Date: Fri, 30 Aug 2002 10:56:10 -0700 (PDT) From: Julian Elischer <julian@elischer.org> To: David Delibasic <maddave@suxx.eu.org> Cc: freebsd-net@freebsd.org Subject: Re: Transpanent SQUID proxy Message-ID: <Pine.BSF.4.21.0208301054150.1047-100000@InterJet.elischer.org> In-Reply-To: <20020830112541.G7671-100000@spider.suxx.eu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
you need to run ipfw with a fwd rule on BOTH machines. on the first machine you need to send it to teh 2nd machine. On the 2nd machine you need to 'capture' it and send it to the squid socket. The rules in both cases shold be quite simiar.. also make sure your rules do NOT capture the output requests from squid, or you get a loop. On Fri, 30 Aug 2002, David Delibasic wrote: > Hello :) > > Has anyone successfuly configured transpanent www squid proxy to on other > machine? I've tryed `ipfw add fwd 10.0.0.4,3128 tcp from 10.0.0.0/24 to > any 80` and this seems not to work, because ipfw does not alter package > header and therefore it's not processed by my squid server (10.0.0.4). > I've also tried `ipfw add divert 8669 tcp from 0.0.0.0/24 to any 80` and > running `/sbin/natd -p 8669 -a 10.0.0.1 -proxy_only -proxy_rule > encode_tcp_stream port 80 server 10.0.0.4:3128` but this also doesn't > work. > > So, my question is: How to make it work ? > > Best regards, > D. > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-net" in the body of the message > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0208301054150.1047-100000>