Ah, sorry my mistake, you mean Squid box will be the new default
gateway, right? If do so, I have to change default gateway on every
computers, it's also like config proxy setting on each PC.

Best regards
~ Neddie

On Tue, Dec 6, 2011 at 9:19 PM, Edmonds Namasenda <namase...@gmail.com> wrote:
> Your diagram or illustration shows a difference with my illustration.
> If you believe they are the same and getting header fields shown, look
> through your firewall and squid acls.
>
> # Edz.
>
> On Tue, Dec 6, 2011 at 5:05 PM, Nguyen Hai Nam <nam...@nd24.net> wrote:
>> Hi Edmonds,
>>
>> That's really like my setup right now. But, as Amos said, the traffic
>> just pass from eth0 to eth1 but don't come to Squid, because it's
>> bridged. Actually, when watching IP nat table, I still found some nat
>> rules show up, but at client-side it still looks direct access. And
>> more strange, if I use an other linux box from LAN to check out by
>> curl -I http://something.com/ it's returned the header fields that has
>> "Via: 1.1 (squid 3.2)". I have no idea why.
>>
>> At this moment, I still don't find more documentation from IPfilter
>> for deeper discovery.
>>
>> ~ Neddie
>>
>> On Tue, Dec 6, 2011 at 12:03 PM, Edmonds Namasenda <namase...@gmail.com> 
>> wrote:
>>> Hai,
>>> Seems your network set-up is what might be ruining your connection
>>> expectations or the "default gateway" needs a rule (possibly using a
>>> firewall) to direct all HTTP traffic to the squid box rather than to
>>> the internet.
>>>
>>> Otherwise, think of the set-up below (with the Squid box the same as
>>> the Gateway)
>>>
>>> Internet Router    >>   Eth0 |- Squid box & Default Gateway -| Eth1
>>>>>   Switch    >>   LAN
>>>
>>> # Edz.
>>>
>>> On Mon, Dec 5, 2011 at 5:14 PM, Nguyen Hai Nam <nam...@nd24.net> wrote:
>>>>



-- 
Best regards,
Hai Nam, Nguyen

Reply via email to