From owner-freebsd-questions Sat Dec 7 19:25:30 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id E303037B401 for ; Sat, 7 Dec 2002 19:25:27 -0800 (PST) Received: from charter.net (dhcp-220-8.slidell.charter-ala.com [24.158.214.244]) by mx1.FreeBSD.org (Postfix) with ESMTP id DF09743EB2 for ; Sat, 7 Dec 2002 19:25:26 -0800 (PST) (envelope-from glennpj@charter.net) Received: from gforce.johnson.home (localhost [127.0.0.1]) by charter.net (8.12.6/8.12.6) with ESMTP id gB83PMFW001663; Sat, 7 Dec 2002 21:25:22 -0600 (CST) (envelope-from glenn@gforce.johnson.home) Received: (from glenn@localhost) by gforce.johnson.home (8.12.6/8.12.6/Submit) id gB83PLko001662; Sat, 7 Dec 2002 21:25:21 -0600 (CST) Date: Sat, 7 Dec 2002 21:25:21 -0600 From: Glenn Johnson To: "Scott A. Moberly" Cc: questions@freebsd.org Subject: Re: need help setting up a transparent proxy Message-ID: <20021208032521.GA1490@gforce.johnson.home> Mail-Followup-To: "Scott A. Moberly" , questions@freebsd.org References: <20021207193526.GA1123@gforce.johnson.home> <1297.10.0.0.2.1039301441.squirrel@mail.karamazov.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <1297.10.0.0.2.1039301441.squirrel@mail.karamazov.org> User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sat, Dec 07, 2002 at 04:50:41PM -0600, Scott A. Moberly wrote: > > I am trying to set up a transparent squid proxy with ipfw. I am > > using FreeBSD 4.7-STABLE (current as of today), version 2.5_1 of > > squid. I have read the relevant information on the squid Web site > > and searched the FreeBSD mail archive. I am pretty sure I have > > everything set up right but it just does not work. ...snip... > > What am I missing? > > Looks like an infinite loop to me. If this is on a gateway machine, > you might try: > > $fwcmd add fwd 127.0.0.1,3128 from INTERNAL_NETWORK to any 80 Thanks; that was it. Is there any way to have the gateway/proxy machine also use the proxy cache transparently? Apparently, packets destined for outbound port 80 from the gateway/proxy machine are coming from the external interface (cable modem) rather than the internal interface. This makes sense as the default route is on the external interface. Is it possible to make those packets appear to come from the internal interface? Not a big deal but I am curious. Thanks for your help. -- Glenn Johnson glennpj@charter.net To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message