Hi
I am using a cisco access server with FreeBSD 4.1 and squid 2.1. I also
have 2 network cards in the box. 1 is used for my default route and the
other is connected to a satellite feed
Has anyone set up a transparent proxy using freesbsd and has the following
problem.
If I set it up following the directions in the Squid FAQ the squid cache
fails to accept the requests from either my ip policy route map from my
cisco box or from another sibling cache that uses the transparent proxy as a
parent proxy
However if I follow the directions given by fooler <fooler@skyinet.net>
Quote
in your customize kernel, include these lines:
options IPFIREWALL
options IPFIREWALL_FORWARD
options IPFIREWALL_DEFAULT_TO_ACCEPT
squid configuration:
./configure --enable-ipf-transparent
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
in your rc.conf or rc.local:
rc.conf -> gateway_enable="YES"
or
rc.local -> sysctl -w net.inet.ip.forwarding=1
in your firewall rules:
ipfw add fwd <ip_address_of_your_server>,3128 tcp from any to
any 80 in via <interface_card>
if there is a http daemon running in your proxy server then include
these lines before the above firewall command to avoid forwarding loop:
ipfw add accept tcp from any to 127.0.0.1 80 in via
<interface_card>
ipfw add accept tcp from any to <ip_address_of_your_server> 80
in via <interface_card>
END Quote
my transparent proxy will receive the port 80 traffic coming from my sibling
cache and serve the requests, but it does not accept the ip policy routing
coming from my cisco box.
Any ideas what I need to do?
Thanks in advance
Tim
-- To unsubscribe, see http://www.squid-cache.org/mailing-lists.htmlReceived on Wed Jan 10 2001 - 07:33:50 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:57:24 MST