Re: [squid-users] Squid3(Bridge)+Tproxy+Mikrotik - HELP ME

From: Amos Jeffries <squid3_at_treenet.co.nz>
Date: Tue, 23 Sep 2008 10:09:21 +1200 (NZST)

>
>
> Hi Guys,
>
> I am trying to configure a proxy squid with
> tproxy
> support. My squid is in a machine in bridge. The structure of
> my
> network
> is below:

Hi Michel,
  We've found a major logic fubar in the TPROXY implementation. It's
almost fixed. We'll have a how-to done up after the fix is committed to
HEAD.

Amos

>
> Clients -> Squid
> Bridge(Tproxy)-> Mikrotik Router
>
> I've compiled my
> kernel
> (2.6.24)
> and
> iptables(1.4) with
> Tproxy support.
> I'm using
> Squid
> Version
> 3.HEAD-20080917.
>
> My
> routing and
> iptables
> rules:
>
> ip rule add fwmark 1
> lookup 100
> Local
> ip route
> add 0.0.0.0 / 0
> dev lo table
> 100
> ip
> rule add
> fwmark 1
> lookup 100
> ip route
> add local
> 0.0.0.0/0 dev lo table 100
> iptables -t mangle -N
> DIVERT
> iptables
> -t mangle -A PREROUTING -p
> tcp -m socket -j
> DIVERT
> iptables -t
> mangle -A DIVERT -j MARK
> --set-mark 1
> iptables -t
> mangle -A
> DIVERT -j ACCEPT
> iptables -t
> mangle -A
> PREROUTING
> -p
> tcp --dport 80 -j
> TPROXY
> --tproxy-mark
> 0x1/0x1 --on-ip
> 189.89.180.253 --on-port
> 3128
>
>
> I see
> packages
> into
> the rules, but
> nothing
> is displayed in the log of squid
> and
> no object
> is cached.
>
> Someone could help me with
> this
> problem?
>
> Regards,
>
> Michel Peterson
>
>
>
>
Received on Mon Sep 22 2008 - 22:09:25 MDT

This archive was generated by hypermail 2.2.0 : Tue Sep 23 2008 - 12:00:02 MDT