[squid-users] squid behind firewall with only port 8081 redirecting to squid

From: frech <fischerk_at_web.de>
Date: Mon, 20 Jul 2009 00:58:08 -0700 (PDT)

Hi forum,
new to squid I ran right at the beginning in a confusing configuration.

I have to set up squid on a machine behind a firewall.
Firewall is set up to serve port 80 to an other machine than the squid
server!!!

OK, the situation:

- squid 3 on a lenny debian server
- server with 2 network adapters
   - eth0 with 192.168.1.2 --> connected to firewall (fw = 192.168.1.1)
      -- port 8081 opened on fw and pointing to squid server (192.168.1.2)
   - eth1 with 192.168.3.2 --> connected to small workgroup.
      -- port 3128 used for squid proxy

My problem is, that I do not know how to setup the squid server correctly,
so that clients from workgroup can connect to internet (which later has to
be restricted).

My thoughts:
1. setting up eth0 and eth1.
    -- adding a route to eth1, to use eth0 as gateway
       route add -net 192.168.3.0 netmask 255.255.255.0 gw 192.168.1.1 dev
eth0 (is this correct???)
2. using a prerouting wiht iptables??
   -- iptables -A PREROUTING -t nat -p tcp -i eth0 --dport 8081 -j DNAT --to
192.168.1.2:3128

This does not work. What could be wrong or better done?

Kind reagards and thanx

Kai

-- 
View this message in context: http://www.nabble.com/squid-behind-firewall-with-only-port-8081-redirecting-to-squid-tp24565455p24565455.html
Sent from the Squid - Users mailing list archive at Nabble.com.
Received on Mon Jul 20 2009 - 07:58:10 MDT

This archive was generated by hypermail 2.2.0 : Mon Jul 20 2009 - 12:00:02 MDT