member
 
Registered: Jun 2005
Location: India
Posts: 101

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by GeoAvram
try tldp.org/HOWTO/TransparentProxy.html

Thank you for your reply.

But I would point out that I have already a gateway to connect to our Head Office for ERP access and how do I configure tranparent proxy where I have specify gateway.
 
Old 01-11-2006, 05:21 AM   #6
Sir_Limpalot
LQ Newbie
 
Registered: Jan 2006
Location: Norway
Distribution: Debian
Posts: 18

Rep: Reputation: 0
Here's the rule for iptables on my gateway for running all http through the proxy on the same machine:

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080
 
Old 01-11-2006, 07:50 AM   #7
tsaravan
Member
 
Registered: Jun 2005
Location: India
Posts: 101

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by Sir_Limpalot
Here's the rule for iptables on my gateway for running all http through the proxy on the same machine:

iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 8080

Hi,

We have cisco router as a getway which is connected through leased circuit to our Head office for access ERP system. All the client machines gateway is configured to this router ip. Now I have another system which is proxy for Internet connection. In this scenario how do I make transparent proxy.

regards,

T. Saravana
 
Old 01-12-2006, 07:13 AM   #8
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 48
How many connections to the Internet do you have?

To make a proxy transparent, it must sit between the users and the router, otherwise users will need to set the ip number of the proxy.
To sit between, it needs to take the ip number of the router,
or be a bridged device with no ip numbers, using ebtables and layer2 filtering.
 
Old 01-12-2006, 08:14 AM   #9
tsaravan
Member
 
Registered: Jun 2005
Location: India
Posts: 101

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by peter_robb
How many connections to the Internet do you have?

To make a proxy transparent, it must sit between the users and the router, otherwise users will need to set the ip number of the proxy.
To sit between, it needs to take the ip number of the router,
or be a bridged device with no ip numbers, using ebtables and layer2 filtering.
We have about 50 proxy connections to access Interent.

We have router connected to leased circuit exclusively to access ERP which is at Head Office. This has been configured as gateway in all the users' system.

We have another system which meant for Interent connection and running squid proxy server. This ip we have configure to all the users' browsers to access Internet. Now I have to have log of all the users access and hence I planned to have transparent proxy. Please let me know if there is any other efficient method which I implement by fulling my requirment logging.

Further, I not familiar with bridge or ebtables. Please let me know briefly about this if this can help my requirement or for my knowledge.

regards,

T. Saravana
 
Old 01-12-2006, 08:41 AM   #10
peter_robb
Senior Member
 
Registered: Feb 2002
Location: Szczecin, Poland
Distribution: Gentoo, Debian
Posts: 2,458

Rep: Reputation: 48
I thought in the beginning that you could only access the internet with the ERP circuit.

With another internet connection it looks like a standard connection system..
It won't be transparent as you probably need to keep the ERP router as a gateway setting, so each user needs to have their browser configured to use the proxy.

Make sure the pc with squid can connect to the internet ok, then with a standard install of squid, change one user's browser settings to use the squid proxy. If it works ok, change the rest.
 
Old 02-06-2006, 12:49 AM   #11
tsaravan
Member
 
Registered: Jun 2005
Location: India
Posts: 101

Original Poster
Rep: Reputation: 15
Quote:
Originally Posted by peter_robb
How many connections to the Internet do you have?

To make a proxy transparent, it must sit between the users and the router, otherwise users will need to set the ip number of the proxy.
To sit between, it needs to take the ip number of the router,
or be a bridged device with no ip numbers, using ebtables and layer2 filtering.

Hi,

I am sorry to bother you.

Can you please let me know step-by-step guide to setup bridged device with no ip number, using ebtables and layer 2 filtering. Also let me know the advantages and disadvantages.

regards,

T.Saravana
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
How to transparent proxy depam Linux - Software 3 12-30-2005 12:33 PM
transparent proxy mattsthe2 Linux - Networking 9 10-26-2005 08:44 AM
Transparent Proxy krock923 Linux - Networking 1 04-28-2005 06:43 PM
Transparent Proxy ilnli Linux - Networking 3 10-18-2004 06:01 PM
Transparent Proxy vinhhv Linux - Networking 0 07-23-2003 01:01 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 07:21 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration