<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
<title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Jan,<br>
<br>
Am running the cache server with only one eth interface having a Public
IP address i.e. eth0.<br>
There is no bridge interface.<br>
<br>
So, if my interface ip address is 192.168.1.1 should the tcp_outgoing
_address be 192.168.1.1.<br>
Since all the configuration looks ok now and iptables is accepting the
command <br>
<br>
iptables -t tproxy -A PREROUTING -i eth0 -p tcp -m tcp --dport 80 -j
TPROXY --on-port 80<br>
could the outgoing address be the only issue? <br>
Will check and confirm if it works with that.<br>
<br>
Regards<br>
Sunil<br>
<br>
Jan Engelhardt wrote:
<blockquote cite="midPine.LNX.4.61.0608072247400.7961@yvahk01.tjqt.qr"
type="cite">
<blockquote type="cite">
<pre wrap="">Thanks Jan.
I was able to apply the iptables command after that.
Am trying to use tproxy with squid. But it seems that whenever I try to
run both tproxy and squid together, the traffic from my router is not
</pre>
</blockquote>
<pre wrap=""><!---->
When using squid, you must set the "tcp_outgoing_address" to some ip
address. I can't really tell which one works or which ones don't, fact is
- with the bridge address, it works
- with the address en route upstream, it should work
- with 127.0.0.1, it should not work (I guess)
- any other I have not tried
En route upstream means:
eth0 134.76.13.21/24
eth1 192.168.222.1/24
default gw 134.76.13.254
Then the en-route upstream address is the one on eth0. It might work with
192.168.222.1 too, you gotta try.
</pre>
<blockquote type="cite">
<pre wrap="">being forwarded to the cache server.
But after rebooting the system and not applying tproxy everything works
well.
</pre>
</blockquote>
<pre wrap=""><!---->
Jan Engelhardt
</pre>
</blockquote>
</body>
</html>