Date: Tue, 07 May 2013 14:28:32 +0400 From: Alexander <ags18@yandex.ru> To: freebsd-ports@freebsd.org Subject: Re: Squid and TPROXY Message-ID: <2887821367922512@web28g.yandex.ru> In-Reply-To: <5188ACC1.7040201@netfence.it> References: <5188ACC1.7040201@netfence.it>
next in thread | previous in thread | raw e-mail | index | archive | help
07.05.2013, 11:47, "Andrea Venturoli" <ml@netfence.it>: > Hello. > > I might be interested in running Squid's TPROXY with ipfw. > > Looking for docs, I've found almost only this: > http://tproxy.no-ip.org/ > > It seems a bit old, is it still valid? > > Any caveat/hint? > Can it work alongside standard mode? > > ššbye & Thanks > ššššššššav. > _______________________________________________ > freebsd-ports@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-ports > To unsubscribe, send any mail to "freebsd-ports-unsubscribe@freebsd.org" You must have kernel with: options IPFIREWALL_FORWARD then in ipfw rules you should add something like: ${fwcmd} add fwd 127.0.0.1,3128 tcp from ${int_net} to any 80 out via ${ext_if} and in squid.conf you should add something like: http_port 192.168.1.1:3128 http_port 127.0.0.1:3128 transparent thats all
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2887821367922512>