From owner-freebsd-isp@FreeBSD.ORG Tue Jul 8 13:13:59 2003 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 1271C37B401 for ; Tue, 8 Jul 2003 13:13:59 -0700 (PDT) Received: from insourcery.net (ns1.insourcery.net [198.93.171.6]) by mx1.FreeBSD.org (Postfix) with ESMTP id 79DDC43FA3 for ; Tue, 8 Jul 2003 13:13:56 -0700 (PDT) (envelope-from eculp@encontacto.net) Received: from localhost (localhost [127.0.0.1]) (uid 80) by insourcery.net with local; Tue, 08 Jul 2003 13:13:56 -0700 Received: from 192.168.5.65 (192.168.5.65 [192.168.5.65]) by mail.encontacto.net (Horde) with HTTP for ; Tue, 8 Jul 2003 13:13:56 -0700 Message-ID: <1057695236.51317f5568a73@mail.encontacto.net> X-Priority: 3 (Normal) Date: Tue, 8 Jul 2003 13:13:56 -0700 From: eculp@encontacto.net To: freebsd-isp@freebsd.org MIME-Version: 1.0 Content-Type: text/plain; charset="ISO-8859-1" Content-Disposition: inline Content-Transfer-Encoding: 7bit User-Agent: Internet Messaging Program (IMP) 4.0-cvs X-Originating-IP: 200.4.106.65 Subject: How to use transparent kernel proxy with squid? X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 08 Jul 2003 20:13:59 -0000 I want to use squid as a transparent proxy for http. The last time I did this several years ago I used transproxy but I understand that it can now be done in the kernel. I have all the firewall options compiled in the kernel [current] and ipfw and natd are working as expected. I am trying to do something like ipfw add 300 fwd 127.0.0.1,3128 tcp from 192.168.1.0/24 to 0.0.0.0/0 80 \ recv rl1 out xmit rl0 Squid and the firewall are running on the same machine and and I want all the 192.168.1 network to be forced to use squid. Thanks for any tips, ed -- -------------------------------------------------