-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I am attempting to configure a Linux firewall/router using mandrake 10.1
with shorewall 2.0.8 that will redirect http, ftp, real, quicktime,
winmedia, and nntp to a Network Appliance NetCache transparent caching
proxy. Here''s what the network layout looks like:
~ Net
~ |
~ Linux fw/router
~ |
- ------Switch--------
| |
Clients Cache
I have read the shorewall with squid doc at
http://www.shorewall.net/Shorewall_Squid_Usage.html
which has been helpful, but it leaves me just short of a solution due to
the fact that the documented solution requires that an iptables redirect
rule be configured on the web cache server. My situation matches the
"Squid (transparent) Running in the local network" section with the
exception of the cache running on a Linux box... The following is the
final step (step 8) that is supposed to make the whole thing work, but I
cannot complete this step due to the fact that the rule must be added to
the web cache not the router/fw.
iptables -t nat -A PREROUTING -i eth0 -d ! 192.168.1.3 -p tcp --dport 80
- -j REDIRECT --to-ports 3128
The NetCache proxy listens on the same port as squid (3128), but runs on
a proprietary OS that I can''t add any redirection rules to. My hope is
that it is possible, on the Linux box, to rewrite the outgoing packet
with a destination port of 3128 rather than 80.
Is this possible?
- --
Mason Schmitt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFCMJCIbip6upg8pq8RAqcaAJsE0Umd1s9FTp4pypxuPklwQ0yYpgCffvaJ
7Bi4EXR1GHomSba5YSPegE0=4VAI
-----END PGP SIGNATURE-----