From owner-freebsd-questions  Sun Dec  8 10:48:37 2002
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E668137B401
	for <questions@freebsd.org>; Sun,  8 Dec 2002 10:48:35 -0800 (PST)
Received: from rwcrmhc52.attbi.com (rwcrmhc52.attbi.com [216.148.227.88])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 78E7043EBE
	for <questions@freebsd.org>; Sun,  8 Dec 2002 10:48:35 -0800 (PST)
	(envelope-from mav@wastegate.net)
Received: from wastegate.net (12-226-185-104.client.attbi.com[12.226.185.104])
          by rwcrmhc52.attbi.com (rwcrmhc52) with ESMTP
          id <200212081848350520014lcue>; Sun, 8 Dec 2002 18:48:35 +0000
Received: from MOTHER (mother.wg.local [192.168.1.5])
	by wastegate.net (Postfix) with ESMTP
	id 5E54A48463; Sun,  8 Dec 2002 13:59:29 -0500 (EST)
From: "Doug Reynolds" <mav@wastegate.net>
To: "Glenn Johnson" <glennpj@charter.net>,
	"questions@freebsd.org" <questions@freebsd.org>
Date: Sun, 08 Dec 2002 13:48:54 -0500
X-Mailer: PMMail 2000 Professional (2.20.2657) For Windows 2000 (5.1.2600)
In-Reply-To: <20021207193526.GA1123@gforce.johnson.home>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Subject: Re: need help setting up a transparent proxy
Message-Id: <20021208185929.5E54A48463@wastegate.net>
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

On Sat, 7 Dec 2002 13:35:26 -0600, Glenn Johnson wrote:

>I am trying to set up a transparent squid proxy with ipfw.  I am using
>FreeBSD 4.7-STABLE (current as of today), version 2.5_1 of squid.  I
>have read the relevant information on the squid Web site and searched
>the FreeBSD mail archive.  I am pretty sure I have everything set up
>right but it just does not work.
>
>I have the following in my kernel config:
>
>options         IPFIREWALL              #firewall
>options         IPFIREWALL_FORWARD      #enable transparent proxy support
>options         IPDIVERT                #divert sockets
>options         IPSTEALTH               #support for stealth forwarding
>
>I have the following in my squid.conf file:
>
>http_port 3128
>httpd_accel_port 80
>httpd_accel_host virtual
>httpd_accel_with_proxy on
>httpd_accel_uses_host_header on
>
>I am using the "SIMPLE" firewall setup I have the following in my
>rc.firewall file
>
>	# Allow setup of any other TCP connection
>        ${fwcmd} add pass tcp from any to any setup
>
>        # Try this to get a transparent proxy
>        ${fwcmd} add fwd 127.0.0.1,3128 tcp from any to any 80
>
>I have also tried setting the first rule above to "...any to any 80" but
>that did not help.

did you run squid -z to create the swap directories?
---
doug reynolds | the maverick | mav@wastegate.net



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message