[squid-users] Transparent Squid
LINGYUN ZHAO
zlyun1979 at gmail.com
Mon Nov 27 19:24:43 UTC 2017
Dear Squid team,
I need Squid as a real 'transparent' proxy on Fedora without changing 5
tuples. Is it possible?
The setup is simple as Client ---------- Fedora --------Server
The Squid version is 3.5.20.The key configuration on Squid as below:
http_port 0.0.0.0:3128 transparent
acl localnet src 10.0.0.0/24
http_access allow localnet
And I configured a NAT on Fedora.
iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j DNAT --to
10.0.0.1:3128
When I run curl on Client to server. I found the server receives the
traffic with Fedora's IP address and different source port, instead of
Client IP address and original source port.
Thanks a lot
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20171127/78af08d8/attachment.html>
More information about the squid-users
mailing list