Firewall Wizards mailing list archives
Re: Transparent Proxy and IPChains
From: Ryan Russell <ryan () securityfocus com>
Date: Wed, 19 Apr 2000 11:19:42 -0700 (PDT)
Pardon me asking the obvious... Have you checked out: http://squid.nlanr.net/Squid/FAQ/FAQ-17.html#ss17.7 (Never done it myself.. but i was curious, and went looking. That's what I found.) This seems relevent, and I don't think you said if you had it on: "You must include the IP: always defragment, otherwise it prevents you from using the REDIRECT chain." And perhaps: "Also, Andrew Shipton notes that with 2.0.x kernels you don't need to enable packet forwarding, but with the 2.1.x and 2.2.x kernels using ipchains you do. Packet forwarding is enabled with the following command: echo 1 > /proc/sys/net/ipv4/ip_forward" Though I suspect if IPChains is working otherwise, this is already the case. Ryan
Current thread:
- Transparent Proxy and IPChains Jason L. Esman (Apr 18)
- Re: Transparent Proxy and IPChains Ryan Russell (Apr 20)
- RE: Transparent Proxy and IPChains Jason L. Esman (Apr 20)
- RE: Transparent Proxy and IPChains Paul D. Robertson (Apr 24)
- RE: Transparent Proxy and IPChains Jason L. Esman (Apr 20)
- <Possible follow-ups>
- RE: Transparent Proxy and IPChains Michael Walter (Apr 24)
- RE: Transparent Proxy and IPChains Jason L. Esman (Apr 26)
- RE: Transparent Proxy and IPChains Michael Walter (Apr 24)
- Re: Transparent Proxy and IPChains Ryan Russell (Apr 20)