Squid running on two ports, transparent and normal

[-Craig-]

Hello!
Is it possible to run Squid on two ports at a time, one as transparent Proxy and one as a normal Proxy?

[snis]

Hi,

Why do you need it to run on two ports?

In transparent mode you have an iptables rule that says something like this:

[-Craig-]

So transparent mode can also handle "normal" proxy requests? That would be better even!

[snis]

Yes it can, the so called transparent mode is only a way to force all http request to go through squid. This is done by redirecting all the http request on port 80 to port 3128 (squid default).
The same goes for content filtering, if you want to run for example danguardian you forward all requests to port 8080 (dansguardian default) and then you tell dansguardian to direct all it's requests to port 3128 if you wan tsquid to proxy the requests at the same time.
You should however be aware that not all http traffic is forwarded to the squid proccess, only packets on port 80 (from my example in the eariler post). I haven't digged any deeper into this, so I'm in no way an expert on this subject. I you however put a proxy in your broswer settings then all http traffic will go through the squid proxy.
An example: there is a site called *.istheshit.net (msfirewall.istheshit.net | linux.istheshit.net) they have a picture for all the sites, and the picture is requested from the server at port 8000.
Perhaps someone more familiar with iptables and squid could help out here.

[jamapii]

I run squid on multiple ports, to provide unfiltered, adzapped, compressed, and "from-extern" (redirect to an external proxy) access. The iptables "transparent-proxy" feature just uses one of these ports.

[-Craig-]

Well, outgoing connections to other ports than 80 are forbidden for those clients, so it's ok.
@jamapii; your config would be interesting, could you paste it here?

Thanks for your help!