>Le mercredi 12 octobre 2011 à 09:46 +0530, nipun_mlist Assam a écrit :
>> Squid in tproxy mode, doesn't work with HTTPS most probably.
this applies in intercepting (previously incorrectly called
"transparent") mode too, no matter if you use tproxy or not.
>>Secondly, it doesn't spoof the client IP.
actually, tproxy DOES spoof client's IP, plain intercepting does not.
>> I have fixed the issues for my work.
>> But wondering if the fix is already available somewhere.
On 12.10.11 10:45, David Touzeau wrote:
>Just a question Nipu,
>
>what are real benefits to use "Tproxy" instead just set an iptables
>rules and set squid as transparent mode ?
tproxy is afaik just a small addition to interception - it causes squid
to change source IP of outgoing HTTP connection as if came from
original client.
It requires more work with firewall.
-- Matus UHLAR - fantomas, uhlar@fantomas.sk ; http://www.fantomas.sk/ Warning: I wish NOT to receive e-mail advertising to this address. Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu. I intend to live forever - so far so good.Received on Thu Oct 20 2011 - 08:46:05 MDT
This archive was generated by hypermail 2.2.0 : Thu Oct 20 2011 - 12:00:03 MDT