[squid-users] {Solved] [squid-users] Transparent Proxy not working for HTTPS, ftp etc.. Plz help

From: Jayakrishnan <jayakrishnanlll_at_gmail.com>
Date: Tue, 8 Feb 2011 10:16:31 +0530

Hello all,

Anyways I sorted it my self. The problem was with my ip configuration.
I have created IP Aliasing in my LAN nic. that is it had 2 IPs. one
in 10.10.10.1 which is the gateway for my one set of LAN clients. The
other was 192.168.1.150 which I was supposed to add to add other
clients. But when i removed the 192.168.1.150 ip definition from the
interface it
all worked fine.

On Thu, Feb 3, 2011 at 6:48 PM, Jayakrishnan <jayakrishnanlll_at_gmail.com> wrote:
> On Thu, Feb 3, 2011 at 5:56 PM, Amos Jeffries <squid3_at_treenet.co.nz> wrote:
>> On 04/02/11 00:50, Jayakrishnan wrote:
>>>
>>> Dear all,
>>>
>>> I am shamed to tell you that I have same old problem with transparent
>>> proxying. Please help me out with this.
>>
>> Sure.
>>
>> Answer:
>>  it is not possible to "transparent proxy" any protocol other than plain
>> HTTP with Squid.
>>
>> There you go. Problem solved.
>
> Yea, I know that Squid is a HTTP proxy. But I masqueraded my HTTPS
> traffic by using IPTables. I do not want to cache HTTPS traffic as I
> know that it violates man in the middle theory.
>
> However We need to allow https traffic also right? I request you to
> kindly check my iptables configuration attached and advice what I am
> missing. As I told you we have a nating Access Point/Router at the
> end. so that the internet interface in my squid box is also in private
> net..
>
> Please advice!!!
>
>>
>> <snip>
>>>
>>> Everything is working fine but transparent proxying is not working for
>>> https ftp traffic. However there is no point in having a transparent
>>> proxy with out https support. Is there any thing to do if nating is
>>> taking place in my WIRELESS ACCESS POINT/ROUTER.
>>>
>>
>> The point of Squid is to optimize and manage HTTP. If that alone is not
>> enough then you need other tools.
>>
>> In the case of FTP you can look at FROX (FTP proxy).
>>
>> Amos
>> --
>> Please be using
>>  Current Stable Squid 2.7.STABLE9 or 3.1.10
>>  Beta testers wanted for 3.2.0.4
>>
>
>
>
> --
> Regards,
>
> Jayakrishnan. L
>
> Visit:
> www.foralllinux.blogspot.com
> www.jayakrishnan.bravehost.com
>

-- 
Regards,
Jayakrishnan. L
Visit:
www.foralllinux.blogspot.com
www.jayakrishnan.bravehost.com
--
Thanks and Regards,
Jayakrishnan L
Customer Engineer
Server C.o.E
HCL Infosystems Ltd.
42-49, Hardware Park, Kancha Imarat,
Pahadi Shareef, Hyderabad -5.
Mob: +91-9505105924
www.hclinfosystems.com
www.foralllinux.blogspot.com
www.jayakrishnan.bravehost.com
www.hcl.in
P Please do not print this email unless it is absolutely necessary.
Save paper. Save trees.  Spread environmental awareness
DISCLAIMER:
-------------------------------------------------------------------------------
The contents of this e-mail and any attachment(s) are confidential and
intended for the named recipient(s) only.
It shall not attach any liability on the originator or HCL or its
affiliates. Any views or opinions presented in
this email are solely those of the author and may not necessarily
reflect the opinions of HCL or its affiliates.
Any form of reproduction, dissemination, copying, disclosure,
modification, distribution and / or publication of
this message without the prior written consent of the author of this
e-mail is strictly prohibited. If you have
received this email in error please delete it and notify the sender
immediately. Before opening any mail and
attachments please check them for viruses and defect.
-------------------------------------------------------------------------------
Received on Tue Feb 08 2011 - 04:47:01 MST

This archive was generated by hypermail 2.2.0 : Tue Feb 08 2011 - 12:00:01 MST