From: Diaa Radwan <diaaradwan@gmail.com>
To: isaiah@medcol.mw
Cc: netfilter@lists.netfilter.org
Subject: Re: Transparent proxy errors
Date: Fri, 09 Jun 2006 17:56:29 +0300 [thread overview]
Message-ID: <44898C1D.2020008@gmail.com> (raw)
In-Reply-To: <55995.10.145.5.76.1149863766.squirrel@mail.medcol.mw>
[-- Attachment #1: Type: text/plain, Size: 1411 bytes --]
Isaiah Makwakwa wrote:
> Diaa,
>
> How do you do it?
>
> Isaiah
>> Rodrigo Montoro wrote:
>>> You can't use transparent proxy with SSL cause headers are
>>> encrypted and contains no useful data about destinations.
>> You can use it ,there is nothing will stop iptables from forwarding the
>> requests to your proxy ports.
>>
>>> Regards,
>>>
>>> On 6/9/06, isaiah@medcol.mw <isaiah@medcol.mw> wrote:
>>>> Dear all,
>>>>
>>>> I have a box setup for transparent proxying. Since this happened I have
>>>> had several websites timing out.
>>>>
>>>> I have what seems like an SSL problem with many websites especially
>>>> hotmail. When one wants to log onto hotmail, the proxy gives "document
>>>> contains no data reply". When I manually configure the proxy in my
>>>> browser, I then can logon with no problems.
>>>>
>>>> Could anyone help me resolve this?
>>>>
>>>> Regards,
>>>>
>>>> Isaiah.
>>>>
>>>>
>>>
>>
>>
>
>
iptables -t nat -A PREROUTING -p tcp --destination-port 80 -j REDIRECT
--to-ports 3128
yes it's not important to redirect 433(it will not work if you will
do),it depends on your proxy server configuration you should allow the
433 for https.
If you are using squid I'll recommend you to have these options :
httpd_accel_host virtual
httpd_accel_port 80
httpd_accel_with_proxy on
httpd_accel_uses_host_header on
--
Diaa Radwan
[-- Attachment #2: OpenPGP digital signature --]
[-- Type: application/pgp-signature, Size: 189 bytes --]
next prev parent reply other threads:[~2006-06-09 14:56 UTC|newest]
Thread overview: 6+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-06-09 11:59 Transparent proxy errors isaiah
2006-06-09 12:07 ` Rodrigo Montoro
2006-06-09 14:11 ` Diaa Radwan
2006-06-09 14:36 ` Isaiah Makwakwa
2006-06-09 14:56 ` Diaa Radwan [this message]
2006-06-09 15:08 ` Cedric Blancher
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=44898C1D.2020008@gmail.com \
--to=diaaradwan@gmail.com \
--cc=isaiah@medcol.mw \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox