Date: Wed, 9 Jul 2003 15:16:03 +0300 (EAT) From: Noah K Sematimba <ksemat@ksemat.co.ug> To: eculp@encontacto.net Cc: freebsd-isp@freebsd.org Subject: Re: How to use transparent kernel proxy with squid? Message-ID: <20030709151451.B365@ksemat.co.ug> In-Reply-To: <1057695236.51317f5568a73@mail.encontacto.net> References: <1057695236.51317f5568a73@mail.encontacto.net>
next in thread | previous in thread | raw e-mail | index | archive | help
I use a similar rule and it worked beautifully though I did not bother to add the recv and xmit stuff. Afterall I already block private ips from coming in my external interface anyways. Noah. On Tue, 8 Jul 2003 eculp@encontacto.net wrote: > I want to use squid as a transparent proxy for http. The last time I did > this several years ago I used transproxy but I understand that it can > now be done in the kernel. I have all the firewall options compiled in the > kernel [current] and ipfw and natd are working as expected. I am trying to > do something like > > ipfw add 300 fwd 127.0.0.1,3128 tcp from 192.168.1.0/24 to 0.0.0.0/0 80 \ > recv rl1 out xmit rl0 > > Squid and the firewall are running on the same machine and and I want all > the 192.168.1 network to be forced to use squid. > > Thanks for any tips, > > ed > > -- > > > ------------------------------------------------- > > _______________________________________________ > freebsd-isp@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" >
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030709151451.B365>