iptables + squid cannot serve https requests
Hi all,
Installed a squid on a remote server and an iptables on local and add two rules in iptables: iptables -t nat -A PREROUTING -s ! [squid-server] -d 0.0.0.0/0 -p tcp --dport 443 -i br0 -j DNAT --to-destination [squid-server]:3128 iptables -t nat -A PREROUTING -s ! [squid-server] -d 0.0.0.0/0 -p tcp --dport 80 -i br0 -j DNAT --to-destination [squid-server]:3128 In this situation all http requests served but https requests failed. And when directly connected to squid it was OK and can serve https requests. And Firefox returned "ssl_error_rx_record_too_long" error. Thanks. |
Seeing as you are using a bridge device you may want to look into using ebtables:
http://ebtables.sourceforge.net/br_fw_ia/br_fw_ia.html |
Thanks Ken,
Followed your link and find I can do this by bridging two ethernet cards. The problem is that I have only one ethernet network on my remote server. Can I create a virtual interface and bridge them? (one for input and one for output)! How can I solve this issue? Thanks a lot. |
Virtual with bridge
I'm not sure if you can create a virtual interface for bridging.
Why not put another network card in there they cost like 10 bucks? |
Because I don't have local access to that computer. :)
|
All times are GMT -5. The time now is 08:58 PM. |