Re: [squid-users] transparently redirect traffic to the Squid with L4-7 switch

From: Joe Cooper <[email protected]>
Date: Thu, 24 Oct 2002 18:00:57 -0500

Hicks, Rick wrote:
> Hi working an Alteon L4-7 webswitch to transparently redirect traffic to the
> Squid. We are running Squid on RedHat 7.2. We found examples in the
> docs(http://squid.visolve.com/faq.htm) on how to do this but all the
> examples use ipchains, 7.2 uses iptables. This is what we have done:
>
> httpd_accel_host virtual
> httpd_accel_port 80
> httpd_accel_with_proxy on
> httpd_accel_uses_host_header on
>
> The part that we can not figure it is how to do this with iptables ? or
> should we even have to do anything since our Alteon is redirecting all port
> 80 requests to port 3128 on the Squid - it does not seem to work however but
> we can see the requests are coming into the Squid box.
>
> ipchains -A input -j REDIRECT 3128 -p tcp -s <Your Network Address> -d
> 0.0.0.0/0 80 (do we need to do this at all, with iptables obviously on 7.2)

Yes, you still need local port redirection. The packet redirection at
the L4/L7 can't do it for you--even if you alter it to send to port 3128.

-- 
Joe Cooper <joe@swelltech.com>
Web caching appliances and support.
http://www.swelltech.com
Received on Thu Oct 24 2002 - 16:58:01 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:10:54 MST