[squid-users] Setting up a transparent http and https proxy server using squid 4.6
Antony Stone
Antony.Stone at squid.open.source.it
Thu Dec 31 09:14:45 UTC 2020
On Thursday 31 December 2020 at 10:10:11, jean francois hasson wrote:
> If I set up on a device connected to the access point a proxy manually
> ie 10.3.141.1 on port 8080, I can access the internet. If I put the
> following rules for iptables to use in files rules.v4 :
>
> *nat
> -A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j DNAT --to-destination
> 10.3.141.1:3128
> -A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j REDIRECT --to-ports 3128
> -A PREROUTING -i eth0 -p tcp -m tcp --dport 443 -j DNAT --to-destination
> 10.3.141.1:3129
> -A PREROUTING -i eth0 -p tcp -m tcp --dport 443 -j REDIRECT --to-ports 3129
> -A POSTROUTING -s 10.3.141.0/24 -o eth0 -j MASQUERADE
Try removing the DNAT rules above. You should be using REDIRECT for intercept
mode to work correctly.
Antony.
--
If you can smile when all about you things are going wrong, you must have
someone in mind to take the blame.
Please reply to the list;
please *don't* CC me.
More information about the squid-users
mailing list