I am an idiot. I didnt read the howto properly. I now realize that this http://en.tldp.org/HOWTO/TransparentProxy-5.html page discusses how to do redirect with squid on the same server as the firewall. The url that I have in the previous email is if squid is on another box. I have set the following iptable command but without success
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128 >From the client I am getting error URL could not be found and am getting the following in the access.log 1081968754.867 22 10.1.2.100 TCP_DENIED/400 1435 GET / - NONE/- text/html 1081968755.020 1 10.1.2.100 TCP_DENIED/400 1457 GET /favicon.ico - NONE/- text/html 1081968816.434 4 10.1.2.100 TCP_DENIED/400 1481 GET /products/firefox/start/ - NONE/- text/html 1081968816.601 0 10.1.2.100 TCP_DENIED/400 1457 GET /favicon.ico - NONE/- text/html Any advice? Thanks, Dhaval Forwarded From: Dhaval Patel <[EMAIL PROTECTED]> > Hello all, I am new to the list. I have recently setup squid-cache and squidguard on > our > local network. It works very well when I manually configure a browser to use the > proxy. > What I would like to do is transparently cache users so that I would not have to go > and > change settings on all computers. I have been looking into the HOWTO at > (http://en.tldp.org/HOWTO/TransparentProxy-4.html). I am a bit confused about the > iptable rules. I would be interesetd in method 2 which works for http 1.1 and 1.0 > traffic. My setup is the following. I have a linux server which is the firewall and > router. This is also the server that will run squid. I would be looking to implement > rules to forward outbound http connections through squid. Does anyone have this > setup or > can perhaps help me figure out what the iptables statements should be? > > Thanks, > Dhaval > --
