Re: [squid-users] Transparent squid ignores client-side /etc/hosts

From: Amos Jeffries <squid3@dont-contact.us>
Date: Sun, 11 Nov 2007 23:42:19 +1300

Alex Vorona wrote:
> Hello
>
> I got transparent squid 2.6 on Linux box via iptables REDIRECT. All
> works fine, but squid actually ignores original DST IP in hijacked
> connection and uses Host header to resolve to IP and then connects to
> that IP.
>

You are missing the 'transparent' option on your receiving http_port.
It tells squid to perform NAT lookups and spoof portions of the outgoing
traffic.

Amos
Received on Sun Nov 11 2007 - 03:42:19 MST

This archive was generated by hypermail pre-2.1.9 : Sat Dec 01 2007 - 12:00:02 MST