+ Post New Thread
Results 1 to 5 of 5
*nix Thread, iptables settings in Technical; We have configured Squid 3.3.8 on Ubuntu 13.10. Squid all seems ok, but we've come a little stuck on the ...
  1. #1
    BassTech's Avatar
    Join Date
    Nov 2008
    Location
    England
    Posts
    483
    Thank Post
    51
    Thanked 31 Times in 24 Posts
    Rep Power
    23

    Question iptables settings

    We have configured Squid 3.3.8 on Ubuntu 13.10. Squid all seems ok, but we've come a little stuck on the iptables settings.
    We want to basically forward all requests from our BYOD range (172.10.0.0) on eth0, onto eth1 (192.168.3.108) out to the internet.
    Currently this is our /etc/iptables.up.rules config:

    Code:
    iptables -F
    iptables -X
    iptables -t nat -F
    iptables -t nat -X
    iptables -t manlge -F
    iptables -t mangle -X
    #
    iptables -A PREROUTING -m tcp -p tcp --src 172.10.0.0/21 --sport 80 --dst 172.10.0.2 --dport 3128 -j ACCEPT
    iptables -A PREROUTING -m udp -p udp --src 172.10.0.0/21 --sport 80 --dst 172.10.0.2 --dport 3128 -j ACCEPT
    iptables -A FORWARD -m tcp -p tcp --src 172.10.0.2 --sport 3128 --dst 192.168.3.108 --dport 80 -j ACCEPT
    iptables -A FORWARD -m udp -p udp --src 172.10.0.2 --sport 3128 --dst 192.168.3.108 --dport 80 -j ACCEPT
    But it doesn't seem to work - the clients get 'No DNS records' error which makes me think the traffic isn't being forwarded from Squid (172.10.0.2) onto the LAN-facing NIC (192.168.3.108)
    Not sure what we're doing wrong - probably missing something obvious!

  2. #2

    Join Date
    Mar 2011
    Location
    Ipswich
    Posts
    11
    Thank Post
    0
    Thanked 2 Times in 2 Posts
    Rep Power
    8
    Not an expert on iptables. You might find it easier to use shorewall to configure and manage iptables. Thats what I did on my Ubuntu/Squid server. Bit easier to see whats going on.

  3. #3

    jinnantonnixx's Avatar
    Join Date
    Mar 2011
    Location
    In the Calamatorium.
    Posts
    1,985
    Thank Post
    114
    Thanked 505 Times in 340 Posts
    Blog Entries
    2
    Rep Power
    286
    Try adding a line with UPD port 53 with a destination to your DNS server.

    This might be of use.
    25 Most Frequently Used Linux IPTables Rules Examples

  4. #4

    unixman_again's Avatar
    Join Date
    Nov 2011
    Posts
    751
    Thank Post
    30
    Thanked 149 Times in 113 Posts
    Rep Power
    136
    The lazy admins method of configuring iptables is to use Guarddog or similar.

  5. #5
    BassTech's Avatar
    Join Date
    Nov 2008
    Location
    England
    Posts
    483
    Thank Post
    51
    Thanked 31 Times in 24 Posts
    Rep Power
    23
    Quote Originally Posted by unixman_again View Post
    The lazy admins method of configuring iptables is to use Guarddog or similar.
    Looking into GUIs at the moment, currently using firestarter and got much further using it than manually configuring iptables.up.rules got a connection refused error now.

SHARE:
+ Post New Thread

Similar Threads

  1. Setting up NAT using IPTABLES
    By ChrisH in forum *nix
    Replies: 23
    Last Post: 9th November 2005, 01:54 PM
  2. Replies: 17
    Last Post: 16th September 2005, 08:07 AM
  3. Cannot set default printer Server 2003
    By tosca925 in forum Windows
    Replies: 2
    Last Post: 26th August 2005, 03:49 PM
  4. Setting a permanent default printer.
    By ninjabeaver in forum Windows
    Replies: 25
    Last Post: 23rd August 2005, 05:55 PM
  5. WiFi Settings + Sysprep dont play nice!
    By Inox in forum Windows
    Replies: 13
    Last Post: 9th August 2005, 11:25 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •