Hi,
I have transparent proxy running pretty well
and caching ok.
I'm not sure where to post, but since
it is also a squid configuration issue, I'd
try here.
Currently, all outgoing port 80 calls are
being routed (via iptables) to the squid
box and then routed back through to the
routing machine
On Monday 01 September 2003 06.18, cc wrote:
> But how do I restrict Src ips? As it
> stands, all the port 80 packets that
> are sent to the 'net from the clients
> are DNATd to the Squid box and SNAT
> from the routing-box.
Don't NAT, just route the packets via a different route (policy
routin
Henrik Nordstrom wrote:
> Don't NAT, just route the packets via a different route (policy
> routing).
What do you mean?
>
> If there is other routers inbetween the interception point and the
> Squid box then use a GRE tunnel, if not direct routing.
>
> For reliable session routing in iptables
mån 2003-09-01 klockan 10.04 skrev cc:
> Henrik Nordstrom wrote:
>
> > Don't NAT, just route the packets via a different route (policy
> > routing).
>
> What do you mean?
What I say. If you want to redirect packets from a router to a cache
server do so by routing. DO NOT USE NAT for the purpose
