Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [transparent-proxy]

210 questions
18
votes
1 answer

Getting Squid and TPROXY with IPv6 working on CentOS 7

I'm having trouble getting TPROXY working with Squid and IPv6 on a CentOS 7 server. I was previously using a generic intercept setup with NAT, but it was limited to IPv4 only. I'm now expanding the setup to include IPv6 with TPROXY. I've been using…
James White
  • 674
  • 3
  • 18
  • 32
15
votes
4 answers

Setting up a transparent SSL proxy

I've got a linux box set up with 2 network cards to inspect traffic going through port 80. One card is used to go out to the internet, the other one is hooked up to a networking switch. The point is to be able to inspect all HTTP and HTTPS traffic…
badunk
  • 215
  • 1
  • 2
  • 11
12
votes
6 answers

How to setup client for squid transparent proxy?

Server Details Squid Transparent Proxy Version: 3.3.8 OS: Ubuntu Server 14.04 Server IP: 192.168.1.3 Squid config file (excluding comments using grep) root@ubuntu:~# grep -v '^$\|^\s*\#' /etc/squid3/squid.conf acl SSL_ports port 443 acl Safe_ports…
user53864
  • 1,723
  • 11
  • 37
  • 66
10
votes
1 answer

Howto create a transparent https proxy with firehol and tinyproxy?

I have a transparent proxy setup in Ubuntu 10.04.4 with firehol and tinyproxy that works fine for http but I can't get it to work for https. Connecting to tinyproxy directly works fine as the following commands complete ok: env …
Stefan Farestam
  • 203
  • 1
  • 2
  • 5
10
votes
3 answers

Easy way to "edit" the traffic coming from a tcp host (linux)

I need to make some small modification to incoming traffic from a known tcp host:port before the process handling the connection get the stream. For example, let 192.168.1.88 be a remote host which runs a web server. I need that, when a process on…
etuardu
  • 257
  • 2
  • 3
  • 12
9
votes
1 answer

What exactly is a "transparent reverse proxy"?

I've been running some services as docker containers on a DigitalOcean droplet for a few years now, and recently I figured it was time to update one of them to the latest version (the service in question is ghost blogging platform). Previously, my…
ROODAY
  • 215
  • 2
  • 5
9
votes
4 answers

transparent SSL proxy myths and facts

I've been searching for many hours now about a way to setup a transparent proxy for SSL (not Squid). The general answer is that I can't, but I know there are some ways, though. My purpose is only the following: Blacklist/whitelist domain names (not…
admirabilis
  • 1,605
  • 3
  • 11
  • 10
8
votes
2 answers

Mac OS X Lion - forward all connections on port 22 to external ip

I need to forward all connection to any address port 22 to a different gateway (i.e. no default). Firstly I suppose to do it with ipfw: sudo ipfw add 5 fwd $EXTERNAL_IP,22 tcp from any to any 22 keep-state But with Mac OS X Lion it seems do not…
freedev
  • 323
  • 5
  • 17
7
votes
4 answers

How can I tell if there's a transparent HTTP proxy on my broadband?

I'm trying to work out if my broadband provider is using a transparent proxy. Mostly I don't mind if they do, but today I'm trying to preview a site I have moved from one server to another, before DNS has propagated. So I put the new IP address into…
buzzki
5
votes
3 answers

Local transparent proxy

I have an application that does not support proxy but I need to send it's traffic to a local proxy. I want to set IPTABLES to transparently redirect traffic to a given IP and PORT (80) to be intercepted and redirected to the local…
Jofre
  • 549
  • 1
  • 4
  • 11
5
votes
2 answers

Configure squid 3.5 to use different parent proxies for different listening ports

I have following configuration now: # Squid normally listens to port 3128 http_port 3128 cache_peer proxy1_address parent proxy1_port 0 proxy-only default login=name1:pass1 never_direct allow all Now I need to configure squid in a way when all…
bonzaster
  • 211
  • 2
  • 5
5
votes
1 answer

HAProxy TCP Transparent Mode Remote Servers

Alright so I have a server box with HAProxy installed and I need it to forward traffic to two MySQL servers. They are both located in completely different datacenters. It works when I have this removed from the config: source 0.0.0.0 usesrc clientip…
Rhododendron
  • 83
  • 1
  • 1
  • 5
5
votes
2 answers

How to forward HTTPS traffic through squid transparently?

I want to redirect all HTTP and HTTPS traffic to squid acting as a transparent proxy. This traffic will then be blocked or authorized (in bulk) during certain hours. Specifically I do not want to decrypt/reencrypt HTTPS traffic but push it as…
WoJ
  • 3,607
  • 9
  • 49
  • 79
5
votes
1 answer

Whitelisting outgoing traffic from docker containers

I have a server running multiple docker containers in the following configuration: One of the containers is a reverse proxy binding to the exposed ports of the other containers. This is the only container accepting connections from the outside…
ajaali
  • 161
  • 1
  • 6
5
votes
3 answers

Transparent proxying a single docker container to another docker container

I have a pair of docker containers running on the host machine, these containers together makes my application fulfill. So for each iteration/instance of my application requires a pair of docker containers to run. So far I'm using the --link…
Gowtham Sadasivam
  • 135
  • 2
  • 8
1
2 3
13 14