Hi, I’m working with a situation where I have a transparent proxy implemented with zeroshell.
I need to be able to access a specific external web-host at port 8080. Having the transparent proxy enabled seems to interfere with being able to access external web-hosts at port 8080. Whether or not the capture rule is blank, capture, or not capture, I cannot access a web host at port 8080.
What is the best work around for this situation?
I only need one node, lets say, 10.0.0.1 to be able to access this specific web-host (lets say: 220.127.116.11) at port 8080. The proxy can be completely bypassed for this node (10.0.0.1) if that makes it easier.
Is there an iptables nat rule that I can put into the startup scripts as a work around?
The primary idea that I originally had was to change the proxy server port from 8080 to 8081. I managed to find one file havp.config (I think) where I could change a port, but It still didn’t work… there was still some kind of iptables redirect at port 8080… I have a feeling that there is at least one other factor relating to changing the transparent proxy port because when there are no capture rules the 8080 redirect in iptables is not there, but it still doesn’t work.
If your solution requires changing configuration files outside of the DB, another question I have would be how to patch the config files on startup (but I can research that separately)
Hi, I should have mentioned this earlier. I’m primarily using the zeroshell combined with the dansguardian plugin for internet content filtering. Therefore, I cannot upgrade to the latest version of zeroshell at this time. Do you know of any other options for this situation?