I start my server and at that once after my server is start , I can't use lynx and squid from client,
That time I did service iptables off => show me the follow message
service iptables stop
Flushing firewall rules: [ OK ]
Setting chains to policy ACCEPT: mangle nat filter [ OK ]
Unloading iptables modules: [ OK ]
Then I can use lynx from client computer .
I have already off chkconfig iptables , what's the error I met
how can I solve , I used fedora 8 x86_64 , 2.6.25.4-10.fc8 #1 SMP
Then I did all
cat /etc/rc.local
# script will be executed after all the other init scripts.
# You can put your own initialization stuff in here if you don't
# want to do the full Sys V style init stuff.

touch /var/lock/subsys/local
/usr/local/sbin/dhcpd eth1
echo "1" > /proc/sys/net/ipv4/ip_forward
echo "1" > /proc/sys/net/ipv4/tcp_syncookies
echo "1" > /proc/sys/net/ipv4/conf/all/rp_filter
echo "1" > /proc/sys/net/ipv4/conf/all/proxy_arp
echo "1" > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
echo "0" > /proc/sys/net/ipv4/conf/all/accept_source_route
echo "1" > /proc/sys/net/ipv4/conf/all/secure_redirects
echo "1" > /proc/sys/net/ipv4/conf/all/log_martians
iptables -F
iptables -t nat -F
iptables -t mangle -F
iptables -X
iptables -t nat -X
iptables -t mangle -X
echo "Firewall completely flushed! Now running with no firewall."
iptables -P INPUT DROP
iptables -P OUTPUT DROP
iptables -P FORWARD DROP
iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-ports 8080
iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-ports 8080
iptables -t nat -A POSTROUTING -o eth2 -j SNAT --to-source 10.1.0.2
THEN I did
mv /etc/rc.local rc.local.old
ecexiting.h
o "1" > /proc/sys/net/ipv4/tcp_syncookies
[root@cahce ~]# echo "1" > /proc/sys/net/ipv4/conf/all/rp_filter
[root@cahce ~]# echo "1" > /proc/sys/net/ipv4/conf/all/proxy_arp
[root@cahce ~]# echo "1" > /proc/sys/net/ipv4/icmp_echo_ignore_broadcasts
[root@cahce ~]# echo "0" > /proc/sys/net/ipv4/conf/all/accept_source_route
[root@cahce ~]# echo "1" > /proc/sys/net/ipv4/conf/all/secure_redirects
[root@cahce ~]# echo "1" > /proc/sys/net/ipv4/conf/all/log_martians
[root@cahce ~]# iptables -F
[root@cahce ~]# iptables -t nat -F
[root@cahce ~]# iptables -t mangle -F
[root@cahce ~]# iptables -X
[root@cahce ~]# iptables -t nat -X
[root@cahce ~]# iptables -t mangle -X
[root@cahce ~]# echo "Firewall completely flushed! Now running with no firewall."
Firewall completely flushed! Now running with no firewall
BUT AFTER THAT I GOT Disconnect(DC) and I restart my pressing restart button of my server , then I did service iptables off again at the first time
how can I solve

I think you need to describe your network a little - i.e.: who has what IP - what do you want to achieve.
Server is a proxy? Why the NAT?

- What is "DC" - in fact I can't figure out the meaning of that whole sentence

What is your problem exactly?

BTW if you are trying to do a transparent proxy of HTTPS, it won't work

"DC" sorry I use short term for our country, "Disconnect"

again: you need to describe your network a little - i.e.: who has what IP - what do you want to achieve? Where and what is the proxy? It could be misconfigured - does it even exist?...
billymayday already said that transparent proxying of https (port 443) will not work...

nothing to work with here...