Henrik Nordstrom a �crit:
What you do to accomplish this is to transparently intercept the connections, but instead of redirecting the connections to Squid you redirect them to a simple web server (for example Apache) which no matter what request it received sends a browser redirect sending the user to another internal web server giving these instructions.
The following trivial shell script based web server run from (x)inetd even does the trick, but I'd recommend using a better web serer:
-- cut here -- #!/bin/sh cat <<EOF HTTP/1.0 302 Found Location: http://www.your.domain/howto_setup_proxy.html Content-Type: text/html
You need to configure your proxy settings. See http://www.your.domain/howto_setup_proxy.html for detailed instructions EOF sleep 1 -- cut here --
Thanks for your suggestion Henrik.
But, I wonder how will it work.
I suppose the response to the client *must* use the real destination server IP for IP source address to not be dropped by it ?
So, I suppose I must use NAT in iptables to do this ? Is this possible ?
In squid, I thought there was a mecanism to change the IP source address of the reply.
Is this the reallity ?
Thanks in advance for your help !
-- Fabien SALVI Centre de Ressources Informatiques Archamps, France -- http://www.cri74.org PingOO GNU/linux distribution : http://www.pingoo.org
