I've set up a transparent proxy on a bridge following your howto and the firewalling bridge documentations with no big troubles...
kernel 2.4.19 with bridge-nf-0.0.7-against-2.4.19
but now I found out some weird misfuncioning...
tried to look all over newsgroups and sorts of docs with no luck
I've this setup
remote nets local net 10.30.2.0 bridge 10.30.3.0 -------router--------10.30.1.0----------firewall ----- router to internet ... (10.30.1.99)
it all works fine but...
if client computer is on local net transparent proxy works
if client computer is no remote nets connections seems to drop no answer from proxy (not even access denied page)
Connection is fine... because if I put manually proxy on web broswer it works perfectly!!!!
iptables -t nat -L
Chain PREROUTING (policy ACCEPT) target prot opt source destination .... REDIRECT tcp -- 10.30.1.108 anywhere tcp dpt:http redir ports 3128 REDIRECT tcp -- 10.30.3.141 anywhere tcp dpt:http redir ports 3128
10.30.1.108 works fine 10.30.3.141 no answer ...
both ip go into the same user defined chain :
------------- iptables -L
Chain FORWARD (policy DROP) ... limitati all -- 10.30.1.108 anywhere limitati all -- 10.30.3.141 anywhere ...
there is no difference
it seems like a non-local ip doesn't get trough the prerouting chain
any idea? is this a known bug? I actually did not understand the known bugs list
tia gianluca
_______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
