[squid-users] More NAT/TPROXY lookup fails (NetBSD 7.0, IPFilter 5.1)
Egerváry Gergely
gergely at egervary.hu
Sat Jan 16 14:19:04 UTC 2016
> You missed out saying how you tested it. That matters.
>
> For example, from the Squid log line it appears you made a connection
> directly to the intercept port without going through the NAT system. Of
> course the NAT system would have no record of it under those circumstances.
Yes, I tested it through NAT of course :)
The test client has IP address 172.28.0.3. I see the entry in the NAT table:
# ipnat -l
List of active MAP/Redirect filters:
rdr wm1 from 172.28.0.0/16 to 0/0 port = http -> 172.28.0.20/32 port 80 tcp
List of active sessions:
RDR 172.28.0.20 80 <- -> 195.228.252.138 80 [172.28.0.3 4114]
--
Gergely EGERVARY
More information about the squid-users
mailing list