Linux - NewbieThis Linux forum is for members that are new to Linux.
Just starting out and have a question?
If it is not in the man pages or the how-to's this is the place!
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
I think I got it now! Your statement above on working on NAT helped me realise what the problem was. It turned out that I needed to put the....-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-port 3128 rule higher than giving access to the LAN.
After I did this, now I can see entries in access log, and I feel squid is working as it should.
I think you are right. Look at my firewall rules below...
# Forward HTTP connections to Squid proxy
-A PREROUTING -p tcp -i eth1 --dport 80 -j REDIRECT --to-port 3128
# Allow Internal Network Out Access
-A PREROUTING -i eth1 -j ACCEPT
Rule 1 is redirecting traffic from eth1(LAN) to Squid, while Rule 2 allows all traffic from LAN to go out. If squid is off, then rule 2 will still work. Therefore, how can I modify rule 2 to take into account Squid, in ACCEPTING traffic from eth1?
My network is connected via VSAT to the Internet. I have an iDirect satellite modem, which is also a router with an ethernet LAN port, and a satellite WAN port. The ethernet LAN is configured with /26 subnet of public IP addresses. I'm using one of these public IP addresses for my Linux/Proxy box as eth0.
I do not know about skype and msn. i have never blocked them but outlook should not work as far as I have seen. Outlook will use your system default gateway to connect to internet and hence if the gateway is turned off, outlook should not connect to internet. But you should wait for some senior member to come up and correct me.