Urgent and imp. Making Squid 2.6 stable as tranpsarent proxy

General discussion about PLUC and Linux in Pakistan.
Lance Naik
Posts: 19
Joined: Tue Jan 10, 2006 7:18 pm
Location: Lahore

Urgent and imp. Making Squid 2.6 stable as tranpsarent proxy

Postby mikdadhussain » Thu Aug 03, 2006 4:17 pm

Dear All.
I wanted to make a request to help from all of you guys.
Actually i work for an organization, where Squid is used as Transparent proxy,
Static Ip's have been assigned for the Clients, so here no need for Nating or Masquerading, but just Tranparent proxying is required,
I have tested Squid 2.6 stable 2 as Tranparent proxy as testing on a single network and it works fine.
with this configuration
[http_port transparent
iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT --to-port 3128
echo 1 > /proc/sys/net/ipv4/ip_forward]
and this works for a single network as Tranparent proxy
means all clients having Ips [192.168.254.x] use the as gateway and their request is fullfilled,
but now the demand is that
the client should use the 192.168.253.x and squid should use the , ie. different Networks [here again, no Nating is required simply tranparent proxy].
I have created another virtual interface of squid server having ip and forwarded the user's requests to it.
But it doesn't work , i think there is some problem with the iptalbes.
[Remember that in the squid 2.5 the tranparent proxy features were
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on]
and these all have been deprecated in the Squid 2.6 stable 2.
{in the private networks shown above, u can also consider to be subsituted the Real IP, i have replaced them. coz i m still testing it.}

So, plz help me out for this task.

Thanks a lot.
Shoaib Akbar.
JNE WOL Lahore.

Battalion Havaldaar Major
Posts: 252
Joined: Sun May 29, 2005 1:45 am
Location: Karachi

Postby syedali999 » Thu Aug 03, 2006 11:34 pm

Different Network!
First, To Contact Squid Box, You Are using Router or routing daemon.

First Let your router pass your request to squid-box.

Then the process will be same as for single network.

FYI, Wol Lhr is using one block of IP Address which is 202.154.x.x
no need to route request i think!

Feel Free to Ask 4 More!

S. Asad Ali Rizvi
Nomado Telecom
LPI ID: LPI000102069
My blogs:

Site Admin
Posts: 5132
Joined: Fri May 02, 2003 10:24 am
Location: Karachi


Postby LinuxFreaK » Fri Aug 04, 2006 9:59 am

Farrukh Ahmed

Return to “General”

Who is online

Users browsing this forum: No registered users and 1 guest