Hi, I use squid proxy, and make connections transparently with iptables firewall.
But my iptables rules allow for transparent proxy requests.
Also, On my small (very) home network,
Quote:
My internal network ==> getway or firewall ==> switch ==> proxy server ==> router==> internet.
|
is all on this box (system).
My other computers connect to this one to access the internet via the proxy as well as this one via browser settings.
I have found this site very useful...
http://www.linuxhomenetworking.com/w...ess_with_Squid
Code:
Version 2.6 and Beyond: Newer versions of Squid simply require you to add the word "transparent" to the default "http_port 3128" statement. In this example, Squid not only listens on TCP port 3128 for proxy connections, but will also do so in transparent mode.
http_port 3128 transparent
these lines for the iptables script...
Code:
Configuring iptables to Support the Squid Transparent Proxy
The examples below are based on the discussion of Linux iptables in Chapter 14, "Linux Firewalls Using iptables". Additional commands may be necessary for you particular network topology.
Allowing the fw to access the internet...
Code:
http://www.linuxhomenetworking.com/wiki/index.php/Quick_HOWTO_:_Ch14_:_Linux_Firewalls_Using_iptables#Allowing_Your_Firewall_To_Access_The_Internet
So, you need to add to /etc/squid/squid.conf, /etc/../iptables and /etc/sysctl.conf (packet forwarding)
cheers, Glenn