[Gllug] Squid as transparent proxy but not on gateway?
Benjamin Donnachie
benjamin at py-soft.co.uk
Tue Feb 20 13:23:33 UTC 2007
I'm just wondering whether this is feasible...
My current wireless ADSL router from Orange lives at 192.168.1.1. I'd
like to run a local copy of squid which passes all requests to a remote
machine with a much faster link running ziproxy. I've got it setup
successfully on machine 192.168.1.2, as long as I manually point each
browser to it.
I'd like to have it running as a transparent proxy, with 192.168.1.2
acting as dhcp server pointing all machines to it as the default gateway.
I'm not sure whether it's me or the beta copy of cAos-3 that I'm using,
but iptables doesn't seem to like what I'm trying to achieve:
iptables -t mangle -I PREROUTING -p tcp --dport 80 -j REDIRECT --to-port
3128 --destination 127.0.0.1
iptables: Unknown error 4294967295
And also:
iptables -I FORWARD -p tcp --dport 80 -j REDIRECT --to-port 3128
--destination 127.0.0.1
iptables: Unknown error 4294967295
Normally I would run this on the gateway with nat, but that isn't an
option in this case as the router has built in wireless and I want the
wireless machines to use the proxy transparently.
Is what I'm trying to achieve possible? Or do I need to bin the Orange
ASDL box and then dig out an old ADSL modem and a wireless access point?
If it is possible, any tips on setting up the firewall correctly? :-)
I'd like 192.168.1.2 to pass everything through to the router at
192.168.1.1, except http at this stage, which it needs to pass to squid
on port 3128 on localhost.
Thanks in advance! :)
Ben
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list