Linux Forums - Linux Help,Advice & support community:LinuxSolved.com

Network Troublshooting => Linux Servers Support => Topic started by: gauravbajaj on September 26, 2005, 05:21:38 AM

Title: Transparent Proxy in SUSE9.2
Post by: gauravbajaj on September 26, 2005, 05:21:38 AM

Hi Grp,
I need ur help .............
I am trying to configute TRANSPARENT PROXY in SUSE 9.2...I have configured it sucessfully(No problems)

In  SuSeFirewall2 file , i have wrote this line:

FW_REDIRECT="192.168.8.0/24,0/0,tcp,80,3128"
(i.e the request of internal network( i.e 192.168.8.0 )  at port 80 is redirected  to 3128 port(Proxy)..Its working fine...,

But if i want to specify the range only i.e not whole network(192.168.8.0) , but   only in  192.168.8.12-192.168.8.14 and the other ip is 192.168.8.67..
then how can i do this ?

i.e If i want that only these i.p ranges  use  transparent proxy only not others then how to do this?

I have tried this already by making these changes...


FW_REDIRECT="192.168.8.12-192.168.8.14/24,0/0,tcp,80,3128"
FW_REDIRECT="192.168.8.67/24,0/0,tcp,80,3128"

but only first line is working ...i.e the only the request of these ip's 192.168.8.12-191.168.8.14  are redirected to port 3128  but the ip 192.168.8.67 i.p is still not redirected to port 3128




So How can i do this...

My second pb is this .....

How can i block the specific ports through squid ...i.e ftp,ssh , to internal network...
If anyone kbows tell abt the specific acl in SUSE9.2

Help me ...

THXX

Gaurav

Title: Transparent Proxy in SUSE9.2
Post by: Ricky on September 26, 2005, 06:56:13 PM

No experience about SuSe !

But I want to know that why you are not using squid.conf ? You can use that also to allow and deny few IPs ?  Otherwise you can do it with iptables.

Title: Transparent Proxy in SUSE9.2
Post by: gauravbajaj on September 27, 2005, 04:18:46 AM

Actually ricky ,  as u know in Red hat linux if u want to make a TRANSPARENT PROXY , u have to use iptables command with REDIRECT option(u know well :D ) , but in SUSE , all firewall   controlling is done by SuSefirewall2 file.., means instead of iptables , u have to use SuSefirewall2 filr..

And also I am using SUSE as this is my company requirements, in prev company I used REDHAT a lot...But now i have shifted to SUSE.........  :)


So I also Knows SUSE little.....but I am trying to learn it....

Gaurav

Title: Transparent Proxy in SUSE9.2
Post by: Ricky on September 28, 2005, 06:42:37 PM

but utltimately SUSE is using Iptables I think... so u can directly append iptables rules !

Title: Transparent Proxy in SUSE9.2
Post by: gauravbajaj on September 29, 2005, 04:32:11 AM

Ricky . .
Actually I have tried iptables there ..means I wrote the iptables command there..But i don't know why the rule was not appended....

And also Suppose , if u r giving iptables command with REDIRECT option(for TRANSPARENT PROXY)..It will not take the iptables command with REDIRECT option...........,

So Acc to me it seems that ...,Its control by SuSeFirewall2 file...,
Ya u r correct that it do things internally by iptables....,but  iptables command is not run..... directly

Gaurav
 :D

Title: Transparent Proxy in SUSE9.2
Post by: fdawy on September 29, 2005, 06:13:20 PM

Bandwidth Management in SUSE or REDHAT