On Tuesday 16 December 2003 01:09 pm, Charles Steinkuehler wrote: > > > If the squid box was on the internal net, it would not be truely > transparent to the clients, who could easily tell their requests were > being proxied and answered by a local system. There would also be some > amount of low-level confusion caused by this setup, perhaps enough to > break basic web functionality (depends somewhat on exactly how > everything is setup, as well as the OS's & TCPIP stacks involved).
For my own use, I've come to dislike transparent proxying and now use manual proxy configuration. I can do that easily because I have just a small set of local systems. The instructions at http://www.shorewall.net/Shorewall_Squid_Usage.html use a second routing table for locally-generated http traffic to a local Squid proxy just as the DMZ configuration does. Despite the similarity of the two setups, people seem to have much more trouble setting up the local proxy. -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ [EMAIL PROTECTED] ------------------------------------------------------- This SF.net email is sponsored by: IBM Linux Tutorials. Become an expert in LINUX or just sharpen your skills. Sign up for IBM's Free Linux Tutorials. Learn everything from the bash shell to sys admin. Click now! http://ads.osdn.com/?ad_id=1278&alloc_id=3371&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
