Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19

Warning: Function ereg() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 4

Warning: Function split() is deprecated in ..../includes/class_postbit.php(345) : eval()'d code on line 19
Squid Transparent proxy
Results 1 to 5 of 5

Thread: Squid Transparent proxy

Hybrid View

  1. #1

    Unhappy Squid Transparent proxy

    Hi,

    I have build squid proxy(transpranet proxy) and we are using Cisco Pix 506 firewall. How to divert the traffic to squid box.
    withouth changing settings for user.

    Regards,
    Manjunath

  2. #2

    hi

    you should create access control list in your cisco router, which will direct all requested traffic to your transparent proxy server...

  3. #3
    Hello,

    I don't know what actually you are looking for...

    My setup, The Internet link terminates on Router <--> PIX(Inside int) < -- > Squid <--> Lan. On the the Squid box using IPtables divert all port 80 to Squid. You can add SquidGuard for content filter and use shorewall to config Iptables...This freewares are working fantastically..

    regards,
    Babu

  4. #4

    Thumbs up squid transparent proxy

    Hi, here are the steps for squid transparent proxy:

    STEP I
    For transparent proxy we need the following in squid.conf

    http_port 3128 transparent

    httpd_accel_host virtual
    httpd_accel_port 80
    httpd_accel_with_proxy on
    httpd_accel_uses_host_header on

    STEP-2
    IPTABLE Configuration:
    Enter the following lines in file "/etc/rc.local" at the bottom.


    #
    # delete all existing rules.
    #
    iptables -F
    iptables -t nat -F
    iptables -t mangle -F
    iptables -X

    # Always accept loopback traffic
    iptables -A INPUT -i lo -j ACCEPT


    # Allow established connections, and those not coming from the outside
    iptables -A INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
    iptables -A INPUT -m state --state NEW -i ! ppp0 -j ACCEPT
    iptables -A FORWARD -i ppp0 -o eth0 -m state --state ESTABLISHED,RELATED -j ACCEPT

    # Allow outgoing connections from the LAN side.
    iptables -A FORWARD -i eth0 -o ppp0 -j ACCEPT

    # Masquerade.
    iptables -t nat -A POSTROUTING -o ppp0 -j MASQUERADE

    # Don't forward from the outside to the inside.
    #iptables -A FORWARD -i eth0 -o eth0 -j REJECT

    # Enable routing.
    iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
    echo 1 > /proc/sys/net/ipv4/ip_forward


    Quote Originally Posted by manjusa View Post
    Hi,

    I have build squid proxy(transpranet proxy) and we are using Cisco Pix 506 firewall. How to divert the traffic to squid box.
    withouth changing settings for user.

    Regards,
    Manjunath

  5. #5
    Administrator Advisor peter's Avatar
    Join Date
    Apr 2004
    Posts
    882
    pkuleshwar_bit, I think this would work for an iptables firewall, but not for a Cisco PIX. This link explains the process in more detail.

    My sites:
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.
    -
    To view links or images in signatures your post count must be 10 or greater. You currently have 0 posts.

Similar Threads

  1. Replies: 2
    Last Post: 05-26-2014, 09:12 PM
  2. Help for Squid 3 Proxy
    By ddlinux in forum Linux - Hardware, Networking & Security
    Replies: 3
    Last Post: 04-26-2011, 09:15 PM
  3. Transparent Proxy with HTTPS
    By zAm in forum Linux - General Topics
    Replies: 1
    Last Post: 12-16-2008, 03:44 PM
  4. need help about squid proxy
    By guozhang in forum Linux - General Topics
    Replies: 1
    Last Post: 12-06-2008, 09:45 PM
  5. IPTABLES firewalling (and transparent proxy)
    By Forrest2000 in forum Security
    Replies: 3
    Last Post: 12-06-2008, 05:28 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •