Dear all,
I have one task to be performed on my linux server which works as a proxy server. I have a Squid with version 3.1.0.15 & iptables version 1.3.5 All the machines from the LAN access the www through this server only. I want to configure a machine from my local LAN to access internet without proxy. This setting has to IP specific i.e. Proxy authentication should not be asked for a particular IP.
Can anyone please help me with any confs in Squid and / or iptables.
Thanks & Regards, Jayendra V. Deuskar mobile : +919920738653
On Sat, Aug 7, 2010 at 5:27 PM, Jayendra Deuskar jayendra268@gmail.com wrote:
I have one task to be performed on my linux server which works as a proxy server. I have a Squid with version 3.1.0.15 & iptables version 1.3.5
^^^^^^^^^^^ The answer to your query lies in iptables - you need to give this IP number full access via iptables all other get redirected to the proxy server.
-- Arun Khan
Dear Mr. Arun,
I have tried following conf. in the iptables but found none of them working.
$OUT .= "\t-p tcp --dport 80 -s ! 192.168.1.172 -j TransProxy\n" -A RH-Firewall-1-INPUT -s 192.168.1.172 -m state --state NEW -j ACCEPT iptables -t nat -I PREROUTING -i br0 -s 192.168.1.172 -j ACCEPT iptables -t nat -l PREROUTING -s 192.168.1.172 -p tcp --dport 80 -j ACCEPT
Can you guide me further may be with correct line.
Thanks, Jayendra
On Sat, Aug 7, 2010 at 5:32 PM, Arun Khan knura9@gmail.com wrote:
On Sat, Aug 7, 2010 at 5:27 PM, Jayendra Deuskar jayendra268@gmail.com wrote:
I have one task to be performed on my linux server which works as a proxy server. I have a Squid with version 3.1.0.15 & iptables version 1.3.5
^^^^^^^^^^^The answer to your query lies in iptables - you need to give this IP number full access via iptables all other get redirected to the proxy server.
-- Arun Khan
On Saturday 07 August 2010 05:27 PM, Jayendra Deuskar wrote:
Dear all,
I have one task to be performed on my linux server which works as a proxy server. I have a Squid with version 3.1.0.15& iptables version 1.3.5 All the machines from the LAN access the www through this server only. I want to configure a machine from my local LAN to access internet without proxy. This setting has to IP specific i.e. Proxy authentication should not be asked for a particular IP.
Can anyone please help me with any confs in Squid and / or iptables.
For iptables you have to enable masquerading to use the box as a router and add your particular ip to the forwarding chain rules. Assuming that by default the policy is reject.
On Sat, Aug 7, 2010 at 5:27 PM, Jayendra Deuskar jayendra268@gmail.com wrote:
I want to configure a machine from my local LAN to access internet without proxy. This setting has to IP specific i.e. Proxy authentication should not be asked for a particular IP.
These 2 statements are contradicting each other. Do you want to a) Bypass the proxy server for that IP? b) Disable proxy authentication for the given IP?
In either case you will need to make sure it always gets the same IP. Either as static IP or as fixed DHCP IP. But, these 2 cases are quite different. And you'll get a lot of how-to's on the net for both the cases.
-
Arun Khan -
Jayendra Deuskar -
Mehul Ved -
Rony