+ Post New Thread
Results 1 to 5 of 5
*nix Thread, iptables settings in Technical; We have configured Squid 3.3.8 on Ubuntu 13.10. Squid all seems ok, but we've come a little stuck on the ...
  1. #1
    BassTech's Avatar
    Join Date
    Nov 2008
    Location
    England
    Posts
    531
    Thank Post
    71
    Thanked 32 Times in 25 Posts
    Rep Power
    25

    Question iptables settings

    We have configured Squid 3.3.8 on Ubuntu 13.10. Squid all seems ok, but we've come a little stuck on the iptables settings.
    We want to basically forward all requests from our BYOD range (172.10.0.0) on eth0, onto eth1 (192.168.3.108) out to the internet.
    Currently this is our /etc/iptables.up.rules config:

    Code:
    iptables -F
    iptables -X
    iptables -t nat -F
    iptables -t nat -X
    iptables -t manlge -F
    iptables -t mangle -X
    #
    iptables -A PREROUTING -m tcp -p tcp --src 172.10.0.0/21 --sport 80 --dst 172.10.0.2 --dport 3128 -j ACCEPT
    iptables -A PREROUTING -m udp -p udp --src 172.10.0.0/21 --sport 80 --dst 172.10.0.2 --dport 3128 -j ACCEPT
    iptables -A FORWARD -m tcp -p tcp --src 172.10.0.2 --sport 3128 --dst 192.168.3.108 --dport 80 -j ACCEPT
    iptables -A FORWARD -m udp -p udp --src 172.10.0.2 --sport 3128 --dst 192.168.3.108 --dport 80 -j ACCEPT
    But it doesn't seem to work - the clients get 'No DNS records' error which makes me think the traffic isn't being forwarded from Squid (172.10.0.2) onto the LAN-facing NIC (192.168.3.108)
    Not sure what we're doing wrong - probably missing something obvious!

  2. #2

    Join Date
    Mar 2011
    Location
    Ipswich
    Posts
    18
    Thank Post
    1
    Thanked 2 Times in 2 Posts
    Rep Power
    8
    Not an expert on iptables. You might find it easier to use shorewall to configure and manage iptables. Thats what I did on my Ubuntu/Squid server. Bit easier to see whats going on.

  3. #3

    jinnantonnixx's Avatar
    Join Date
    Mar 2011
    Location
    In the Calamatorium.
    Posts
    2,086
    Thank Post
    123
    Thanked 534 Times in 357 Posts
    Blog Entries
    2
    Rep Power
    336
    Try adding a line with UPD port 53 with a destination to your DNS server.

    This might be of use.
    25 Most Frequently Used Linux IPTables Rules Examples

  4. #4

    unixman_again's Avatar
    Join Date
    Nov 2011
    Posts
    933
    Thank Post
    35
    Thanked 173 Times in 133 Posts
    Rep Power
    142
    The lazy admins method of configuring iptables is to use Guarddog or similar.

  5. #5
    BassTech's Avatar
    Join Date
    Nov 2008
    Location
    England
    Posts
    531
    Thank Post
    71
    Thanked 32 Times in 25 Posts
    Rep Power
    25
    Quote Originally Posted by unixman_again View Post
    The lazy admins method of configuring iptables is to use Guarddog or similar.
    Looking into GUIs at the moment, currently using firestarter and got much further using it than manually configuring iptables.up.rules got a connection refused error now.



SHARE:
+ Post New Thread

Similar Threads

  1. Setting up NAT using IPTABLES
    By ChrisH in forum *nix
    Replies: 23
    Last Post: 9th November 2005, 02:54 PM
  2. Replies: 17
    Last Post: 16th September 2005, 09:07 AM
  3. Cannot set default printer Server 2003
    By tosca925 in forum Windows
    Replies: 2
    Last Post: 26th August 2005, 04:49 PM
  4. Setting a permanent default printer.
    By ninjabeaver in forum Windows
    Replies: 25
    Last Post: 23rd August 2005, 06:55 PM
  5. WiFi Settings + Sysprep dont play nice!
    By Inox in forum Windows
    Replies: 13
    Last Post: 9th August 2005, 12:25 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •