Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
in security concerns, i am a absolute beginner. nevermind, i have a small network @home. on this net, each pc connects to a small server having iptables and squid in standard-configuration from suse 8.0 (it's quite an ancient machine...p1/133 mhz)
how do i have to do this? what changes do i have to issue on squid? which rules have i to insert in iptables? i found many posts here, but never was sure, wheather it is complete or not....
normally, i thought, i just leave the squid.conf as it is and just insert a port-redirection for from port 80 to 3128 with
iptables -t nat -A PREROUTING -i eth0 (my internal lan-card) -p tcp --dport 80 -j DNAT --to 192.168.0.254 (any natting adress desired)
, and thats all....but, is this really all?? thanx for any help
this is natting the connection...no, my goal is leaving squid listening on port 3128 as is but having my browsers just with standard-setting and no entry for a proxy-server
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
...thats what i have done now, and nothing else! does anybody knows, whether this is working? all this does is redirecting requests on eth0 from port 80 to 3128....
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.