2009/1/29 Kai Wollweber <[email protected]>: > You are talking about my posting. If you are doing right the transparent > proxy will work. You have to install und configure squid, suidguard and > iptables before adding the rules from my posting. > > There are line breaks in the mail-archive which may cause errors. Please > read each iptables rule as a single line: > > # user squid shall pass it's packages to the interface ppp0: > iptables -A OUTPUT -o ppp0 tcp --dport www -t nat -m owner --uid-owner squid > -j ACCEPT > # user root shall pass it's packages to the interface ppp0: > iptables -A OUTPUT -o ppp0 tcp --dport www -t nat -m owner --uid-owner root > -j ACCEPT > # all other users packages to interface ppp0, port www will be redirected to > port 3128 > iptables -A OUTPUT -o ppp0 tcp --dport www -t -j REDIRECT --to 3128 >
And if you are using two NIC set up then you can substitute eth1 (assuming that is the NIC connecting to outside world) in place of ppp0. This alongw ith squid (with or without authentication) can give you transparent proxy. Sorry I do not have a write up but is working on my server which is serving thin (LTSP) as well as fat (laptops) clients on the local net. -- Regards, Sudev Barar Read http://blog.sudev.in for topics ranging from here to there. PS: I know most of people do not follow email niceties (mostly they are not aware) but if you follow bottom post/in-line post style of email conversations it becomes a whole lot easier to carry on meaningful dialogue and you can snip out what is not meaningful too. Most people just hit reply button and top post leaving prior message appended uselessly at bottom. See if you can adopt this style and persuade others. In case you are already doing this ..... great, spread the message. ------------------------------------------------------------------------------ This SF.net email is sponsored by: SourcForge Community SourceForge wants to tell your story. http://p.sf.net/sfu/sf-spreadtheword _____________________________________________________________________ Ltsp-discuss mailing list. To un-subscribe, or change prefs, goto: https://lists.sourceforge.net/lists/listinfo/ltsp-discuss For additional LTSP help, try #ltsp channel on irc.freenode.net
