Problem with Shorewall + Squid

To: "'debian-firewall@lists.debian.org'" <debian-firewall@lists.debian.org>
Subject: Problem with Shorewall + Squid
From: Jackson Rodrigo Braga <jbraga@placas.ind.br>
Date: Thu, 20 May 2004 09:03:23 -0300
Message-id: <[🔎] BD164745BBACD611A3170002B3505D8902FE4162@CORREIO1>

Hi, I have a problem with shorewall

I will migrate a conectiva server to a knoppix, running squid and shorewall (in proxy transparent mode).

In the actual shorewall, existe de folowing lines:

REDIRECT loc!priv 3128 tcp www,ftp,ftp-data - -

REDIRECT loc!priv 3128 udp www,ftp,ftp-data - -

REDIRECT jag!priv 3128 tcp www,ftp,ftp-data - -

REDIRECT jag!priv 3128 udp www,ftp,ftp-data - -

Where: "loc" and "jag" are subnets describes in the zones file.

"priv" are a list of "VIP users", describes in the hosts file, them not filtred to proxy, and redirect to firewall. The line for this function is:

DNAT loc loc:192.168.5.2 all - - !192.168.1.30,!127.0.0.1

Where: 192.168.5.2 is a Firewall IP and 192.168.1.30 is a this server.

But in the knoppix this script not work, it accept all conections and filter in the squid, but not redirect the conections originaly for the "priv" hosts to the firewall.

Sorry, my english is terrible, but I post the question in the portuguese forum and nothing answer are sendme

Jackson R. Braga
Placas do Paraná S/A
Informática
Tel.: (41) 217-7221
jbraga@placas.ind.br

Reply to:

Follow-Ups:
- Re: Problem with Shorewall + Squid
  - From: Mike Mestnik <cheako911@yahoo.com>

Prev by Date: We will soon be shutting down our website.
Next by Date: BitDefender found an infected object
Previous by thread: We will soon be shutting down our website.
Next by thread: Re: Problem with Shorewall + Squid
Index(es):
- Date
- Thread