Re: [Firestarter-user] Help on configuring a Transparent Squid Cache in Firestarter
Brought to you by:
majix
From: Tomas J. <ma...@sc...> - 2003-11-17 21:43:15
|
Heishiro Mitsurugi wrote: > I=B4m using squid-cache software successfully setting, of course, t= he > Internet Explorer to use a Proxy in port 3128, and also firestarter > does the nat to those computers that have no Proxy Setting in > Internet Explorer while protects my local network. >=20 > But now I would like to set squid to transparent mode. In order to = do > that, I=B4m supposed to forward the INTERNAL requests to the port 8= 0 to > the port 3128 so that way squid makes the download or not. >=20 > I guess that if I go into the firestarter GUI and add a forward rul= e > from port 80 to 3128 it will do that but for the Incoming connectio= ns > from the Internet, and that=B4s not what i want. >=20 > So, i guess that I have to add an iptables command, but the one I > found uses the table nat and that table is erased when you run > firestarter. For others interested, the relevant command would be something like iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT= =20 --to-port 3128 > I would like to know what do i have to modify (i guess the > firewall.sh, but how and where) in order to make the transparent > proxy to work You can stick it in /etc/firestarter/firewall.sh pretty much anywhere towards the end. Last line should be fine for example. It would be cool if Firestarter could _easily_ set up this kinds of= =20 things, but what would the GUI look like? :/ Regards, Tomas |