RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Thomas York
of 10.0.1.1/24 and a default gateway of 10.0.1.254. -Original Message- From: Eliezer Croitoru [mailto:elie...@ngtech.co.il] Sent: Wednesday, May 30, 2012 11:09 PM To: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid i was curios about it because the last

Re: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Eliezer Croitoru
and a default gateway of 10.0.1.254. -Original Message- From: Eliezer Croitoru [mailto:elie...@ngtech.co.il] Sent: Wednesday, May 30, 2012 11:09 PM To: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid i was curios about it because the last time i setup

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Thomas York
it looks like my only working solution. -- Thomas York -Original Message- From: Eliezer Croitoru [mailto:elie...@ngtech.co.il] Sent: Thursday, May 31, 2012 12:03 PM To: Thomas York Cc: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid well as i

Re: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Eliezer Croitoru
gateway of 10.0.1.254. -Original Message- From: Eliezer Croitoru [mailto:elie...@ngtech.co.il] Sent: Wednesday, May 30, 2012 11:09 PM To: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid i was curios about it because the last time i setup a tproxy

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Daniel Niasoff
Croitoru [mailto:elie...@ngtech.co.il] Sent: 31 May 2012 21:17 To: Thomas York Cc: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid the marking is not all the thing. you should also use routing tables based on the marking so in the prerouting mangle you mark

Re: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Eliezer Croitoru
- From: Eliezer Croitoru [mailto:elie...@ngtech.co.il] Sent: 31 May 2012 21:17 To: Thomas York Cc: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid the marking is not all the thing. you should also use routing tables based on the marking so in the prerouting mangle

Re: [squid-users] Linux + TPROXY + Remote Squid

2012-05-31 Thread Eliezer Croitoru
a small update. on ubuntu 12.04 lts 3.2.0-23-generic x86_64 it seems that in the scenario that was mentioned my setup work fine with tproxy and masquerading. so the mentioned setup is ok but only with squid tproxy runing else the packets will be identified by routing hash memory and will

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-30 Thread Thomas York
-Original Message- From: Amos Jeffries [mailto:squ...@treenet.co.nz] Sent: Tuesday, May 29, 2012 8:00 PM To: squid-users@squid-cache.org Subject: RE: [squid-users] Linux + TPROXY + Remote Squid On 30.05.2012 01:49, Thomas York wrote: Is any more information needed? -- Thomas York -Original

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-30 Thread Amos Jeffries
- From: Amos Jeffries [mailto:squ...@treenet.co.nz] Sent: Tuesday, May 29, 2012 8:00 PM To: squid-users@squid-cache.org Subject: RE: [squid-users] Linux + TPROXY + Remote Squid On 30.05.2012 01:49, Thomas York wrote: Is any more information needed? -- Thomas York -Original Message- From

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-30 Thread Thomas York
smime.p7m Description: S/MIME encrypted message

Re: [squid-users] Linux + TPROXY + Remote Squid

2012-05-30 Thread Eliezer Croitoru
i was curios about it because the last time i setup a tproxy on debian it took me couple minutes. i am using debian squeeze 6.0.5 with basic 2.6.32-5-amd64 kernel and squid 3.1.6 from debian repos and tproxy works fine for me!! debian installed with squid3 ebtables bridge-utils . (also tested

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-29 Thread Thomas York
Is any more information needed? -- Thomas York -Original Message- From: Thomas York [mailto:strate...@fuhell.com] Sent: Friday, May 25, 2012 1:37 PM To: gi...@coochey.net; squid-users@squid-cache.org Subject: RE: [squid-users] Linux + TPROXY + Remote Squid I forgot one detail. I have

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-29 Thread Amos Jeffries
On 30.05.2012 01:49, Thomas York wrote: Is any more information needed? -- Thomas York -Original Message- From: Thomas York Sent: Friday, May 25, 2012 1:37 PM I forgot one detail. I have an iptables rule BEFORE the PREROUTING divert/tproxy iptables rules on the router. I added an

[squid-users] Linux + TPROXY + Remote Squid

2012-05-25 Thread Thomas York
I have a lab environment set up using two Debian Wheezy servers (Squeeze doesn't have a new enough kernel or iptables to do TPROXY properly). One of the servers is a router and the other is a proxy server. There are several clients connected to the router to simulate a production routing

Re: [squid-users] Linux + TPROXY + Remote Squid

2012-05-25 Thread Giles Coochey
On 25/05/2012 15:35, Thomas York wrote: I have a lab environment set up using two Debian Wheezy servers (Squeeze doesn't have a new enough kernel or iptables to do TPROXY properly). One of the servers is a router and the other is a proxy server. There are several clients connected to the router

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-25 Thread Thomas York
the routed packets perfectly fine. I'm not doing any kind of iptables rules on the proxy, however. -Original Message- From: Giles Coochey [mailto:gi...@coochey.net] Sent: Friday, May 25, 2012 11:12 AM To: squid-users@squid-cache.org Subject: Re: [squid-users] Linux + TPROXY + Remote Squid

RE: [squid-users] Linux + TPROXY + Remote Squid

2012-05-25 Thread Thomas York
-- Thomas York -Original Message- From: Thomas York [mailto:strate...@fuhell.com] Sent: Friday, May 25, 2012 1:32 PM To: 'Giles Coochey'; squid-users@squid-cache.org Subject: RE: [squid-users] Linux + TPROXY + Remote Squid No. The router has three interfaces. One goes to the internet and has