From: Eliezer Croitoru <[email protected]> To: [email protected]
> now that you remind me. > i have seen this kind of problem!!! > it was nasty on squid 3.1. > you can see in iptables connection tracking that squid is opening the > socket but it sends the first syn and wont get the incoming syn from the > destination. > > but there are two different situations bridge and routing. > on bridge it's pretty obviates. > you must tell the bridge to "drop" the incoming traffic from of source > port 8080 otherwise it will be bridged to the client and wont get back > to squid. > If it is an external web server, the ebtable rule will probably fix it. But for my case, on the squid machine, I have a web server, and the url rewrite redirect the traffic to this web server. And I don't seem to be able to get a reply back into squid. Which is blocking the reply ?
