I'd like to avoid using a MASQUERADE rule in the nat table. I have no choice it seems as my cable modem uses a dynamic ip address.
The whole point of transparent proxying is forcing use of the proxy, but I can't seem to accomplish this. First problem, most web sites these days are https which squid doesn't handle, at all. Ive implemented the following command: iptables -t nat -A PREROUTING -i eth0 -s 192.168.254.0/24 --dport 80 -j REDIRECT --to-port 3128 which isn't enough considering you cannot proxy https. I can use the proxy by explicitly setting it in firefox, but the transparent feature is a no go. I've always been confised when it comes to the nat and mangle tables and I've never touched the security table. -- Michael C Robinson _______________________________________________ PLUG mailing list [email protected] http://lists.pdxlinux.org/mailman/listinfo/plug
