hi
in our organization i configure a squid as transparent proxy server...
http_port 192.168.0.1:3128 transparent
my iptables configurations is below
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*mangle
:PREROUTING ACCEPT [0:0]
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*nat
:OUTPUT ACCEPT [0:0]
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
-A PREROUTING -p tcp -m tcp -i eth0 --dport 80 -j DNAT --to-destination 172.16.31.100:3128
-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
# Generated by iptables-save v1.3.8 on Sun Mar 9 18:45:34 2008
*filter
:INPUT DROP [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -i eth1 -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i eth0 -j ACCEPT
-A INPUT -j LOG
-A INPUT -j DROP
-A FORWARD -i eth0 -j ACCEPT
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -o eth0 -j ACCEPT
COMMIT
# Completed on Sun Mar 9 18:45:34 2008
wt is the problem is the client accessing through is isp dns server ip
i want to configure local dns server so that our client access through local dns
server ..
guide me
configuring dns with internet scenario
-
- Cadet
- Posts: 7
- Joined: Mon Feb 18, 2008 6:36 pm
-
- Cadet
- Posts: 7
- Joined: Mon Feb 18, 2008 6:36 pm
configure a dns in lan network with internet secenario
s bind service...
how to configure a lan network users access internet via local dns server
plz guide me
how to configure a lan network users access internet via local dns server
plz guide me
all dns server do is resolve domain name into ip address so does it matter if your user using your isp dns until unless you are not thinking to host your domain? and if you still want it just install bind package and start named service and you are done.
one thing more
-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE
why your input and output devices are same??
one thing more
-A PREROUTING -p tcp -m tcp -i eth1 --dport 80 -j REDIRECT --to-ports 3128
-A POSTROUTING -o eth1 -j MASQUERADE
why your input and output devices are same??
-
- Battalion Havaldaar Major
- Posts: 269
- Joined: Sat Dec 13, 2003 3:58 pm
- Location: Faisalabad
- Contact:
configure forwarders in your local dns and give your local dns ip in your cient TCP/IP setting as prefered DNS
Regards
Regards
Nafees Ahmed
Cell: +92.300.8653568
UAN: 041-111432432
Nexlinx Faisalabad
www.nexlinx.net.pk
nafees29@gmail.com
Cell: +92.300.8653568
UAN: 041-111432432
Nexlinx Faisalabad
www.nexlinx.net.pk
nafees29@gmail.com