[squid-users] iptables setup for tcp_outgoing_address

[davidjesse091 at aol.com]

I just tried the same configuration on my Windows machine and it works fine. Must be some Linux networking getting in the way. 
I tried a few things, if I use another interface's IP address for tcp_outgoing_address on my Linux machine then web pages don't load. If I use the same IP as I connect to Squid then it works.


But on Windows, I can connect to one ip and have an IP of another interface for tcp_outgoing_address and the outgoing traffic works as expected


-----Original Message-----
From: Alex Rousskov <rousskov at measurement-factory.com>
To: davidjesse091 <davidjesse091 at aol.com>; squid-users <squid-users at lists.squid-cache.org>
Sent: Fri, Jun 15, 2018 7:01 pm
Subject: Re: [squid-users] iptables setup for tcp_outgoing_address

On 06/15/2018 04:42 PM, davidjesse091 at aol.com wrote:

> I want to connect to Squid proxy using 192.168.1.212 and if I am
> connecting using port 11000, 

I assume you meant "connecting to port 11000" (there is also the client
source port, but it should not matter here).


> I want squid to have the traffic go out of the 172.16.11.107 IP


> http_port 11000 name=port_11000
> acl port_11000_acl myportname port_11000
> tcp_outgoing_address 172.16.11.107 port_11000_acl

Looks good to me, provided all your outgoing traffic goes to IPv4
addresses (no IPv6).


> What would I need to do with iptables to make this work?

Why do you think you need iptables? What does not work if you do not use
IP tables?


Alex.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20180615/c821cac0/attachment.html>