| To: | saspan <saspan@web.de> |
|---|---|
| Subject: | Re: redirecting on a local machine |
| From: | Jan Engelhardt <jengelh@linux01.gwdg.de> |
| Date: | Fri, 19 Jan 2007 19:47:47 +0100 (MET) |
| Cc: | netfilter@lists.netfilter.org |
| Delivered-to: | sp-com-lists@consult.net |
| Delivered-to: | netfilter-list1@securepoint.com |
| In-reply-to: | <008101c73bf9$dc9d99c0$0700a8c0@stormbook> |
| List-archive: | </pipermail/netfilter> |
| List-help: | <mailto:netfilter-request@lists.netfilter.org?subject=help> |
| List-id: | General discussion and user questions <netfilter.lists.netfilter.org> |
| List-post: | <mailto:netfilter@lists.netfilter.org> |
| List-subscribe: | <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe> |
| List-unsubscribe: | <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe> |
| References: | <008101c73bf9$dc9d99c0$0700a8c0@stormbook> |
| Sender: | netfilter-bounces@lists.netfilter.org |
> A simple
>
> iptables -t -nat -A OUTPUT -m owner ! --owner-uid squid -p tcp --dport 80 -j
> REDIRECT --to-destination 3128
>
> doesn't seem to work, cause a browser would not be expecting a reply from a
> transparent proxy when waiting for replies to its requests.
So configure squid to actually act transparent. Or better, reject the
traffic and make everyone actively use the proxy. It does not have as
many caching caveats as transparent.
-`J'
--
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | redirecting on a local machine, saspan |
|---|---|
| Next by Date: | Re: redirecting on a local machine, saspan |
| Previous by Thread: | redirecting on a local machine, saspan |
| Next by Thread: | Re: redirecting on a local machine, saspan |
| Indexes: | [Date] [Thread] [Top] [All Lists] |