On 14/07/2015 8:34 a.m., John Pearson wrote:
> Thanks Yuri for the response, I understand. I do have Shorewall configured
> and I understand the security implications. My Router is also the Wireless
> AP, so I want to try out this setup without having to buy another Wireless
> AP.
>
> I don't mind
I use a bit another configuration:
http://wiki.squid-cache.org/ConfigExamples/Intercept/CiscoIOSv15Wccp2
As you can see, squid box placed between two routers. Front router uses
NAT to white IP, back router has no NAT and configured with WCCPv2
redirection. DMZ configured between two routers.
Thanks Yuri for the response, I understand. I do have Shorewall configured
and I understand the security implications. My Router is also the Wireless
AP, so I want to try out this setup without having to buy another Wireless
AP.
I don't mind it being complex, do you have any suggestions on getting
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Ah,
forgot about:
Your squid in scheme I wrote will have static gray IP. And this IP must
be excluded from DHCP pool on router.
14.07.15 2:15, John Pearson пишет:
> Hi Everyone,
>
> My setup is: Internet <--> Squid-eth0 <--> Squid-eth1 <--> Rout
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
And beware: Your current configuration is insecure. Very insecure.
Especially if you haven't firewall configured on squid box.
14.07.15 2:15, John Pearson пишет:
> Hi Everyone,
>
> My setup is: Internet <--> Squid-eth0 <--> Squid-eth1 <--> Router
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Note:
If you want to use two NIC onto Squid box, you need to configure this
box TCP stack as a static router.
But more better to aggregate both NIC and connect router and squid box
with switch.
14.07.15 2:15, John Pearson пишет:
> Hi Everyone,
>
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Too complex setup for simple task.
You can simple re-connect squid box before router and configure it as
gateway for devices. And setup NAT redirection directly onto squid box.
Something like this:
Internet <-> Router + DHCP + NAT <--> S
Hi Everyone,
My setup is: Internet <--> Squid-eth0 <--> Squid-eth1 <--> Router <-->
Devices
Currently the Router is doing NAT and DHCP for the devices connected to it.
Squid is in transparent mode. I set up a bridge ( br0). I set up the
ebtables and iptables. It works but I want to figure out a w
