Problem with Squid
I'm trying to setup a transparent proxy (gateway) using Squid using the instructions found on this board and tldp.org . I've got RH 8 running squid and it works if I set the proxy in the browser options, e.g. 192.168.0.1 Port:3128.
However, when I take it off and get it to do it transparently, I can't get online from a client. Here is my setup: External card (eth0) w/ static IP from ISP: 208.1XX.XXX.XXX Internal card (eth1) w/static IP of 192.168.0.1 Squid.conf settings: httpd_accel_host virtual httpd_accel_port 80 httpd_accel_with_proxy on httpd_accel_uses_host_header on IPtables: iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port 3128 I checked /proc/sys/net/ipv4/ip_forward and it does reply "1" Windows clients are setup with 192.168.0.X IP and Gateway to 192.168.0.1 I don't see what I'm missing. From all the searching on the boards I can't find a way to fix this. Any ideas? |
Transparent proxying is usually handled by iptables using masquerading. Run a search here for iptables masquerading and you will quickly find the rules you need. Squid requires that your client browsers aim at it, and sometimes authenticate through it to function.
|
All times are GMT -5. The time now is 05:37 PM. |