* [LARTC] Port based routing with transparent proxy
@ 2003-11-14 10:02 Brett =?unknown-8bit?q?Cav=C3=A9?=
0 siblings, 0 replies; only message in thread
From: Brett =?unknown-8bit?q?Cav=C3=A9?= @ 2003-11-14 10:02 UTC (permalink / raw)
To: lartc
Hi all,
I have a RH9.0 system configured as a gateway. I am running squid,
configured for transparent proxy.
I have 3 NIC's - 1 LAN (eth0), 1 with an ADSL (ppp0) via pppoe (eth2,
0.0.0.0) connection, and a leased line (eth1).
I have set up port based routing, using the mangle table with a MARK
target for http and https traffic. The routing works fine until I use
transparent proxy. Is there a way to route traffic coming out of squid
to use the adsl connection?
I have the following rules
iptables -t mangle -A PREROUTING -p tcp -i $LANIF --dport 80 -j MARK
--set-mark 1
iptables -t nat -A PREROUTING -p tcp -i $LANIF --dport 80 -j REDIRECT
--to-port 3128 #if this is commented out, port routing works, if not it
doesn’t.
My default route is a router connected to the leased line interface
(eth1). I have added ip rules and ip routes as documented on the lartc
website (ip rule add fwmark 1 ### etc, and ip route add ### table 201
etc)
I have tried "iptables -t mangle -A POSTROUTING -o ! $LANIF etc" but
this doesn’t work, as expected, as routing has already taken place. Any
suggestions would be appreciated.
Regards
Brett
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
^ permalink raw reply [flat|nested] only message in thread
only message in thread, other threads:[~2003-11-14 10:02 UTC | newest]
Thread overview: (only message) (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2003-11-14 10:02 [LARTC] Port based routing with transparent proxy Brett =?unknown-8bit?q?Cav=C3=A9?=
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.