looks like you forgot a line in your rules rules: ACCEPT $FW net tcp www <- looks like you forgot this line REDIRECT loc 3128 tcp www
To check if it is the fire wall or the proxy place #'s in front of both ACCEPT and REDIRECT this will effectively turn of the proxy. If you have connection with Internet then you have a problem with the proxy and if not you have a problem with the firewall. Eric ----- Original Message ----- From: "Tom Eastep" <[email protected]> To: "Shorewall Users" <[email protected]> Sent: Thursday, April 18, 2013 2:26:51 PM Subject: Re: [Shorewall-users] Problem configuring transparent proxy On 04/18/2013 12:10 PM, Ernesto Domato wrote: > On Thu, Apr 18, 2013 at 2:53 PM, Tom Eastep <[email protected]> wrote: >> You have a REDIRECT rule on the system running Squid? >> > > > Yes, I did this manually an also with shorewall and it works well. The > configuration on the system running Squid is: > > interfaces; > > net eth0 detect tcpflags,logmartians,nosmurfs > > policy: > > $FW net ACCEPT > net $FW ACCEPT > all all REJECT info > > rules: > > REDIRECT net 3128 tcp www > > zones: > > fw firewall > net ipv4 > > So, for that reason I guess that the problem is on the host system > were I did the routing to the Squid system. > Please forward the output of 'shorewall dump' collected as described at http://www.shorewall.net/support.htm#Guidelines Thanks, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Precog is a next-generation analytics platform capable of advanced analytics on semi-structured data. The platform includes APIs for building apps and a phenomenal toolset for data science. Developers can use our toolset for easy data analysis & visualization. Get a free account! http://www2.precog.com/precogplatform/slashdotnewsletter _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------------------------------ Precog is a next-generation analytics platform capable of advanced analytics on semi-structured data. The platform includes APIs for building apps and a phenomenal toolset for data science. Developers can use our toolset for easy data analysis & visualization. Get a free account! http://www2.precog.com/precogplatform/slashdotnewsletter _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
