2) is only one iptables rule needed? I am using : "iptables -t tproxy -A PREROUTING -s 10.48.1.0/16 -p tcp -m tcp --dport 80 -j TPROXY --on-port 80 --on-ip 0.0.0.0" and it is not working. I still see the ip of the squid box, and not the original client. It seems as though the problem is in iptables somewhere. I am using this as part of a L3/L4 WCCP/Squid setup and not a bridging solution.

I have looked at multiple tproxy howtos...only one worked, and it was a bridging solution on Debian. But I am not using Debian, and I can't use a bridging solution.