Hello, My server is Mandrake 10.1 eth0 is WAN with static IP connected to 512k DSL eth1 is LAN. I am using squid proxy for internet with NSCA auth. I am able to send and recieve mails. All that is working fine. My masq file is as follows: eth0 192.168.0.0/24 61.247.253.22 eth0 192.168.21.0/24 61.247.253.22 I want do a NAT to a particular system. The objective being to avoid going through squid. I have done the following : DNAT net loc:192.168.0.249 tcp 80 61.247.253.22 I am not able to browse on 192.168.0.249 without proxy settings. Did I a miss out anything ? Thanks Varun
varun_saa@vsnl.net wrote:> > > Did I a miss out anything ? >I don''t understand what problem you are trying to solve; you talk about proxying then show us a rule that port forwards in the opposite direction. Is it that you want HTTP connections from one host to not be transparently redirected to Squid? If so: REDIRECT loc:!<host> 3128 tcp 80 Where <host> is the IP address of the system that you want to allow direct web access. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.key