Re: [squid-users] transparent proxy w/ squid

From: Wes Baehr <[email protected]>
Date: Thu, 24 Apr 2003 14:55:35 -0400

You have the httpd_accel_port set to 80 - it needs to be the port that the
requests are being routed too. (3128)

--
wes
----- Original Message -----
From: "Jon hoffman" <hoffmanjon@comcast.net>
To: <squid-users@squid-cache.org>
Sent: Thursday, April 24, 2003 12:35 PM
Subject: [squid-users] transparent proxy w/ squid
> Hello,
> This is going to be a pretty long question (and the worse thing is I have
done
> this before without this problem).
> I am setting up (well trying too) a transparent proxy server using the
squid
> proxy server and iptables.  These are the steps I went through:
> 1)  Downloaded the latest 2.5STABLE2 source for squid and compiled it with
the
> --enabe-linux-netfilter option.
> 2)  Changed the following lines in the squid.conf file:
>         httpd_accel_host virtual
>         httpd_accel_port 80
>         httpd_accel_with_proxy on
>         httpd_accel_uses_host_header on
> 3) Put the following line in my firewall script to route all port 80
traffic
> coming from inside my network to port 3128 (squid's proxy port)
>         iptables -t nat -A PREROUTING -i $INT -p tcp --dport 80 -j
REDIRECT
> --to-port
> 3128
> 4)  Restarted my firewall and initalized squid and started squid.
>
> It works great when the proxy is set up in the web browser, but the
problem is
> I do not want to go around and set the web browser on every computer I
want
> it to be a "transparent proxy" where all www traffic is automaticly
> redirected through the squid proxy server.
>
> The error I get in the web browser comes from the proxy server.  It is a
> Invalid URL error and it says that it was having troublr retrieveing the
URL
> for /  (even through I put a correct address in the addres bar).
>
> Checking the squid logs, it does not show a URL but just the /.  Kind of
like
> the address it is tring to get to is not being redirected to the proxy
> server.
>
> I do a TCPDUMP and it shows me connecting to the address that I put in the
> address bar (from the computer behind the proxy server).
>
> Any ideas on what I forgot to do (been banging my head into the wall all
day
> today and it is beginning to hurt :O(.
>
> Thanks in advance for any help you can provide.
>
> Jon
>
>
Received on Thu Apr 24 2003 - 12:55:27 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:15:26 MST