Hi,
Please be patient and go through the following.
Consider three systems in a network whose IP addresses are
System A - IP - 172.16.9.50
System -B IP - 172.16.9.100
System C IP - 172.16.1.200
System's A and B are in one LAN and C on another LAN.
A router has been placed between these two LANS.
The router has two ethernet interfaces, one with IP (eth0) 172.16.9.227 and
another with IP
(eth1)172.16.1.227.
System A and B's default gateway is 172.16.9.227
System C's default gateway is 172.16.1.227
Full fledged routing is enabled between both the LAN's.
- Squid(Proxy) server is configured on SystemB on port 3128.
- System A is trying to browse System C(HTTP server is running on C).
My requirement is - when I browse System C or any other system from A the
packets are to be forwarded to systemB(by router) and from there onwards
squid server should process the packet.
(PLS NOTE : This requirement is needed WITHOUT configuring proxy in system A)
System A initiated the HTTP traffic to C with following parameters.
Source Ip - 172.16.9.50 Source Port- 1300
Destination Ip - 172.16.1.200 Destination Port - 80
Source MAC address - MAC address of 172.16.9.50
Destination MAC address - MAC address of 172.16.9.227
I am able to redirect the packet to System B(on which squid is running)
from router with the following parameters.
Source Ip - 172.16.9.50 Source Port- 1300
Destination Ip - 172.16.1.200 Destination Port - 3128
Source MAC address - MAC address of 172.16.9.50
Destination MAC address - MAC address of 172.16.9.100
The packet is received by 172.16.9.100 but getting dropped at IP level.
Which configurations are needed so that
-- The packet is forwarded up to the squid server in 172.16.9.100
-- The squid server initiates a new connection to 172.16.1.200 on port 80
on behalf of
172.16.9.50
-- The responses from 172.16.1.200 are forwarded to 172.16.9.50.
It seems that it requires Masquerading IP's and for this I need to compile
the kernel with MASQUERADING option. Could any one help me how to proceed
on this without any
kernel compilations. Can this be done with "ipchains" and forwarding???? If
so, HOW??????
regards
GVS
-------------------------------------------------------
This sf.net email is sponsored by: Influence the future
of Java(TM) technology. Join the Java Community
Process(SM) (JCP(SM)) program now.
http://ads.sourceforge.net/cgi-bin/redirect.pl?sunm0004en
_______________________________________________
linux-india-help mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/linux-india-help
- Re: [LIH] GUI for sendmail Vipul Bhadra
- Re: [LIH] GUI for sendmail Binand Raj S.
- Re: Re: [LIH] GUI for sendmail Vipul Bhadra
- Re: Re: [LIH] GUI for sendmail Vipul Bhadra
