Im trying to redirect all the www traffic to my squid proxy installed on the firewall on port 3128, but it doesnt work with this expample Example 2. You want to redirect all www requests from the local network to a Squid server running on the firewall and listening on port 8080 and the firewall zone is named "fw". Squid will require access to remote web servers. RESULT CLIENT(S) SERVER(S) PROTO PORT(S) CLIENT PORT(S) ADDRESS ACCEPT loc fw::3128 tcp www - all ACCEPT fw net tcp www when i do that the squid respond "Invalid URL" but if i configure my browser to use a proxy and port, works fine. i got permisions in the squid.conf and works fine but when i do the redirection doesnt work transparently, thanks for your help Edgar
> Im trying to redirect all the www traffic to my squid proxy installed on the > firewall on port 3128, but it doesnt work with this expample > ... > when i do that the squid respond "Invalid URL" but if i configure my > browser to use a proxy and port, works fine. i got permisions in the > squid.conf and works fine but when i do the redirection doesnt work > transparently, thanks for your helpYou have to explicitly configure squid to allow transparent proxying - have you done this? Regards, Paul http://paulgear.webhop.net
----- Original Message ----- From: <edeleon@intra.net.gt> To: <shorewall-users@shorewall.net> Sent: Tuesday, March 05, 2002 2:25 PM Subject: [Shorewall-users] Transparent Proxy> Im trying to redirect all the www traffic to my squid proxy installed onthe> firewall on port 3128, but it doesnt work with this expample > > Example 2. You want to redirect all www requests from the local network toa> Squid server running on the firewall and listening on port 8080 and the > firewall zone is named "fw". Squid will require access to remote webservers.> > RESULT CLIENT(S) SERVER(S) PROTO PORT(S) CLIENT PORT(S) ADDRESS > ACCEPT loc fw::3128 tcp www - all > ACCEPT fw net tcp www > > when i do that the squid respond "Invalid URL" but if i configure mybrowser to> use a proxy and port, works fine. i got permisions in the squid.conf andworks> fine but when i do the redirection doesnt work transparently, thanks foryour> help >Sounds like you haven''t configured Squid as a transparent proxy. Check the Squid documentation as it contains very explicit for configuring Squid as a transparent proxy. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
Dear paulgear, Yes, you can use TCrules of Shorewall (to mark the packets) + iproute (to change the routing deciding to your Squid box )in Linux to do that. -- Best regards, T.Q.Huy mailto:huytu@hcmc.netnam.vn Tuesday, March 05, 2002, 3:22:07 PM, you wrote:>> Im trying to redirect all the www traffic to my squid proxy installed on the >> firewall on port 3128, but it doesnt work with this expample >> ... >> when i do that the squid respond "Invalid URL" but if i configure my >> browser to use a proxy and port, works fine. i got permisions in the >> squid.conf and works fine but when i do the redirection doesnt work >> transparently, thanks for your helppggdo> You have to explicitly configure squid to allow transparent proxying - have pggdo> you done this? pggdo> Regards, pggdo> Paul pggdo> http://paulgear.webhop.net pggdo> _______________________________________________ pggdo> Shorewall-users mailing list pggdo> Shorewall-users@shorewall.net pggdo> http://www.shorewall.net/mailman/listinfo/shorewall-users