1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Outbound port 80 to remote squid?

Discussion in 'Tomato Firmware' started by Knobee, Dec 27, 2007.

  1. Knobee

    Knobee Network Guru Member

    Greetings, Merry Christmas and Happy New Year to all!

    I'm trying to configure a Tomato/OpenVPN based Buffalo router to pass all outbound port 80 traffic to a remote Squid proxy.

    I'm sure that there is some magic with iptables that will do this, but being a BSD guy and not a Linux guy, I'll take the coward's way out and ask for help. :)

    Thanks,
    Knobee
     
  2. maxzerker

    maxzerker LI Guru Member

    Proxy Server 192.168.1.11/24 Port 3128

    iptables -t nat -I PREROUTING 1 -s ! 192.168.1.11 -d ! 192.168.1.254 -p tcp -m tcp --dport 80 -j DNAT --to-destination 192.168.1.11:3128
     
  3. Knobee

    Knobee Network Guru Member

    Ok, that's if the Proxy is within your NAT'd network -- (Sorry, I should have given more info):

    Local NAT'd network: 192.168.1.0/24
    Local router: 192.168.1.1/32
    Squid: 172.16.154.127/32 (note, outside the NAT, password protected) port 3128

    (no, it's not really on 172.16, but I'm obfuscating just a bit)

    BTW, thanks for the quick response..

    Knobee
     
  4. Knobee

    Knobee Network Guru Member

    And I just discovered (and I should have known this, but didn't think about it) that you can't use authenticated (password protected) Squid in a transparent proxy configuration...

    I have to re-think my entire configuration.

    Knobee
     

Share This Page