Hi Alex,
iptables dnat is working. but the squid still cannot accept the packet.
root_at_box:~# iptables -t nat -vnL
Chain PREROUTING (policy ACCEPT 3089 packets, 256K bytes)
pkts bytes target prot opt in out source
destination
14 840 DNAT tcp -- * * 0.0.0.0/0
0.0.0.0/0 tcp dpt:80 to:110.92.64.3:3128
i can see packet if i tcpdump to interface wccp, but when i tcpdump to
port 3128 i don't see any traffic.
regards
ketua_at_kampung
Alex Montoanelli wrote:
> Hello Ketua,
>
> You can't use REDIRECT target of iptables.
>
> You need use DNAT --to-destination: IP_OF_ETHERNET:3128
>
> If you redirect to localhost, the packets are silent droped.
>
> Regards
Received on Wed Jun 10 2009 - 23:45:20 MDT
This archive was generated by hypermail 2.2.0 : Thu Jun 11 2009 - 12:00:03 MDT