Yes. $IPT -t nat -A PREROUTING -i $INTERNAL_INT -p tcp --dport 80 -j REDIRECT --to-port $SQUID_PORT
you will also want to make sure squid is configured with: httpd_accel_host virtual httpd_accel_port 80 httpd_accel_with_proxy on httpd_accel_uses_host_header on This is known as transparent proxy. It is sometimes handy. Failing that, you could just drop all port 80 traffic going through your firewall, and when users come to you and ask "why doesn't the web work?" or some similar question, you can ask them "Do you have the proxy server set in your browser?", then hit them over the head with a blunt object. -Joe > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]]On Behalf Of Mike Nielsen > Sent: Wednesday, April 10, 2002 7:26 PM > To: [EMAIL PROTECTED] > Subject: Squid and IPTables > > > > If I was running a squid plus content filter on an IPTABLES box > is there a > way I can force all outgoing web traffic through the proxy using iptables? > > > > -- > > > ----------------------------- > |\/|[EMAIL PROTECTED] > >
