On Thu, 2003-11-27 at 18:19, Greg Hennessy wrote: > >I've made another test, squid listen only on 127.0.0.1:3128 > > Thats the way I have it here. If you're not seeing anything in the squid > logs, it sounds like the packet filtering is not quite right.
Well my filtering rules are (for test only of course): pass in all pass out all So i suppose shouldn't be that the problem, don't you think so ? In a situation like this one: ----- -------- ---------- ------------ lan |----| switch |---| myBridge |-----| ISP Router | ----- -------- ---------- ------------ Could be the switch (a catalyst 3500) the problem !? > two questions, > > you've compiled squid with --enable-pf-transparent enabled ? > Sure > Have you followed the instructions here. > > http://www.benzedrine.cx/transquid.html Sure > If you just want to implement a transparent cache, putting a route map on > your inside cisco and use policy based routing to hand off to squid would > be the way I'd do it. I know but that lan is complicated there's more then one way to exit to the net with more gws... what i cannot really understand is that with pfctl -ss i see the rdirected connection but in the squid log nothing appear Thanks for you interest! -- Thelmo
