[squid-users] Re: Problem with internal webserver, squid transparent

From: Charles Regan <[email protected]>
Date: Mon, 11 Sep 2006 10:19:04 -0300

If I add this line before my redirect rule, it works.
iptables -t nat -A PREROUTING -i my -d 1.1.1.1 -j ACCEPT

BUT I have to add every single www server to this list and users with
a www server won't get any cached objects.

Any other things i could do in my squid.conf to have inbound www
server working ?

thanks

On 9/11/06, Charles Regan <charles.regan@gmail.com> wrote:
> I am doing a transparent redirect using a bridge.
> (iptables -t nat -A PREROUTING -i my -p tcp --dport 80 -j REDIRECT
> --to-port 3128)
> WEBSERVER ---- ROUTER ----- SQUID ------ INTERNET
>
> Doing this make my webserver not accessible from the internet (port 80).
> Any idea whats wrong ? How can I use iptables to not redirect my webserver?
> I've tried adding to squid.conf
>
> acl Websvr1 dst 1.1.1.1/255.255.255.255
> no_cache deny Websvr1
>
> Didn't work.
>
> thanks
> C.
>
Received on Mon Sep 11 2006 - 07:20:09 MDT

This archive was generated by hypermail pre-2.1.9 : Sun Oct 01 2006 - 12:00:03 MDT