FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.

» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Debian > Debian User

LinkBack Thread Tools
Old 09-17-2012, 02:42 PM
Simon Brandmair
Default squid on other box than iptables NAT?

Hi group,

I thought I could run squid (3.1.20) on one box, and iptables with DNAT
on another box with

iptables -t nat -A PREROUTING -p tcp --dport 80 -i $LOCIF ! -s $squidbox
! -d $localnet -j DNAT --to-destination $squidbox:3128

squid.conf snip:
http_port 192.x.x.x:3128 intercept

But on the squidbox /var/var/log/squid3/cache.log says:
IpIntercept.cc(137) NetfilterInterception: NF
getsockopt(SO_ORIGINAL_DST) failed on FD 45: (92) Protocol not available

Some manuals on the internet suggest that this setup should be possible
[1], while others claim squid must run on the same box performing NAT

Can anybody help me out with this?


[1] http://tldp.org/HOWTO/TransparentProxy-6.html

To UNSUBSCRIBE, email to debian-user-REQUEST@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Archive: http://lists.debian.org/k37ctf$s3o$1@news.albasani.net

Thread Tools

All times are GMT. The time now is 08:08 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org