Quote:
Originally Posted by paynet2128
What is meant by "If using a proxying firewall, ensure that the proxy is transparent"?
|
It should be like that
Intercept and/or redirect the traffic to the chosen port. Having the proxy on the same machine as the interceptor is preferable. The code example uses iptables as the redirection mechanism, and port 8080 as the proxy's http_port.
To a different machine
iptables -t nat -A PREROUTING -i $INTERFACE -p tcp --dport 80 -j DNAT --to 10.0.3.1:8080
To the same machine
iptables -t nat -A PREROUTING -i $INTERFACE -p tcp --dport 80 -j REDIRECT --to-port 8080
Squid configuration
In the squid.conf file, configure these options:
* httpd_accel_host virtual
* httpd_accel_port 80
(or whatever port you want to proxy)
* httpd_accel_with_proxy on
* httpd_accel_uses_host_header on