lör 2007-06-09 klockan 08:28 -0500 skrev Van Der Hart, Kevin:
> I am trying to get a transparent proxy working via WCCP V2 and am having
> an issue. I am running Red Hat 5 fully updated. IP Forwarding is
> enabled, RP_FILTER is disabled, the firewall is disabled. The kernel on
> Red Hat 5 is 2.6.18 which is supposed to have the patched version of
> ip_gre.
It should..
> My iptable entry is built to port map traffic on port 80 to 3128
> and I have tested that it is working. The gre tunnel is online and I can
> see traffic coming through the tunnel to port 80. The SYN packet comes
> in but no SYN ACK ever leaves.
Have you disabled rp_filter on the GRE interface? And is your iptables
rule for intercepting port 80 active on the GRE interface?
Note: The SYN ACK should leave via the Ethernet, not the GRE. The GRE is
just for Router->Proxy traffic.
> I placed a laptop on the same subnet as
> the Linux machine and pointed my default route to the Linux machine. The
> transparent proxying worked properly,I could surf the Internet, and I
> saw the requests in my access.log file so I am confident that Squid is
> configured properly for transparency.
It is.
Regards
Henrik
This archive was generated by hypermail pre-2.1.9 : Sun Jul 01 2007 - 12:00:04 MDT