Henrik Nordstrom a écrit:
> What you do to accomplish this is to transparently intercept the
> connections, but instead of redirecting the connections to Squid you
> redirect them to a simple web server (for example Apache) which no
> matter what request it received sends a browser redirect sending the
> user to another internal web server giving these instructions.
>
> The following trivial shell script based web server run from (x)inetd
> even does the trick, but I'd recommend using a better web serer:
>
> -- cut here --
> #!/bin/sh
> cat <<EOF
> HTTP/1.0 302 Found
> Location: http://www.your.domain/howto_setup_proxy.html
> Content-Type: text/html
>
> You need to configure your proxy settings. See
> http://www.your.domain/howto_setup_proxy.html
> for detailed instructions
> EOF
> sleep 1
> -- cut here --
>
Thanks for your suggestion Henrik.
But, I wonder how will it work.
I suppose the response to the client *must* use the real destination
server IP for IP source address to not be dropped by it ?
So, I suppose I must use NAT in iptables to do this ?
Is this possible ?
In squid, I thought there was a mecanism to change the IP source address
of the reply.
Is this the reallity ?
Thanks in advance for your help !
--
Fabien SALVI Centre de Ressources Informatiques
Archamps, France -- http://www.cri74.org
PingOO GNU/linux distribution : http://www.pingoo.org
Received on Tue Feb 25 2003 - 08:12:12 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:13:36 MST