Any way to use IP tables and squid for a transparent proxy but only for http.
Basically, the setup for squid and a transparent proxy results in ALL traffic for a given port (usually 80) going to squid to be proxied. I am looking for a way to take any http traffic coming in on Any port and send it to squid. Thus http traffic on port 80 or 22 would go to squid while port 22 ssh traffic would be unaffected.
On Sat, 28 Jan 2006 14:20:57 -0600 hanasaki hanasaki@hanaden.com wrote:
Any way to use IP tables and squid for a transparent proxy but only for http.
Basically, the setup for squid and a transparent proxy results in ALL traffic for a given port (usually 80) going to squid to be proxied. I am looking for a way to take any http traffic coming in on Any port and send it to squid. Thus http traffic on port 80 or 22 would go to squid while port 22 ssh traffic would be unaffected.
No because iptables doesn't look into the packet deeply enough to know whether or not it is http vs https vs smtp vs ssh. It is entirely based on the source/dest ip and source/dest ports.
--------------------------------- Frank Wiles frank@wiles.org http://www.wiles.org ---------------------------------
-
Frank Wiles -
hanasaki