Hello Friends,
Is it possible to use port 443 or https protocol without using masquerading
i.e.
iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE.
whenever i use masquerading all the clients by passes the transparent proxy.
The iptables rules mentioned below are already applied.
iptables -t nat -A PREROUTING -p tcp --dport 80 -j REDIRECT --to-port 8080
iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port 8080
but when i try to browse www.hotmail.com it never redirect it from http to https. If i am doing any thing wrong please guide me.
Regards,
Turab.
Transparent use of squid without masquerading
-
- Site Admin
- Posts: 5132
- Joined: Fri May 02, 2003 10:24 am
- Location: Karachi
- Contact:
Re:
Dear turab,
Salam,
Remove this line from your squid.conf
Best Regards.
Salam,
Remove this line from your squid.conf
Code: Select all
acl Safe_ports port 443
Farrukh Ahmed
Re:
Farukh are u sure ?LinuxFreaK wrote:Dear turab,
Salam,
Remove this line from your squid.conf
Best Regards.Code: Select all
acl Safe_ports port 443
-
- Battalion Havaldaar Major
- Posts: 252
- Joined: Sun May 29, 2005 1:45 am
- Location: Karachi
- Contact:
Re:
Please Let Me Complete LinuxFreak!LinuxFreaK wrote:Dear turab,
Salam,
Remove this line from your squid.conf
Best Regards.Code: Select all
acl Safe_ports port 443
un-comment the following line
Code: Select all
acl Safe_ports port 443
Code: Select all
http_access allow yourclient Safe_ports
Thanks,
Regards
S. Asad Ali Rizvi
===================
Nomado Telecom
http://www.nomado.eu
alex[NoSpam]@nomado.eu
====================
LPI ID: LPI000102069
My blogs:
http://crea8ivefood.blogspot.com
http://actuarialsciencestudies.blogspot.com
Regards
S. Asad Ali Rizvi
===================
Nomado Telecom
http://www.nomado.eu
alex[NoSpam]@nomado.eu
====================
LPI ID: LPI000102069
My blogs:
http://crea8ivefood.blogspot.com
http://actuarialsciencestudies.blogspot.com
squid wont surf https request as transparnet proxy u have to MASQUERADE port 443iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port 8080
port 443 cannot be proxied transparently (stop and think about it for a minute; if HTTPS could be transparently proxied, then how secure would it be?).
see my lastg post and then ask me
this
i am also working in an ISP and if u get any slution to run squid as https transparent proxy than most tell me i will ask henrik who says squid is http proxy not a https proxy ( as trasparent) squid can surf https request but at a manual proxy or with Proxy.pac java script
Note:- henrik is founder of squid !
this
i am also working in an ISP and if u get any slution to run squid as https transparent proxy than most tell me i will ask henrik who says squid is http proxy not a https proxy ( as trasparent) squid can surf https request but at a manual proxy or with Proxy.pac java script
Note:- henrik is founder of squid !
it works
Salam kbukhari,
Hope you are doing well, i tune iptables in a manner that i delete
iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port 8080
and add
iptables -t nat -A POSTROUTING -p tcp --dport 443 -o eth0 -j MASQUERADE
this is wat you are trying to say ?!?
is this the best possible solution for https ?!?
Regards,
Turab
Hope you are doing well, i tune iptables in a manner that i delete
iptables -t nat -A PREROUTING -p tcp --dport 443 -j REDIRECT --to-port 8080
and add
iptables -t nat -A POSTROUTING -p tcp --dport 443 -o eth0 -j MASQUERADE
this is wat you are trying to say ?!?
is this the best possible solution for https ?!?
Regards,
Turab