RE: Transparent Caching

> Yes please. Danke

Here's how I did it. Let me know how you get on

1. Set up a standard proxy server (forget about all the transparent
    proxy stuff you read about on the squid site)

2. Get a program called in.tproxyd. [I don't know where it lives -
    I can e-Mail a copy to anyone who needs it. Its a Linux Binary of
    12k ]

3. set up transparent proxying. I have a central Linux box which most
    of my traffic goes through. If you don't have this, I suspect you
    would need to either implement it between the world and your terminal
    servers, or if your terminal servers are Linux boxes you could do
    it on each server.

          1. Recompile the Linux Kernel with support for
                transparent proxying. You will need to turn
                "experimental" stuff on.

        2. set ipfwadm rules as follows :

# First dont proxy local stuff (You MUST DO THIS to
# prevent loops

# xxx.xxx.xxx.x is the IP address of your proxy box.
# Add as many lines as you want. Anything coming from this address will
# not be proxied
        
/sbin/ipfwadm -I -a accept -P tcp -S xxx.xxx.xxx.x -D 0.0.0.0/0 80

# You can optionally not proxy local stuff
# You probably MUST do this for hosted web servers or some clients will
# be unhappy with you.

/sbin/ipfwadm -I -a accept -P tcp -S 0.0.0.0/0 -D yyy.yyy.yyy.yyy/24 80

# Now transparently proxy everything else
# This redirects stuff to the local machine on port 81. The
# command wont work if you don't have transparent proxying in kernel

/sbin/ipfwadm -I -a accept -P tcp -D 0.0.0.0/0 80 -r 81

# Lastly run the transparent proxying
# xxx.xxx.xxx.x is the IP address of your proxy server
# 8080 is the accepted port for proxy servers in New Zealand

/usr/sbin/in.tproxyd -s 81 -r nobody xxx.xxx.xxx.x 8080
        
# DONE

>
> ---------------------------------
> Brian Kerr
> Systems Administrator
> Midamerica.net
> ---------------------------------
>
>
> -----Original Message-----
> From: List Server Account [mailto:lists@bagel.gen.nz]
> Sent: Saturday, April 24, 1999 7:05 PM
> To: Brian Kerr
> Subject: Re: Transparent Caching
>
>
> Do you still need some help here ?
>
> Cheers,
> David
>
> On Thu, 22 Apr 1999, Brian Kerr wrote:
>
> > Hello, I'm wanting to run squid to reduce bandwith traffic from our dialup
> > users. If I put a freebsd box in between the comm server and the router,
> > then run routed with two network cards, would this be an appropriate
> setup?
> > Also, any tips on doing it or if any of you out there have implemented
> > something of the same nature give me some feedback. Thanks!
> >
> > ---------------------------------
> > Brian Kerr
> > Systems Administrator
> > Midamerica.net
> > ---------------------------------
> >
>
Received on Tue Apr 27 1999 - 05:06:18 MDT