Conclusão de Proxy transparente

To: "Lista de discussão" <debian-user-portuguese@lists.debian.org>
Subject: Conclusão de Proxy transparente
From: "Carlos Henrique" <informatica@cercred.com.br>
Date: Thu, 6 Jan 2005 16:18:18 -0200
Message-id: <[🔎] 015301c4f41c$19097b90$0301a8c0@win2k>

Galera,

Finalmente funcionou assim:

Incuí essa linhas no meu squid.conf:

httpd_accel_port 80
httpd_accel_host virtual
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
ie_refresh on

E ficou assim meu script de iptables:

#!/bin/bash

iptables -P INPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -F
iptables -F -t nat

iptables -P INPUT DROP


iptables -A INPUT -i <rede-interna> -j ACCEPT
iptables -A INPUT -i lo -j ACCEPT
iptables -A FORWARD -i <rede-interna> -p tcp -m multiport --dport 25,110 -d
! 200.162.176.0/24 -j DROP

iptables -t nat -A PREROUTING -i <rede-interna> -p tcp --dport 80 -j
REDIRECT --to-port 3128
iptables -t nat -A POSTROUTING -o <rede-externa> -j MASQUERADE


iptables -A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
iptables -A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT

E foi assim que tudo se deu.

Obrigado ao Rafael e a todos da lista.

Abs.

Carlos Henrique.

Reply to:

Prev by Date: Qual fonte do kernel?
Next by Date: Re: Firebird
Previous by thread: Re: Qual fonte do kernel?
Next by thread: Msg. triplicada
Index(es):
- Date
- Thread