Melek wrote: > Helo. > > I´m from Brazil. > > > > 1) liberating a computer (what he goes to use this service) of proxy, with > the following rule: > > # iptables -t nat -A PREROUTING -i eth1 -s \! 192.168.1.53 -p tcp --dport > 80 -j REDIRECT --to-port 3128 > >
If I understand you right you want to avoid the Squid Proxy so a specific outside IP[s]. You need to do something like this. /sbin/iptables -t nat -I CUSTOMPREROUTING -p tcp -d DESTITNATION_IP --dport 80 -j ACCEPT AND after you get it working you need to save it in /etc/rc.d/rc.firewall.local so it is applied after reboot. Do not use -i eth1 because the traffic is really seen on the bridge device [br0 or whatever]. Use -d and if you want to to restrict it down further use -s for source IP. -Mike ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Efw-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/efw-user
