DISQUS

Oh so it will not work if it's not the gateway? I have it set as a node on my lan because I have a hardware firewall, a Netopia Router. Do you know of anyway to make transparent proxy work in this type of scenerio?

Hey Mihai,

I appreciate the help bro. I edited my sysctl.conf file and added net.ipv4.ip_forward = 1
to it. So whenever I reboot, it automatically turns on ip forwarding. So I am not doing ehco 1 > /proc/sys/net/ipv4/ip_forward.

When I run iptables -t nat -L -n -v, this is what I get:

Chain PREROUTING (policy ACCEPT 4 packets, 192 bytes)
pkts bytes target prot opt in out source destination
0 0 REDIRECT tcp -- eth0 * 0.0.0.0/0 0.0.0.0/0 tcp dpt:80 redir ports 3128

Hey Mihai,

Ok so I've done the cat /proc/sys/net/ipv4/ip_forward thing and I not have ip forwarding on. I also made sure that the iptables entry is correct.

I still cannot do transparent proxy. It only works when I manually set IE to use a proxy. Any ideas?

Hey guys,

I just came across this proxy and was wondering if you guys can help me out. I have the classic 192.168.0.0 subnet running at my organization with a hardware router that is also the gateway. I've been trying to get squid 2.6, running on Debian Etch with kernel 2.6, but with no success. I've gotten it to work by setting my IE to use a proxy but it doesn't seem to want to work transparently. I've entered the iptables entry but still, same result. My setup is below:

Compaq EN 1ghz, 512MB Ram with onboard Intel nic
Installed Debian Etch from netinst CD with no packages.
Configure Nic with IP 192.168.0.250 255.255.255.0 gw192.168.0.2 dns 4.2.2.1
Did apt-get install squid
Configured squid.conf:
http_port 3128 transparent
acl lan src 192.168.0.0/24
http_access allow localhost
http_access allow lan

Iptables entry:
iptables -t nat -A PREROUTING -i eth0 -p tcp -dport 80 -j REDIRECT -to-port
3128

Can someone help me figure this out?

Thanks,