Munawar Zeeshan, on 02/13/2007 12:03 PM [GMT+500], wrote :
> I have a very sticky problem.
>
> My squid machine is between LAN and my DSL modem.Eth0 is is connected
> to LAN switch while Eth1 is connected with the DSL modem.I have
> following in my rc.local for tranparent proxy and masquerading.
>
> /usr/local/squid/sbin/squid
> echo 1 > /proc/sys/net/ipv4/ip_forward
> iptables -t nat -A PREROUTING -i eth0 -p tcp --dport 80 -j REDIRECT
> --to-port 3128
Hash the below line, you don't need this while doing interception for UDP.
> iptables -t nat -A PREROUTING -i eth0 -p udp --dport 80 -j REDIRECT
> --to-port 3128
> iptables -t nat -A POSTROUTING -o eth1 -j MASQUERADE
>
> Are my above lines ok ??
>
Yes Looks fine.
> My /etc/hosts file is..while my machine name is linuxgateway.ecda.gov.pk
>
> 127.0.0.1 localhost.localdomain localhost
> 192.168.3.1 linuxgateway.ecda.gov.pk linuxgateway
>
> and in resolve.conf
> nameserver 192.168.3.81
>
I will suggest you to run, cache only DNS on your linux machine, it will
give you performance by caching dns queries, and then modify your
resolve.conf
nameserver 127.0.0.1
Thanks
Received on Tue Feb 13 2007 - 03:29:49 MST
This archive was generated by hypermail pre-2.1.9 : Thu Mar 01 2007 - 12:00:01 MST