[squid-users] squid3 pre3-20041102: WARNING: transparent proxying not supported (visolve not help) from Éliás Tamás on 2004-11-02 (squid-users)

From: Éliás Tamás <eliast@dont-contact.us>
Date: Wed, 3 Nov 2004 02:31:32 +0100

Hy all!
Again the weird trnasparent proxying problem. I revised all docs found
on the net, but no solution yet. Debian SARGE system, with kernel
2.6.9, no patches. routing, and iptables enabled. squid compiled from
source, with options:

$CONFIGURE --with-dl --enable-default-err-language=Hungarian --enable-poll --enable-select --disable-http-violations --enable-linux-nefilter \
--disable-ident-lookups --enable-delay-pools --enable-gnuregex --sysconfdir=/etc/squid --prefix=/usr/local/squid --enable-underscores \
--enable-time-hack --with-samba-sources=/root/install/unpacked/samba-3.0.7 --enable-cache-digests --sysconfdir=/etc/squid --enable-storeio=ufs,diskd \
--disable-icp --enable-dl-malloc

If not used with transparent proxying it just work fine... But now I'd
need to be transparent...

In /etc/network/services: ip_forward=yes

and already configured my squid and firewall:

$IPTABLES -t nat -A PREROUTING -p tcp -i $LAN_KOLL_IFACE -s $LAN_KOLL_NET --dport 80 -j REDIRECT --to-ports 3113
(I have static IP, so no MASQUERADING, but SNAT used:
$IPTABLES -t nat -A POSTROUTING -o $INET_IFACE -j SNAT --to-source $INET_IP)

Squid starts normally, says:
2004/11/03 03:03:59| Accepting transparently proxied HTTP connections at 10.2.254.1, port 3113, FD 11.
2004/11/03 03:03:59| WCCP Disabled.
2004/11/03 03:03:59| Ready to serve requests.

Just after I do the first hit, the
WARNING: transparent proxying not supported
message appears at the end of the cache.log, and the client has the
message, that says, the "/" is an invalid url. in the access log I
see:
1099446498.298 1 10.2.0.1 NONE/400 1514 GET / - NONE/- text/html
1099447470.783 1 10.2.0.1 NONE/400 1514 GET / - NONE/- text/html
1099447497.574 0 10.2.0.1 NONE/400 1514 GET / - NONE/- text/html

What's this, and where to from here?

-- 
Thomas Elias
Title: System administrator, Programmer
mailto: eliast@venk.hu
Tel.: +3630/3299315
ICQ UIN: 206-714-459
Quote: "Too many people making too many problems (InFlames)"

Received on Tue Nov 02 2004 - 19:32:33 MST

This archive was generated by hypermail pre-2.1.9 : Wed Dec 01 2004 - 12:00:01 MST