Should work if the traffic is routed there for a start.. See the Squid
FAQ for details on how Squid needs to be configured.
You can only intercept traffic routed to the box.
Regards
Henrik Nordström
Squid Developer
Dirk Wagner wrote:
>
> Hi,
>
> I've got some problems beside the normal way. The machine (kernel 2.4.16)
> ist connected to the Internet through a VPN connection (Cisco, IPsec).
> On this machine I set up Squid with the default config that came with
> the distribution (SuSE 7.2) and configured Mozilla to use the Proxy on
> Port 3128. That worked find.
> Now, I want to force the users to use the proxy. That means to setup
> squid as a transparent proxy (I read the mini-HOWTO) and therfore
> redirect the local TCP traffic on port 80 to the squid port 3128 with
> iptables.
> And here is my problem: I'm not firm in setting up filtering rules and
> so I'm asking me if it's possible to get this szenario to work?
>
> iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT
> --to-port 3128
>
> eth0 has the ip-adress 10.73.52.246 and the vpnclient reports me
> 10.73.200.254.
>
> Are there any hints? What should I test first?
>
> thx
> Dirk
> --
> Dirk-Michael Wagner *** Wagner.Dirk-Michael@web.de
>
> Open Minds. Open Sources. Open Future. - Linux!
Received on Sat Jan 19 2002 - 04:03:34 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:05:53 MST