Re: iptables transparent proxy
From: Cameron Kerr (cameron.kerr_at_paradise.net.nz)
Date: 11 Jun 2004 21:00:35 +1200
Fritz Bayer <email@example.com> wrote:
> I'm trying to do something very simple. I would like to forward all of
> my browsers requests to port 8888 on which a proxy server is
> I have a hardware router (ADSL) on 192.168.1.1 and my linux machine
> (Debian/testing Kernel 2.6.5) has the ip 192.168.1.4.
How is your network structured? For transparent proxying to work ok,
your cache needs to be able to be in a position where it can intercept
all the traffic, or it needs to have all relevant traffic forwarded to
it. Since most ADSL routers don't have the ability to forward port 80 to
a different machine (such a thing is called a Level 4 switch), you would
likely need to configure your network in the following way.
<Internet> --- <ADSL Router> --- <Linux> --- <Internal network>
This means that you would need to set up your Linux box as a router,
and reconfigure your ADSL router and internal clients appropriately.
Alternatively, you could set your Linux box to act as a bridge instead
of a router, but that is an advanced topic, and I can't off the top of
my head, remember how to do that.
You'll probably find it easier just to configure your browsers to use
the proxy manually, particularly if you want to play with user proxy
authentication later on.
-- Cameron Kerr firstname.lastname@example.org : http://nzgeeks.org/cameron/ Empowered by Perl!