Hi Jordi, Try to use this iptables rules: -
$IPTABLES -t nat -A PREROUTING -i $DEV -p tcp ! -s $NAGIOS --dport 80 -j REDIRECT --to-port 3128 Regards, Siew --- Jordi Vidal <[EMAIL PROTECTED]> wrote: > Hi, > > I'm trying to setup a rule to avoid Nagios from > fetching web pages > from the cache of my squid transparent proxy, > forcing to check directly > with remote server, but squids seems to ignore > completely the rule. > > My question is: is the rule "always_direct" usable > in a > transparent proxy configuration? > > My squid version is 2.4.STABLE7. Relevant parts of > squid.conf > follows: > > httpd_accel_host virtual > httpd_accel_port 80 > httpd_accel_with_proxy on > httpd_accel_uses_host_header on > cachemgr_passwd cebolla all > acl local-servers dstdomain .wtn > acl nagios browser check_http > always_direct allow nagios > always_direct allow local-servers > > Note: rule "always_direct allow local-servers" also > dont work. > Note: I tried also other acl definition for nagios > as > "acl nagios src 192.168.x.x/255.255.255.255" with no > luck > > From access.log ... > 192.168.x.x - - [11/Aug/2003:18:37:54 +0200] "GET > http://web.to.be.checked/ HTTP/1.0" 200 1697 > TCP_HIT:NONE > [...] > > From nagios check_http plugin... > Page is 1697 characters > STATUS: HTTP/1.0 200 OK > **** HEADER **** > Date: Mon, 11 Aug 2003 15:45:42 GMT > Server: Oracle HTTP Server .... > [...] > Age: 3205 > X-Cache: HIT from <my-squid-(transparent)proxy> > Connection: close > **** CONTENT **** > > > Jordi > __________________________________ Do you Yahoo!? Yahoo! SiteBuilder - Free, easy-to-use web site design software http://sitebuilder.yahoo.com
