Post by AM » Fri, 12 Jan 2007 08:46:24

Hi folks,

I'm setting up a proxy and redirecting all the HTTP traffic, but that coming from the proxy, that
enters the LAN interface of my Cisco router to the proxy.
Do I need to put the eth0 of my linux proxy (say in promiscous mode so that it reads
also the packets directed to IP addresses different from, i.e. all the Internet addresses?

Is there any other things I need?

Some articles on Internet say that building up a transparent proxy is so easy but I can't have my
linux proxy working properly?

Thanks in advance,



Post by AM » Sat, 13 Jan 2007 00:01:29

>>Do I need to put the eth0 of my linux proxy (say in
>>promiscous mode so that it reads

> No.

>>Is there any other things I need?

> It would be nice if you could trim your line length to around 75
> characters... it makes the text much more readable.

I'm sorry Davide,
I'll bear in mind next time.


> And yes, add a NAT rule to redirect the connection from your
> gateway to the proxy.

That's the problem. The NAT action on a Cisco it's particularly tricky
in such case.
Maybe I can apply the NAT rule on the Linux box.Is it possible. I would
like to know what happen to packets with dest address different from the
IP address of the proxy. Are they processed anyway by the interface and
then discarded by the proxy?

Moreover, where could I find information about the way a client wraps up
the HTTP requests. I realize this not a network topic but if you knew it
I would appreciate it.

AND...If you are Italian, may you tell me where we can speak about the
same topic in Italian? :-)



Post by AM » Sat, 13 Jan 2007 06:27:58

> it.comp.os.linux.sys sounds appropriate.

OK see you there!

