[H-GEN] Auto Proxy
Anthony Towns
aj at azure.humbug.org.au
Wed Apr 21 23:22:34 EDT 1999
On Thu, Apr 22, 1999 at 12:14:44PM +1000, Luke Grant wrote:
> was wondering if anyone had any experience with setting up automatic proxy
> servers.
A while ago. It ended up annoying me for some reason I can't quite recall.
Probably something to do with having to run squid on port 80 at the same
time as apache on port 80, or similar.
> i think the concept works but have no idea how i would set it up.
Squid needs to do clever things to support this -- in particular it
usually needs to know the IP address of the machine you're trying to get
to. I think you also need to have squid running on port 80 for this to
work. Not sure why.
Check the httpd_accel options.
> ipfwadm is currently running from the following startup command
> /usr/sbin/ipfwadm -F -m -a accept -S 192.168.0.0
ipfwadm -I -a accept -P tcp -S 192.168.123.0/24 -D 0/0 80 -r 80
...is what you want. `-r 80' is the port squid's on. `0/0 80' is port
80 anywhere. `192.168.123.0/24' is the subnet you want to transparently
proxy for.
You might also want
ipfwadm -I -a accept -P tcp -S 0/0 -D 1.2.3.4 80 -r 8000
if you're running apache on port 8000 and want regular http connections to
still work.
Cheers,
aj
--
Anthony Towns <aj at humbug.org.au> <http://azure.humbug.org.au/~aj/>
I don't speak for anyone save myself. PGP encrypted mail preferred.
``Like the ski resort of girls looking for husbands and husbands looking
for girls, the situation is not as symmetrical as it might seem.''
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 434 bytes
Desc: not available
URL: <http://lists.humbug.org.au/pipermail/general/attachments/19990422/ca360157/attachment.sig>
More information about the General
mailing list