Re: [squid-users] Problem with linux 2.4, bridge, transparent squid on remote box from Robert Collins on 2003-10-03 (squid-users)

From: Robert Collins <robertc@dont-contact.us>
Date: Fri, 03 Oct 2003 17:39:10 +1000

On Fri, 2003-10-03 at 02:22, Mike Jett wrote:

> On the bridge machine, I have the following (sanitized addresses):
> iptables -t nat -A PREROUTING -i br0 -p tcp -s 10.0.5.5 --dport 80 -j
> DNAT --to 10.0.6.10

You can't DNAT if you want squid to handle the packets transparently.
You need to use policy routing on the bridge, combined with a REDIRECT
rule on the squid box.

Rob

-- 
GPG key available at: <http://members.aardvark.net.au/lifeless/keys.txt>.

application/pgp-signature attachment: This is a digitally signed message part

Received on Fri Oct 03 2003 - 01:39:17 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:20:17 MST