Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Bridge with transparent proxy

From: "Mathew Want" <mathew.want () ac3 com au>
Date: Thu, 17 May 2007 09:55:51 +1000
Jorge,

I think the issue may be here.


iptables -t nat -A PREROUTING -i br0 -p tcp --dport 80 \
- -j REDIRECT --to-port 3128


I am not certain but I think that you do not want to NAT here as the proxy
will already put the external address on the packet when it issues the proxy
connection. It may be getting confused as you are trying to NAT the packet
to the external address of the box before handing the packet to SQUID.

Just my AU$0.02.

--
Regards,
Mathew Want

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: