Squid and bridging together, just because

[JohnnyGTO]

I'm trying to use squid and bridging together, just because. Actually I like whatching the traffic with Etherape and I may need to ummm selectivly limit browsed sites. Maybe with some nice heart stopping error screens relating to lost Quicken files and reports sent to the local law

I'm using bridging because the server has the extra nics and it just seemed easier.

This is what I have in local.start

ifconfig eth2 0.0.0.0 promisc up
ifconfig eth1 0.0.0.0 promisc up
brctl addbr mybridge
ifconfig mybridge 192.168.0.100 netmask 255.255.255.0 up
brctl addif mybridge eth2
brctl addif mybridge eth1

iptables -t nat -A PREROUTING -i eth1 -p tcp --dport 80 -j REDIRECT --to-port 3128

iptables -A INPUT -i eth1 -p tcp -d 192.168.0.100 -s 192.168.0.0/24 --dport 3128 -m state --state NEW,ESTABLISHED -j ACCEPT

I've followed the steps from http://www.tldp.org/HOWTO/mini/TransparentProxy-7.html and bridging works and Squid works but not as a transparent proxy (I have to select it)

Any ideas ?

[PartyCharly]

Hi Johnny,

proxyiing & bridging on the same machine doesnt work, except u worte a kernel driver that uses localhost.

bridging 2 network-cards makes your linux-boxjust running like a switch.
everyting incomming on eth0 is goint out on eth1.

the one thing u can do is using paketfiltering do log the traffic.

if u find anithing, that can proxyiing and bridging on the same box, plz tell me.
_________________
--- where the hell is the fu*** manual ---
--- linux is like a whigwam, no gates, no windows, and apache inside ---