Date: Sun, 22 Dec 2002 01:28:39 +0200 From: Mark Pearce <mark@netchat.co.za> To: freebsd-questions@FreeBSD.ORG Subject: IPFW Squid problem Message-ID: <1040513319.3e04f927e9b0c@horde.wsnet.co.za>
next in thread | raw e-mail | index | archive | help
Hi all I have a small problem with Squid, I am running 4.7-STABLE on a server that is running 3 network cards, all with private range IP's. I have installed squid with the transparent proxy functionality as per the ports and it works 100%. My network is as follows: 10.0.2.100 -> router to the internet 10.0.4.1 -> internal network with hosted webserver 10.0.0.1 -> private lan MY situation is as follows: My router has a cross over cable connected to this machine, the other 2 cards are supporting a hosted server and other clients wanting internet access via my line. I have the following rules loaded at the moment. 00051 88 14535 allow tcp from 10.0.2.100 to any 00052 61 8058 fwd 127.0.0.1 tcp from any to any 80 65535 18147300 8402581899 allow ip from any to any My problem is that I have a hosted webserver on one of the network cards and if I run the rules listed above as directed by www.squid-cache.org, the transparent proxy works, but all requests to the hosted web server fail. I suspect that this is due to every request passing though the server on port 80 is redirected to the proxy server. How can I allow packets directed to the webserver not be "hijacked" by the fwd rule for the proxy server as I suspect that this will allow the hosted webserver to work as per normal. Thanks Mark ------------------------------------------------- This mail has been virus scanned! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1040513319.3e04f927e9b0c>