Zdraveite, Opitvam se da si pusna Squid transparenten na Lokalnata mashina. Iskam s Iptables da redirektna kym lokalen port za da se keshira. No imam problemi: 1. Squida e konfiguriran za tansparent s pravilnite opcii i acl-i. 2. Probvam niakolko varianta Iptables bez nikakyv uspeh : iptables -t nat -A OUTPUT -d 0.0.0.0/0 -p tcp --dport 80 -j DNAT --to 127.0.0.1:8080 Znachi ako opitam s PREROUTING ne se poluchava (logichno). S gornoto paketite zanimavat kym SQUIDA no se vryshta che sym DENT ot proxy-to - mnogo stranno.Prinudih se da napisha http_access allow all i vypreki vsichko bez uspeh. V kernela imam kompilirano NAT of local connection. V dokumentaciata na Ipfilter e pisano slednoto:
he NAT code allows you to insert DNAT rules in the OUTPUT chain, but this is not fully supported in 2.4 (it can be, but it requires a new configuration option, some testing, and a fair bit of coding, so unless someone contracts Rusty to write it, I wouldn't expect it soon). The current limitation is that you can only change the destination to the local machine (e.g. `j DNAT --to 127.0.0.1'), not to any other machine, otherwise the replies won't be translated correctly. Abe Vyobshte niakoi ima li opit s takyv tochno tip transparentno proxy, govoria kogato trafika idva izrichno ot lokalnata mashina i trebe da se nasochi kym proxy-to. Az ne uspiavam da go pusna... Todorin ----------------------------------------------------------------- http://www.MURA.bg - Гмурни се в играта! ============================================================================ A mail-list of Linux Users Group - Bulgaria (bulgarian linuxers). http://www.linux-bulgaria.org - Hosted by Internet Group Ltd. - Stara Zagora To unsubscribe: http://www.linux-bulgaria.org/public/mail_list.html ============================================================================
