One question,
If I move to a Layer 4 switch (Foundry) to handle my http interception,
do I still need to have the squid box patched with tproxy to hide it or
will a standard linux 2.6.x kernel be able to handle it with netfilter?
I am looking to make the proxy as stealth as possible.
Amos Jeffries wrote:
>> I am running squid stable 13 on a ubuntu linux box in transparent mode.
>> Is there a way to hide the proxy so it will pass the test located at
>>
>> http://www.lagado.com/proxy-test
>>
>> my iptables rule looks like
>>
>> /sbin/iptables -t nat -A PREROUTING -i bond0.998 -p tcp --dport 80 -j
>> REDIRECT --to-port 3128
>>
>>
>
> Depends entirely on which of the many tests the site uses are showing the
> proxy.
>
> Look anonymization in the FAQ.
> http://wiki.squid-cache.org
>
> Amos
>
>
-- =-=-=-=-=-=-=-=-=-=-=-=-= Jamie Orzechowski - CCNA RipNET Ltd. System/Network Administrator Tel.: 613-342-3946 x294 THIS MESSAGE IS INTENDED ONLY FOR THE ADDRESSEE, IT MAY CONTAIN PRIVILEGED OR CONFIDENTIAL INFORMATION. ANY UNAUTHORIZED DISCLOSURE IS STRICTLY PROHIBITED. IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE NOTIFY ME IMMEDIATELY SO THAT I MAY CORRECT MY INTERNAL RECORDS. PLEASE THEN DELETE THE ORIGINAL MESSAGE. =-=-=-=-=-=-=-=-=-=-=-=-=Received on Thu Feb 19 2009 - 13:28:15 MST
This archive was generated by hypermail 2.2.0 : Thu Feb 19 2009 - 12:00:02 MST