Re: firestarter and squid

On Mon, 2005-07-11 at 19:05 -0400, David Niemi wrote:
> On Thu, 2005-21-04 at 17:19 -0400, ryan wrote:
> > Try something like (all on one line) the below entered
> > in /etc/firestarter/user-pre
> > iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port
> > 3128
> > 
> > 
> > On Thu, 2005-04-21 at 12:49 +0200, marcantonio wrote:
> > > hi,
> > > 
> > > I would like to setup Squid (http proxy) as a transparent HTTP 
> > > accelerator on the same linux box where firestarter resides.
> > > 
> > > Has anyone had experience in setting up this kind of configuration? 
> > > Where would you suggest to add the iptables rules specified in the squid 
> > > documentation?
> > > 
> > > Marcantonio
> 
> The iptables statement above that Ryan gave a few months ago for squid
> transparent operation won't work for me.  Is it in the wrong format for
> firestarter user-pre?  When I compare it to some of the examples for
> user-pre for VPN I see they are quite different, starting with $IPT.
> 
> Thanks
>   Dave
> 

Try 

$IPT -t nat -A PREROUTING -i $IF -p tcp --dport 80 -j REDIRECT --to-port
3128

(all on one line)

If that doesn't work, please email me back and I'll re-setup squid on
this machine and try it again. 

The command makes some assumptions:
-Squid is running on port 3128 (default)
-Squid is running ("service squid start" as root)
-You've configured Squids ACLs correctly.







-------------------------------------------------------
This SF.Net email is sponsored by the 'Do More With Dual!' webinar happening
July 14 at 8am PDT/11am EDT. We invite you to explore the latest in dual
core and dual graphics technology at this free one hour event hosted by HP, 
AMD, and NVIDIA.  To register visit http://www.hp.com/go/dualwebinar